{"id":"https://openalex.org/W7124739029","doi":"https://doi.org/10.1145/3788281","title":"Vulnerability Analysis for Safe Reinforcement Learning in Cyber-Physical Systems","display_name":"Vulnerability Analysis for Safe Reinforcement Learning in Cyber-Physical Systems","publication_year":2026,"publication_date":"2026-01-19","ids":{"openalex":"https://openalex.org/W7124739029","doi":"https://doi.org/10.1145/3788281"},"language":"en","primary_location":{"id":"doi:10.1145/3788281","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3788281","pdf_url":null,"source":{"id":"https://openalex.org/S2506189754","display_name":"ACM Transactions on Cyber-Physical Systems","issn_l":"2378-962X","issn":["2378-962X","2378-9638"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Transactions on Cyber-Physical Systems","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5108999535","display_name":"Shixiong Jiang","orcid":"https://orcid.org/0009-0004-9137-2359"},"institutions":[{"id":"https://openalex.org/I107639228","display_name":"University of Notre Dame","ror":"https://ror.org/00mkhxb43","country_code":"US","type":"education","lineage":["https://openalex.org/I107639228"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Shixiong Jiang","raw_affiliation_strings":["Department of Computer Science and Engineering, University of Notre Dame, Notre Dame, Indiana, USA"],"raw_orcid":"https://orcid.org/0009-0004-9137-2359","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, University of Notre Dame, Notre Dame, Indiana, USA","institution_ids":["https://openalex.org/I107639228"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5123311193","display_name":"Mengyu Liu","orcid":null},"institutions":[{"id":"https://openalex.org/I107639228","display_name":"University of Notre Dame","ror":"https://ror.org/00mkhxb43","country_code":"US","type":"education","lineage":["https://openalex.org/I107639228"]},{"id":"https://openalex.org/I16109614","display_name":"Washington State University Tri-Cities","ror":"https://ror.org/02sjef319","country_code":"US","type":"education","lineage":["https://openalex.org/I16109614","https://openalex.org/I72951846"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Mengyu Liu","raw_affiliation_strings":["Department of Computer Science and Engineering, University of Notre Dame, Notre Dame, Indiana, USA and Washington State University Tri-Cities, Richland, Washington, USA"],"raw_orcid":"https://orcid.org/0000-0002-3532-9506","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, University of Notre Dame, Notre Dame, Indiana, USA and Washington State University Tri-Cities, Richland, Washington, USA","institution_ids":["https://openalex.org/I16109614","https://openalex.org/I107639228"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5123331730","display_name":"Fanxin Kong","orcid":null},"institutions":[{"id":"https://openalex.org/I107639228","display_name":"University of Notre Dame","ror":"https://ror.org/00mkhxb43","country_code":"US","type":"education","lineage":["https://openalex.org/I107639228"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Fanxin Kong","raw_affiliation_strings":["Department of Computer Science and Engineering, University of Notre Dame, Notre Dame, Indiana, USA"],"raw_orcid":"https://orcid.org/0000-0001-6488-3488","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, University of Notre Dame, Notre Dame, Indiana, USA","institution_ids":["https://openalex.org/I107639228"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5108999535"],"corresponding_institution_ids":["https://openalex.org/I107639228"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.09290372,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"10","issue":"2","first_page":"1","last_page":"23"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9018999934196472,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9018999934196472,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10917","display_name":"Smart Grid Security and Resilience","score":0.07320000231266022,"subfield":{"id":"https://openalex.org/subfields/2207","display_name":"Control and Systems Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10462","display_name":"Reinforcement Learning in Robotics","score":0.003599999938160181,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.7894999980926514},{"id":"https://openalex.org/keywords/reinforcement-learning","display_name":"Reinforcement