Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Preprint |
| Published: |
2026
|
| Subjects: | |
| Online Access: | https://arxiv.org/abs/2604.11657 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1866917403639676928 |
|---|---|
| author | Takaki, Iori Cetinkaya, Ahmet Ishii, Hideaki |
| author_facet | Takaki, Iori Cetinkaya, Ahmet Ishii, Hideaki |
| contents | This paper studies cyber attacks against informativity-based analysis in data-driven control. Focusing on strong observability, we consider an adversary who post-processes finite time-series data by an invertible linear transformation acting on the data matrices. We show that such transformations are capable of embedding malicious states into the invariant subspace explained by the transformed dataset. We provide a constructive attack method and derive feasibility conditions that characterize when such transformations exist. Moreover, we formulate an optimization problem to obtain the minimum-norm attack that quantifies the smallest data distortion required to destroy informativity. Numerical examples demonstrate that small and structured transformations can invalidate informativity certificates. |
| format | Preprint |
| id |
arxiv_https___arxiv_org_abs_2604_11657 |
| institution | arXiv |
| publishDate | 2026 |
| record_format | arxiv |
| spellingShingle | Data Poisoning Attacks on Informativity for Observability: Invariance-Based Synthesis Takaki, Iori Cetinkaya, Ahmet Ishii, Hideaki Systems and Control This paper studies cyber attacks against informativity-based analysis in data-driven control. Focusing on strong observability, we consider an adversary who post-processes finite time-series data by an invertible linear transformation acting on the data matrices. We show that such transformations are capable of embedding malicious states into the invariant subspace explained by the transformed dataset. We provide a constructive attack method and derive feasibility conditions that characterize when such transformations exist. Moreover, we formulate an optimization problem to obtain the minimum-norm attack that quantifies the smallest data distortion required to destroy informativity. Numerical examples demonstrate that small and structured transformations can invalidate informativity certificates. |
| title | Data Poisoning Attacks on Informativity for Observability: Invariance-Based Synthesis |
| topic | Systems and Control |
| url | https://arxiv.org/abs/2604.11657 |