Authentication Layer for IEC 61113-3 Applications

Aydin Homay; Christos Chrysoulas; Mario de Sousa

doi:10.1109/NTMS.2019.8763839

Authentication Layer for IEC 61113-3 Applications

Aydin Homay
, Christos Chrysoulas
, Mario de Sousa

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

1 Citation (Scopus)

Abstract

Mid 2010, the Stuxnet ICS attack targeted the Siemens automation products, and after this attack the ICS security was thrust into spotlight, automation products suppliers started to re-examine their business approach to cyber security. The OPC Foundation made also significant changes and improvements on its new design OPC-UA to increase security of automation applications but, what is still missing and seems to be not resolved any time soon is having security in depth for industrial automation applications. In this paper, we propose a simple but strong security control solution, what we will call a logic application level security particularly for SCADA and DCS. This proposed method is based on message integrity and should not be viewed as the main, nor the only level of protection that an industrial automation system is expected to have, but can be a low-level security procedure that avoids intelligent attacks such as Stuxnet.

Original language	English
Title of host publication	2019 10th IFIP International Conference on New Technologies, Mobility and Security (NTMS)
Publisher	IEEE
ISBN (Electronic)	9781728115429, 9781728115412
ISBN (Print)	9781728115436
DOIs	https://doi.org/10.1109/NTMS.2019.8763839
Publication status	Published - 15 Jul 2019
Event	10th IFIP International Conference on New Technologies, Mobility and Security 2019 - Canary Islands, Spain Duration: 24 Jun 2019 → 26 Jun 2019

Conference

Conference	10th IFIP International Conference on New Technologies, Mobility and Security 2019
Abbreviated title	NTMS 2019
Country/Territory	Spain
City	Canary Islands
Period	24/06/19 → 26/06/19

Keywords

Security
Computer worms
IEC Standards
Integrated circuits
Automation
Stuxnet
Obfuscation
Encryption
MAC
SCADA
DCS

Access to Document

10.1109/NTMS.2019.8763839

Cite this

@inproceedings{86eecb82f6124e7bab09eab1266f77d8,

title = "Authentication Layer for IEC 61113-3 Applications",

abstract = "Mid 2010, the Stuxnet ICS attack targeted the Siemens automation products, and after this attack the ICS security was thrust into spotlight, automation products suppliers started to re-examine their business approach to cyber security. The OPC Foundation made also significant changes and improvements on its new design OPC-UA to increase security of automation applications but, what is still missing and seems to be not resolved any time soon is having security in depth for industrial automation applications. In this paper, we propose a simple but strong security control solution, what we will call a logic application level security particularly for SCADA and DCS. This proposed method is based on message integrity and should not be viewed as the main, nor the only level of protection that an industrial automation system is expected to have, but can be a low-level security procedure that avoids intelligent attacks such as Stuxnet.",

keywords = "Security, Computer worms, IEC Standards, Integrated circuits, Automation, Stuxnet, Obfuscation, Encryption, MAC, SCADA, DCS",

author = "Aydin Homay and Christos Chrysoulas and \{de Sousa\}, Mario",

year = "2019",

month = jul,

day = "15",

doi = "10.1109/NTMS.2019.8763839",

language = "English",

isbn = "9781728115436",

booktitle = "2019 10th IFIP International Conference on New Technologies, Mobility and Security (NTMS)",

publisher = "IEEE",

address = "United States",

note = "10th IFIP International Conference on New Technologies, Mobility and Security 2019, NTMS 2019 ; Conference date: 24-06-2019 Through 26-06-2019",

}

TY - GEN

T1 - Authentication Layer for IEC 61113-3 Applications

AU - Homay, Aydin

AU - Chrysoulas, Christos

AU - de Sousa, Mario

PY - 2019/7/15

Y1 - 2019/7/15

N2 - Mid 2010, the Stuxnet ICS attack targeted the Siemens automation products, and after this attack the ICS security was thrust into spotlight, automation products suppliers started to re-examine their business approach to cyber security. The OPC Foundation made also significant changes and improvements on its new design OPC-UA to increase security of automation applications but, what is still missing and seems to be not resolved any time soon is having security in depth for industrial automation applications. In this paper, we propose a simple but strong security control solution, what we will call a logic application level security particularly for SCADA and DCS. This proposed method is based on message integrity and should not be viewed as the main, nor the only level of protection that an industrial automation system is expected to have, but can be a low-level security procedure that avoids intelligent attacks such as Stuxnet.

AB - Mid 2010, the Stuxnet ICS attack targeted the Siemens automation products, and after this attack the ICS security was thrust into spotlight, automation products suppliers started to re-examine their business approach to cyber security. The OPC Foundation made also significant changes and improvements on its new design OPC-UA to increase security of automation applications but, what is still missing and seems to be not resolved any time soon is having security in depth for industrial automation applications. In this paper, we propose a simple but strong security control solution, what we will call a logic application level security particularly for SCADA and DCS. This proposed method is based on message integrity and should not be viewed as the main, nor the only level of protection that an industrial automation system is expected to have, but can be a low-level security procedure that avoids intelligent attacks such as Stuxnet.

KW - Security

KW - Computer worms

KW - IEC Standards

KW - Integrated circuits

KW - Automation

KW - Stuxnet

KW - Obfuscation

KW - Encryption

KW - MAC

KW - SCADA

KW - DCS

UR - https://www.scopus.com/pages/publications/85070349834

U2 - 10.1109/NTMS.2019.8763839

DO - 10.1109/NTMS.2019.8763839

M3 - Conference contribution

SN - 9781728115436

BT - 2019 10th IFIP International Conference on New Technologies, Mobility and Security (NTMS)

PB - IEEE

T2 - 10th IFIP International Conference on New Technologies, Mobility and Security 2019

Y2 - 24 June 2019 through 26 June 2019

ER -

Authentication Layer for IEC 61113-3 Applications

Abstract

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this