Critical Infrastructure Funded Projects

Abstract

Critical failures in drinking-water networks can cascade rapidly, as demonstrated by Richmond, Virginia’s six-day water outage in January 2025, when a power failure at the water treatment plant during a winter storm left 230,000 residents under a boil-water advisory. Traditional single-variable monitoring systems fail to capture the subtle, distributed signatures that precede infrastructure failures.

This proposal develops Semi-quantum Restricted Boltzmann Machines (sqRBMs) to address two critical detection challenges:

1. Hydraulic fault recognition for burst and leak detection
2. Actuator sabotage diagnosis for cyber-physical security 

Our approach leverages quantum annealing to overcome the computational bottleneck of classical RBM training, which requires millions of Gibbs samples and prohibitive GPU time for real-time applications. We will integrate one year of Richmond SCADA data with high-fidelity EPANET simulations, training models on quantum annealers and benchmarking against GPU-based RBMs and LSTM autoencoders. Performance metrics include detection delay, false-alert rate, and energy efficiency. 

The research promises the first practical quantum advantage demonstration for critical infrastructure security, delivering: 

• An open dataset 
• A reproducible hybrid software stack 
• A validated quantum machine learning framework 

Project Investigators 

• Thang Dinh – Virginia Commonwealth University (VCU) – tndinh@vcu.edu 
• Jayasimha Atulasimha – Virginia Commonwealth University (VCU) – jatulasimha@vcu.edu 
• Laura Poe – Longwood University – poelf@longwood.edu

Abstract

The resilience of critical infrastructure—particularly water and wastewater systems—is essential for national security, public health, and economic stability. Yet, existing monitoring approaches rely heavily on centralized processing using relatively high-power communication strategies, introducing latency, increasing energy consumption, and exposing data to cyber risks. This project advances a secure, edge-native Internet of Things (IoT) framework that integrates Neuromorphic Computing, NextG massive connectivity, and adversarial-aware cybersecurity to enable autonomous, ultra-low-power, and resilient infrastructure management.

At the core of our approach is neuromorphic edge intelligence, implemented on Intel’s Loihi-2 platform, which exploits event-driven spiking neural networks to achieve order-of-magnitude energy savings while supporting on-node adaptation through Spike-Timing–Dependent Plasticity. These capabilities allow distributed water-quality sensors to detect contaminants in real time, reducing reliance on costly and vulnerable centralized sampling. Complementing this intelligence, we leverage NextG distributed MIMO networking with federated learning to ensure privacy-preserving, scalable connectivity across hundreds of nodes, even under intermittent or adversarial conditions. 

To address emerging threats, we focus on defending against stealthy out-of-distribution–triggered backdoor attacks, which pose unique risks to neuromorphic systems. Building on our recent advances in adversarial AI defense, we will transform the sensitivity of spiking networks into a cybersecurity advantage, enabling proactive detection and mitigation of anomalous behaviors. 

Through real-world testbeds deployed in Virginia water systems, our convergent research will establish the foundation for “self-driving” infrastructure: systems that sense, learn, and adapt in real time. Outcomes will advance neuromorphic circuit-algorithm co-design, secure federated learning in massive IoT networks, and resilient cyber-physical architectures, with broad applications across water, energy, transportation, and healthcare domains.

Project Investigators

• Cindy Yang Yi – Virginia Tech – cindy_yangyi@vt.edu (Professor, Electrical and Computer Engineering; Institute for Advanced Computing; MICS Co-Director)
• Peter Vikesland – Virginia Tech – vikesland@vt.edu (Civil and Environmental Engineering; Associate Department Head for Research and Faculty Development)
• Lingjia Liu – Virginia Tech – ljliu@vt.edu (Electrical and Computer Engineering; Co-director of Wireless@VT)
• Lei Yang – George Mason University – lyang29@gmu.edu (Information Sciences and Technology; Center for Secure Information Systems)

Abstract

Industrial Control Systems (ICS) underpin essential sectors such as energy, water, and manufacturing but face escalating risks from Advanced Persistent Threats (APTs). Unlike conventional IT attacks, ICS-APTs exploit multi-iteration control loops, traverse IT and OT domains, and hide within trusted channels, making them stealthy and highly disruptive. Current defenses lack the semantic context needed to bridge long-range dependencies and cross-domain causality, causing them to miss critical attack steps. 