learning","score":0.7610999941825867},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.6899999976158142},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.675599992275238},{"id":"https://openalex.org/keywords/task","display_name":"Task (project management)","score":0.6554999947547913},{"id":"https://openalex.org/keywords/vulnerability-assessment","display_name":"Vulnerability assessment","score":0.5306000113487244}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.7894999980926514},{"id":"https://openalex.org/C97541855","wikidata":"https://www.wikidata.org/wiki/Q830687","display_name":"Reinforcement learning","level":2,"score":0.7610999941825867},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.6899999976158142},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6830000281333923},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.675599992275238},{"id":"https://openalex.org/C2780451532","wikidata":"https://www.wikidata.org/wiki/Q759676","display_name":"Task (project management)","level":2,"score":0.6554999947547913},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.5306000113487244},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.520799994468689},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5184000134468079},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.5020999908447266},{"id":"https://openalex.org/C192209626","wikidata":"https://www.wikidata.org/wiki/Q190909","display_name":"Focus (optics)","level":2,"score":0.4357999861240387},{"id":"https://openalex.org/C175154964","wikidata":"https://www.wikidata.org/wiki/Q380077","display_name":"Task analysis","level":3,"score":0.34130001068115234},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3221000134944916}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3788281","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3788281","pdf_url":null,"source":{"id":"https://openalex.org/S2506189754","display_name":"ACM Transactions on Cyber-Physical Systems","issn_l":"2378-962X","issn":["2378-962X","2378-9638"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Transactions on Cyber-Physical Systems","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.6729148626327515,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":10,"referenced_works":["https://openalex.org/W2041422323","https://openalex.org/W2172184261","https://openalex.org/W2765424254","https://openalex.org/W2959364614","https://openalex.org/W2966537673","https://openalex.org/W3080580959","https://openalex.org/W3092005433","https://openalex.org/W3176233416","https://openalex.org/W4368408208","https://openalex.org/W4375852066"],"related_works":[],"abstract_inverted_index":{"Safe":[0],"Reinforcement":[1],"Learning":[2],"(RL)":[3],"has":[4],"been":[5],"applied":[6],"to":[7,17,31,83,102],"synthesize":[8],"control":[9,46],"policies":[10,47,80],"that":[11,39,77,93,116],"maximize":[12],"task":[13,136],"rewards":[14,137],"while":[15],"adhering":[16],"safety":[18,42,53,90,100,124],"constraints":[19,101,125],"within":[20],"simulated":[21],"secure":[22],"cyber-physical":[23],"systems.":[24],"However,":[25],"the":[26,41,65],"vulnerability":[27],"of":[28,44],"safe":[29,66],"RL":[30,67,129],"adversarial":[32,95,128],"attacks":[33,92],"remains":[34],"largely":[35],"unexplored.":[36],"We":[37,86],"argue":[38],"understanding":[40],"vulnerabilities":[43],"learned":[45],"is":[48,119],"crucial":[49],"for":[50],"ensuring":[51],"true":[52],"in":[54],"real-world":[55],"scenarios.":[56],"To":[57],"address":[58],"this":[59],"gap,":[60],"we":[61,114],"first":[62],"formally":[63],"define":[64],"problem":[68],"with":[69,98],"formal":[70],"language":[71],"(signal":[72],"temporal":[73],"logic)":[74],"and":[75,111],"demonstrate":[76,115],"even":[78],"optimal":[79],"are":[81],"susceptible":[82],"observation":[84],"perturbations.":[85],"then":[87],"introduce":[88],"novel":[89],"violation":[91],"exploit":[94],"models":[96],"trained":[97],"reversed":[99],"induce":[103],"unsafe":[104],"behaviors.":[105],"Lastly,":[106],"through":[107],"both":[108],"theoretical":[109],"analysis":[110],"experimental":[112],"results,":[113],"our":[117],"approach":[118],"more":[120],"effective":[121],"at":[122],"violating":[123],"than":[126,139],"existing":[127],"methods,":[130],"which":[131],"primarily":[132],"focus":[133],"on":[134],"reducing":[135],"rather":[138],"compromising":[140],"safety.":[141]},"counts_by_year":[],"updated_date":"2026-05-21T06:26:12.895304","created_date":"2026-01-20T00:00:00"}