Cryptographic Key Management for SCADA Systems-Issues and Perspectives

Piètre-Cambacédès, Ludovic; Sitbon, Phillip

doi:10.1109/isa.2008.77

Cited by 20 publications

(6 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Step (5): After the client receives the message "rdata", as in step (3), it gets "redate" on the basis of the principle of digital envelope technology, hashes "redata" using the SM3 cipher algorithm, and gets redigest2. It is demonstrated that the communication process was not interfered with if redigest1 and redigest2 are identical; If redigest1 differs from redigest2, the server is considered unreliable and the communication process has been interrupted.…”

Section: Client Servermentioning

confidence: 99%

“…Modbus/TCP protocol is an enlarged protocol of Modbus, the mainstream fieldbus protocol used all around in ICS systems. Nevertheless, the design of this protocol give importance on the efficiency overutilization, and does not fully think about the security, all in all it is authication deficit, encryption and integrity authentication [3][4][5][6] . This allows attackers to attack Modbus/TCP network in ICS system via TCP/IP network, and steal crucial data information in ICS system by imitating or tampering with servers or clients.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Research on trusted Modbus/TCP protocol of SCADA system based on digital envelope technology

Guo

Cui

Wang

2023

International Conference on Cryptography, Network Security, and Communication Technology (CNSCT 2023)

View full text Add to dashboard Cite

Considering the issues of lack of integrity, authentication and confidentiality of Modbus/TCP protocol broadly utilized in SCADA system, this study suggests a trusted Modbus/TCP protocol based on digital envelope technology on the basis of trusted cryptography module (TCM). To the basic Modbus/TCP protocol, the protocol adds identity authentication subprotocol and communication sub-protocol. Utilizing the SM2, SM3 and SM4 algorithms provided by TCM, the security of sub-protocol communication procedure and communication information is guaranteed by digital envelope technology and hash calculation. The security of the sub-protocol is verified by the SPAN tool, as well as the time overhead determined by the sub-protocol is tested. Experiments illustrates that the proposed trusted Modbus/TCP protocol can meet the high real-time prerequisites of industrial control systems and various business performance criteria while ensuring integrity, authentication and confidentiality.

show abstract

Section: Client Servermentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Research on trusted Modbus/TCP protocol of SCADA system based on digital envelope technology

Guo

Cui

Wang

2023

International Conference on Cryptography, Network Security, and Communication Technology (CNSCT 2023)

View full text Add to dashboard Cite

show abstract

“…These vulnerabilities can potentially inflict severe disruptions on the controlled objects. Consequently, safeguarding interconnected control networks from unauthorized access has emerged as a pivotal area of research [3][4][5][6][7][8][9], precipitating the development of dedicated security protocols [10]. For instance, traditional bus protocols like Modbus, Profibus, and CAN have been identified as particularly susceptible to cyber-attacks, especially where programmable logic controllers (PLCs) are accessed from within the control network [11].…”

Section: Introductionmentioning

confidence: 99%

Security Analysis and Enhancement of INTERBUS Protocol in ICS Based on Colored Petri Net

Feng,

Liu,

Gong

et al. 2023

Information

View full text Add to dashboard Cite

The integration of buses in industrial control systems, fueled by advancements such as the Internet of Things (IoT), has led to their widespread adoption, significantly enhancing operational efficiency. However, with the increasing interconnection of systems, ensuring the security of bus communications and protocols has become an urgent priority. This paper focuses on addressing the specific security concerns associated with the widely adopted INTERBUS protocol—a fieldbus protocol. Our approach leverages the theory of colored Petri nets (CPN) for modeling, enabling a comprehensive analysis of the protocol’s security. Rigorous formal verification and analysis of the security protocol are conducted by employing the Dolev–Yao adversary model. Our investigation reveals the presence of three critical vulnerabilities: replay attacks, tampering, and impersonation. To fortify the security of the protocol, we propose the introduction of a key distribution center and the utilization of hash values. Through meticulous analysis and verification, our proposed enhancements effectively reinforce the security performance of the INTERBUS protocol.

show abstract

“…Given the limited resources of devices in the field network, a challenging task is to address the conflict between the real-time requirements of these systems and the additional delay caused by encryption algorithms [149,150,143,121,39]. A common solution to circumvent this limitation is to encrypt the communication link between the field and control networks using a "Bump-In-The-Wire (BITW)" [149,150,143].…”

Section: General Aspectsmentioning

confidence: 99%

“…The "bump-in-the-wire" approach A related problem deals with the management of cryptographic keys. Some of the challenges in this area are discussed by Pi and Sitbon [121]. Choi et al [39] provide a SCADA specific solution that supports message broadcasting and secure communications.…”

Section: General Aspectsmentioning

confidence: 99%

Anomaly detection in SCADA systems : a network based approach

Barbosa¹

View full text Add to dashboard Cite

Cryptographic Key Management for SCADA Systems-Issues and Perspectives

Cited by 20 publications

References 16 publications

Research on trusted Modbus/TCP protocol of SCADA system based on digital envelope technology

Research on trusted Modbus/TCP protocol of SCADA system based on digital envelope technology

Security Analysis and Enhancement of INTERBUS Protocol in ICS Based on Colored Petri Net

Anomaly detection in SCADA systems : a network based approach

Contact Info

Product

Resources

About