This project proposes semantics-aware, provenance-based defenses that leverage the reasoning and knowledge capabilities of large language models (LLMs). We will:

1. Construct unified provenance graphs linking control-loop traces with key IT/OT events 
2. Design a scalable, lifelong intrusion detection system combining LLM-enhanced contextual embeddings with graph neural networks 
3. Develop an LLM-powered investigation agent that collaborates with analysts, executes investigations, and generates concise attack summaries 

The outcomes will strengthen the resilience of critical infrastructures against evolving threats, enabling more trustworthy, intelligent, and practical defense of essential national services.

Project Investigators

• PI: Peng Gao – Virginia Tech – penggao@vt.edu
• Co-PI: Yixin Sun – University of Virginia – ys3kz@virginia.edu

Abstract

The Commonwealth of Virginia is home to nearly 5,000 small- and medium-sized critical manufacturing entities, which collectively serve as the backbone of supply chains supporting national defense, transportation, and healthcare. These entities face increasing exposure to cyber-physical threats, including data poisoning, counterfeit components, and system disruptions, that can propagate through supply chains and severely impact production and distribution. Despite their critical role, most lack the resources to implement scalable, state-of-the-art cybersecurity solutions. 

To address this national security concern, we propose a scalable AI-driven solution for cyber-physical manufacturing, combining data-driven learning from operational data with knowledge-driven modeling through neurosymbolic methods. Merging these streams unifies statistical inference and symbolic reasoning, enabling agentic AI that uses online prediction, network dynamics, and multi-stage probabilistic reasoning for proactive detection and adaptive mitigation.

Project Investigators

• Shima Mohebbi – George Mason University – smohebbi@gmu.edu
• Milos Manic – Virginia Commonwealth University – mmanic@vcu.edu
• Babak Aslani – George Mason University – baslani@gmu.edu

Abstract

Critical infrastructure increasingly relies on IoT devices for monitoring, control, and automation across sectors, including energy, water, transportation, and manufacturing. These devices often run custom firmware that is difficult to validate, creating significant cybersecurity vulnerabilities. Current firmware verification approaches are labor-intensive and require specialized expertise, making them impractical for the thousands of IoT devices deployed in critical infrastructure.

This project develops the first hardware-aware large language model (LLM) verification framework that ensures IoT firmware correctness, security, and hardware compliance before deployment. Our approach addresses three critical challenges:

1. Functional correctness verification to ensure firmware implements intended functionality. 
2. Comprehensive vulnerability detection to identify security flaws. 
3. Hardware specification compliance to prevent device malfunctions. 

To meet these challenges, the framework introduces a three-level optimization strategy: 

• Input-level optimization: prompt refinement, multi-shot examples, retrieval-augmented generation with firmware-specific corpora. 
• Representation-level optimization: graph- and semantics-based reasoning across firmware, vulnerabilities, and hardware specifications. 
• System-level optimization: selective fine-tuning of LLMs, integration with external scanners and hardware simulators. 

This layered design ensures reliability, adaptability, and efficiency across diverse IoT environments. The project will deliver a prototype verification system, open-source datasets for firmware analysis, and evaluation on real-world IoT devices. Success will enable rapid, accurate validation of firmware updates and customizations, reducing the attack surface of critical infrastructure while maintaining operational efficiency. 

Project Investigators

• Mahmoud Nazzal – Old Dominion University (ODU), Computer Science – mnazzal@odu.edu 
• Khaled Khasawneh – George Mason University (GMU), Electrical and Computer Engineering – kkhasawn@gmu.edu 

Abstract

The Secure Hardware Infrastructure for Equipment Lifecycle Diagnostic (SHIELD) project introduces a new hardware–software paradigm for secure, batteryless, and smart equipment monitoring in critical infrastructure industries. SHIELD aligns with the national security focus on chemical and defense industrial sectors and supports the objectives of the Commonwealth Cyber Initiative (CCI). 

Current industrial maintenance practices rely on preventive servicing schedules with no real-time intelligence, exposing systems to expensive and potentially dangerous failures. SHIELD proposes predictive maintenance via ultra-low-power wireless sensing using Virtualized Computational RFID (VCRFID) systems that integrate secure sensing, energy harvesting, and edge computation. 

Technically, SHIELD introduces three innovations: 

1. Secure wireless sensor control and computation through reader-centric virtualization of CRFID functionality. 
2. Integration of Physically Unclonable Functions (PUFs) for authentication and encryption. 
3. Adiabatic circuit techniques to enable ultra-low-energy operation with intrinsic resistance to side-channel attacks. 

The project leverages breakthroughs in high-sensitivity UHF RFID energy harvesting and adiabatic power-clocking directly from RF signals at UHF 915 MHz. The research plan includes VCRFID systems with Rust-based secure reader code, hardware PUF embedding, and obfuscated adiabatic logic design. Collaboration with ExxonMobil and Northrop Grumman will demonstrate predictive maintenance in chemical facilities and defense systems. 

