Modern Building Automation Systems (BASs), as the brain that enables the smartness of a smart building, often require increased connectivity both among system components as well as with outside entities, such as optimized automation via outsourced cloud analytics and increased building-grid integrations. However, increased connectivity and accessibility come with increased cyber security threats. BASs were historically developed as closed environments with limited cyber-security considerations. As a result, BASs in many buildings are vulnerable to cyber-attacks that may cause adverse consequences, such as occupant discomfort, excessive energy usage, and unexpected equipment downtime. Therefore, there is a strong need to advance the state-of-the-art in cyber-physical security for BASs and provide practical solutions for attack mitigation in buildings. However, an inclusive and systematic review of BAS vulnerabilities, potential cyber-attacks with impact assessment, detection & defense approaches, and cyber-secure resilient control strategies is currently lacking in the literature. This review paper fills the gap by providing a comprehensive up-to-date review of cyber-physical security for BASs at three levels in commercial buildings: management level, automation level, and field level. The general BASs vulnerabilities and protocol-specific vulnerabilities for the four dominant BAS protocols are reviewed, followed by a discussion on four attack targets and seven potential attack scenarios. The impact of cyber-attacks on BASs is summarized as signal corruption, signal delaying, and signal blocking. The typical cyber-attack detection and defense approaches are identified at the three levels. Cyber-secure resilient control strategies for BASs under attack are categorized into passive and active resilient control schemes. Open challenges and future opportunities are finally discussed.
翻译:现代智能建筑自动化系统 (BASs) 作为实现智能化的核心,通常需要在系统组件之间以及与优化自动化如外部云分析和与电网集成等外部实体之间增加连接性。然而,增加的连接性和可访问性带来了增加的网络安全威胁。BASs 的历史发展使得其被开发为缺乏网络安全考虑的封闭环境。因此,许多建筑物中的 BASs 易受网络攻击的影响,可能导致不利后果,如居民不适、能源使用过度和意外设备停机。因此,有必要在智能建筑自动化系统的网络物理安全方面促进先进技术的发展,并提供对于建筑物攻击缓解的实用方法。然而,目前尚缺乏关于BASs漏洞,潜在网络攻击,检测和防御方法以及网络安全弹性控制策略的全面系统评估。本综述对商业建筑中BASs的三个层次进行了全面的、最新的网络物理安全综述:管理层、自动化层和现场层。综述了通用BASs漏洞和四种主要BASs协议的特定漏洞,然后讨论了四个攻击目标和七种潜在攻击方案。网络攻击对BASs的影响总结为信号损坏、信号延迟和信号屏蔽。确定了三个层面的典型网络攻击检测和防御方法。BASs在受攻击时的网络安全弹性控制策略分为被动和主动网络安全弹性控制方案。最后讨论了未解决的问题和未来的机遇。