Saved in:
Bibliographic Details
Main Authors: Takaki, Iori, Cetinkaya, Ahmet, Ishii, Hideaki
Format: Preprint
Published: 2026
Subjects:
Online Access:https://arxiv.org/abs/2604.11657
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866917403639676928
author Takaki, Iori
Cetinkaya, Ahmet
Ishii, Hideaki
author_facet Takaki, Iori
Cetinkaya, Ahmet
Ishii, Hideaki
contents This paper studies cyber attacks against informativity-based analysis in data-driven control. Focusing on strong observability, we consider an adversary who post-processes finite time-series data by an invertible linear transformation acting on the data matrices. We show that such transformations are capable of embedding malicious states into the invariant subspace explained by the transformed dataset. We provide a constructive attack method and derive feasibility conditions that characterize when such transformations exist. Moreover, we formulate an optimization problem to obtain the minimum-norm attack that quantifies the smallest data distortion required to destroy informativity. Numerical examples demonstrate that small and structured transformations can invalidate informativity certificates.
format Preprint
id arxiv_https___arxiv_org_abs_2604_11657
institution arXiv
publishDate 2026
record_format arxiv
spellingShingle Data Poisoning Attacks on Informativity for Observability: Invariance-Based Synthesis
Takaki, Iori
Cetinkaya, Ahmet
Ishii, Hideaki
Systems and Control
This paper studies cyber attacks against informativity-based analysis in data-driven control. Focusing on strong observability, we consider an adversary who post-processes finite time-series data by an invertible linear transformation acting on the data matrices. We show that such transformations are capable of embedding malicious states into the invariant subspace explained by the transformed dataset. We provide a constructive attack method and derive feasibility conditions that characterize when such transformations exist. Moreover, we formulate an optimization problem to obtain the minimum-norm attack that quantifies the smallest data distortion required to destroy informativity. Numerical examples demonstrate that small and structured transformations can invalidate informativity certificates.
title Data Poisoning Attacks on Informativity for Observability: Invariance-Based Synthesis
topic Systems and Control
url https://arxiv.org/abs/2604.11657