By coupling energy-efficient hardware security primitives with scalable IoT architectures, SHIELD supports CCI’s mission to secure the Commonwealth’s cyber-physical infrastructure and contributes to the national goal of trustworthy, low-power, and secure industrial IoT systems. The project will target NSF TTP and Future CoRe programs for additional funding. 

Project Investigators

• Mircea R. Stan – University of Virginia (UVA), Electrical and Computer Engineering – mircea@virginia.edu 
• Robert Klenke – Virginia Commonwealth University (VCU), Electrical and Computer Engineering – rhklenke@vcu.edu 

Abstract

The proposed project aims to enhance the cyber-resilience and trustworthiness of AI-enabled multi-sensor radiation monitoring systems that safeguard the Continuous Electron Beam Accelerator Facility (CEBAF) at Jefferson Lab (JLab), a world-leading U.S. Department of Energy (DOE) scientific user facility. CEBAF relies on a distributed network of gamma and neutron monitors, beam-loss detectors, current and energy meters, and Hydra-based imaging diagnostics to ensure radiation safety, equipment protection, and experimental continuity. 

As artificial intelligence (AI) and machine learning (ML) increasingly drive real-time monitoring and anomaly detection, the integrity of these data streams becomes a critical security concern. Compromised sensor inputs or tampered AI models could suppress alarms, destabilize beam operations, or endanger personnel and infrastructure.

To address these challenges, this project will develop adapter-based defenses and physics-aware AI models that can detect and mitigate cyber threats across multi-sensor and imaging systems. The research will pursue two integrated thrusts:

1. Designing parameter-efficient per-sensor adapters that enable rapid, secure few-shot adaptation under evolving conditions.
2. Modeling and defending against physics-aware backdoor attacks on JLab’s Hydra imaging system through cross-modal validation and anomaly localization.

These thrusts will form a resilient monitoring framework that embeds physics-informed constraints, adversarial robustness, and reliability-aware fusion into accelerator operations. The outcomes will advance the cybersecurity of critical national infrastructure while producing transferable methodologies applicable to other DOE laboratories and safety-critical AI systems.

Project Investigators

• Jiang Li – Old Dominion University – JLi@odu.edu 
• Lusi Li – Old Dominion University – l3li@odu.edu 
• Monika Yadav – Old Dominion University – myadav@odu.edu 
• Weijun Xiao – Virginia Commonwealth University – wxiao@vcu.edu 

Senior Personnel

• Rui Ning – Old Dominion University – rning@odu.edu 

Abstract

Agentic AI systems, powered by large language models (LLMs), are increasingly deployed in mission-critical contexts such as energy, healthcare, transportation, and emergency response. These systems rely on the Model Context Protocol (MCP) to dynamically discover and invoke external tools and resources. While MCP accelerates interoperability, it introduces significant new attack surfaces, including unverified tool servers, malicious adapters, runtime hijacking, and data exfiltration threats. 

This project will design and prototype FORTAI, an AI-enabled Zero-Trust Security Framework for MCP-based Agentic AI serving infrastructures. Our approach combines a zero-trust framework with AI-driven anomaly detection and policy synthesis to safeguard AI serving pipelines.

Project Investigators

• Yue Cheng – University of Virginia, Data Science & Computer Science – mrz7dp@virginia.edu
• Songqing Chen – George Mason University, Computer Science – sqchen@gmu.edu

Abstract

Critical infrastructure providers such as municipal utilities and service operators manage heterogeneous and continuously deployed software stacks that incorporate legacy codebases, vendor-locked control systems, undocumented execution behaviors, and opaque supply chains. These constraints—coupled with regulatory uptime requirements and limited ability to re-engineer deployed systems—create a widening attack surface that adversaries increasingly exploit. 

We propose Bastion, an AI-driven platform designed to harden and monitor these systems without requiring extensive developer effort or re-engineering. Bastion constructs rich program representations by integrating static and dynamic analysis with microarchitectural profiling, enabling fine-grained reasoning about vulnerabilities and performance constraints across diverse platforms. Leveraging multi-agent LLM frameworks, it enables a wide array of security engineering tasks such as patch synthesis and legacy code migration to safe languages at scale, supported by modular high-assurance verification engines enforcing key functional and security properties.

Through continuous feedback and adversarial refinement, Bastion also enables a robust detection layer to identify anomalous execution, exploit attempts, and logic manipulation at runtime—adapting to emerging threats without imposing substantial operational overhead. This provides a deployable pathway to securing systems that cannot be rapidly replaced and must remain continuously available.

