A Security-Enhanced Modbus TCP Protocol and Authorized Access Mechanism

Yi, Fumin; Zhang, Lei; Yang, Shumian; Zhao, Dawei

doi:10.1109/dsc53577.2021.00016

Cited by 4 publications

(9 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Te computation overhead of schemes [16,17] is slightly better than that of the scheme in this paper. However, security analysis shows that scheme [16] does not realize key update and has anti-replay ability is weak. Scheme [17] lacks the authentication mechanism.…”

Section: Computation Overheadmentioning

confidence: 71%

“…However, the digital certifcates involved in TLS increase the computation overhead and administrative overhead signifcantly. Yi et al [16] proposed the Modbus TCP security scheme to achieve data encryption and integrity verifcation and prevent replay attacks by timestamp and random numbers. Nevertheless, since the information is transmitted in plaintext, its antireplay ability is weak.…”

Section: Related Workmentioning

confidence: 99%

“…Scheme [17] uses the AES symmetric encryption algorithm to encrypt the data in Modbus TCP protocol, uses the SHA-256 algorithm to calculate the hash value, and verifes messages integrity and prevents replay attacks through timestamps. Scheme [16] uses the SM4 symmetric encryption algorithm to encrypt the data in Modbus TCP protocol, calculates the hash value through the SM3 algorithm, verifes the integrity of the messages, and realizes identity authentication. It protects against replay attacks by random numbers and timestamp.…”

Section: Comparison Of Modbus Tcp Securitymentioning

confidence: 99%

“…But the TLS protocol involves authentication of digital certifcates and some RSA operations, which causes the computation overhead to increase exponentially. Schemes [16,17] have slightly lower computation overhead. Te computation overhead of schemes [16,17] is slightly better than that of the scheme in this paper.…”

Section: Computation Overheadmentioning

confidence: 99%

“…Schemes [16,17] have slightly lower computation overhead. Te computation overhead of schemes [16,17] is slightly better than that of the scheme in this paper. However, security analysis shows that scheme [16] does not realize key update and has anti-replay ability is weak.…”

Section: Computation Overheadmentioning

confidence: 99%

See 4 more Smart Citations

Design and Implementation of a Lightweight Security-Enhanced Scheme for Modbus TCP Protocol

Liu

Liang

Wang

et al. 2023

Security and Communication Networks

View full text Add to dashboard Cite

The advent of Industry 4.0 has made people pay more and more attention to the security of the industrial control system. As a common and typical communication protocol, Modbus does not consider the problem of data security at the beginning of its design, which provides opportunities for criminals. In this paper, we design a security scheme to protect the traditional Modbus TCP protocol, by using domestic encryption algorithms. As a result, the proposed scheme is able to identity authentication, data encryption, data integrity check, and anti-replay attacks. Security analysis and experimental results show that our proposed scheme solves the security problem of Modbus TCP protocol with minimal overhead increase.

show abstract

Section: Computation Overheadmentioning

confidence: 71%

Section: Related Workmentioning

confidence: 99%

Section: Comparison Of Modbus Tcp Securitymentioning

confidence: 99%

Section: Computation Overheadmentioning

confidence: 99%

Section: Computation Overheadmentioning

confidence: 99%

See 3 more Smart Citations

Design and Implementation of a Lightweight Security-Enhanced Scheme for Modbus TCP Protocol

Liu

Liang

Wang

et al. 2023

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

Design and Development of Secure Data Transfer Modules in Industrial Control Systems

Rajesh,

Satyanarayana

2023

Wireless Pers Commun

View full text Add to dashboard Cite

İlişkilendirme Kuralı Madenciliği Algoritmasını Kullanarak BGP Anomali Tespiti

ALTAMİMİ

Albayrak²,

Çakmak

et al. 2022

EJOSAT

View full text Add to dashboard Cite

An anomaly is the occurrence of an exception that affects network security. The requirement for abnormality detection in a network is Anomaly detection, which detects and removes anomalous flow from the network. The Border Gateway Protocol (BGP) is the most common external Gateway Protocol used to communicate with autonomous systems to share routing and reachability information. This protocol's abnormal behavior may be caused by a variety of factors, including inadequate provisioning, malicious attacks, traffic or equipment issues, and network operator mistakes. BGP was built on the assumption of trust, and as a result, it has been hacked numerous times over the years. Code Red I is one well-known assault that targets BGP networking and produce abnormalities in its operation. These attacks were utilized as the dataset for training the model using network traffic data. The goal of this study is to detect the events that triggered an anomaly in the BGP during a time, as well as to detect an anomaly from the BGP throughout that time interval using the training dataset model. We present real association rule mining for BGP anomaly detection in the Intrusion Detection System (IDS).

show abstract

A Security-Enhanced Modbus TCP Protocol and Authorized Access Mechanism

Cited by 4 publications

References 6 publications

Design and Implementation of a Lightweight Security-Enhanced Scheme for Modbus TCP Protocol

Design and Implementation of a Lightweight Security-Enhanced Scheme for Modbus TCP Protocol

Design and Development of Secure Data Transfer Modules in Industrial Control Systems

İlişkilendirme Kuralı Madenciliği Algoritmasını Kullanarak BGP Anomali Tespiti

Contact Info

Product

Resources

About