Project Investigators

• Dr. Ashish Venkat – University of Virginia, Computer Science – venkat@virginia.edu
• Dr. Sai Manoj Pudukotai Dinakarrao – George Mason University, Electrical and Computer Engineering – spudukot@gmu.edu

Abstract

Critical infrastructure systems are increasingly reliant on IoT and cyber-physical devices. Anomalies caused by cyberattacks, device malfunctions, or unsafe user behaviors can escalate into service disruptions, equipment failures, or safety hazards. These risks are especially acute for small cooperatives with limited cybersecurity resources and for municipalities targeted by nation-state actors. 

Existing anomaly detection methods, which rely primarily on event logs, struggle with complex automation logic, lack explainability, and adapt poorly to evolving environments. We propose AI-powered, semantics-aware anomaly detection that leverages video and audio side channels to strengthen the cybersecurity of critical infrastructure. Inspired by human vision and hearing, we extract semantic information from visual and acoustic data (e.g., security cameras, speakers) to cross-check device states and detect anomalous behaviors. This enables accurate and adaptive detection of both cyber and physical anomalies. 

This project supports CCI’s mission to deliver innovative cybersecurity solutions with tangible benefits for Virginia companies and communities.

Project Investigators

• Lisa Luo – George Mason University – lluo4@gmu.edu
• Liqing Zhang – Virginia Tech – lqzhang@vt.edu

Abstract

This project aims to explore and design novel physical layer (PHY) and data layer mechanisms to secure 6th-generation (6G) infrastructure for emerging Integrated Sensing and Communication (ISAC) functions. ISAC is considered one of the key innovations in 6G mobile networks and is expected to enable a wide variety of vertical applications, ranging from the detection of unmanned aerial vehicles (UAVs) for protecting critical infrastructure and national security to physiological sensing for mobile healthcare.

Despite its significant socioeconomic benefits, ISAC functions introduce new attack surfaces to 6G infrastructure, calling for novel countermeasures. One noticeable security challenge brought by ISAC for 6G is the requirement to secure analog waveforms. Existing data layer security mechanisms adopted in mobile networks are insufficient to defend against analog/wave-domain attacks that can compromise sensing functions while remaining undetectable at the bit or data layer. Furthermore, the need for network-wide collaboration and coordination for many ISAC applications urges new secure and privacy-preserving data-sharing mechanisms that can handle distributed time-series sensing data.

This project will build analytical models, conduct simulations, and evaluate the proposed security mechanisms using UAV detection as a specific use case. It is expected to produce promising preliminary results that lay the foundations for securing 6G infrastructure for ISAC. Broader impact activities include outreach to standardization working groups, NextG Alliance, National Spectrum Consortium (NSC), O-RAN Alliance, and industry partners, as well as sharing knowledge through publications, open-source code, and course material enrichment.

Project Investigators

• Kai Zeng – George Mason University (GMU), Electrical and Computer Engineering – kzeng2@gmu.edu
• Wenjing Lou – Virginia Tech (VT), Computer Science – wjlou@vt.edu

Abstract

Many critical infrastructure providers, ranging from local utilities to hospitals, face persistent budget constraints and a shortage of skilled personnel, making it difficult to adapt to an increasingly complex and evolving cybersecurity threat landscape. Agentic Artificial Intelligence (AI) has emerged as a promising approach to address these challenges. Today, AI agents can perform a wide range of tasks—from analyzing system logs to summarizing vulnerabilities and threat intelligence reports—ultimately providing actionable recommendations. 

However, Agentic AI approaches are not flawless. They can make errors and require human oversight for verification, and they rely on human intervention for adaptation. As a result, they cannot yet be directly deployed by critical infrastructure providers without additional safeguards and guardrails. 

This proposal outlines the design and implementation of an end-to-end Agentic AI framework for critical infrastructure providers, with a particular focus on the healthcare sector. The framework leverages existing organizational documentation to enable AI agents to automatically construct and maintain comprehensive databases of critical assets. Building upon this foundation, it incorporates advanced threat analysis capabilities, allowing AI agents to ingest and interpret threat intelligence reports and dynamically prioritize response actions. The prioritization process explicitly accounts for operational constraints, including device utilization patterns and system criticality, ensuring recommendations are both contextually grounded and practically actionable. 

By reducing the manual demands of asset management and threat triage, the proposed work directly addresses workforce and budgetary constraints while enhancing the overall resilience and security posture of healthcare infrastructure. 

Project Investigators

• Murat Kantarcioglu – Virginia Tech – muratk@vt.edu 
• Daniel Takabi – Old Dominion University – takabi@odu.edu