Authentication Layer for IEC 61113-3 Applications

Conference paper


Chrysoulas, C, Aydin, H and Mario, S (2019). Authentication Layer for IEC 61113-3 Applications. 10th IFIP International Conference on New Technologies, Mobility & Security. Gran Canaria, Spain 24 - 26 Jun 2019 doi:10.1109/NTMS.2019.8763839
AuthorsChrysoulas, C, Aydin, H and Mario, S
TypeConference paper
Abstract

Mid 2010, the Stuxnet ICS attack targeted the
Siemens automation products, and after this attack the ICS
security was thrust into spotlight, automation products
suppliers started to re-examine their business approach to cyber security. The OPC Foundation made also significant changes and improvements on its new design OPC-UA to increase
security of automation applications but, what is still missing and seems to be not resolved any time soon is having security in depth for industrial automation applications. In this paper, we propose a simple but strong security control solution, what we will call a logic application level security particularly for SCADA and DCS. This proposed method is based on message integrity and should not be viewed as the main, nor the only level of protection that an industrial automation system is expected to have, but can be a low-level security procedure that avoids intelligent attacks such as Stuxnet.

KeywordsStuxnet; Obfuscation; Encryption; MAC; SCADA; DCS
Year2019
Digital Object Identifier (DOI)doi:10.1109/NTMS.2019.8763839
Accepted author manuscript
License
CC BY 4.0
File Access Level
Open
Publication dates
Online15 Jul 2019
Publication process dates
Deposited20 Jun 2019
Accepted10 May 2019
ISBN978-1-7281-1542-9
Permalink -

https://openresearch.lsbu.ac.uk/item/866q4

Download files

Accepted author manuscript
PID1230536 (1).pdf
License: CC BY 4.0
File access level: Open

  • 31
    total views
  • 40
    total downloads
  • 0
    views this month
  • 0
    downloads this month

Export as

Related outputs

Saliency tubes: visual explanations for spatio-temporal convolutions
Stergiou, A, Kapidis, G, Kalliatakis, G, Chrysoulas, C, Veltkamp, R and Poppe, R (2019). Saliency tubes: visual explanations for spatio-temporal convolutions. 26th IEEE International Conference on Image Processing (ICIP). Taipei, Taiwan 22 - 25 Sep 2019
Hadoop and what it is good for
Chrysoulas, C, Kalliatakis, G and Stamatiadis, G (2017). Hadoop and what it is good for. in: Inge, R and Leif, J (ed.) Machine Learning: Advances in Research and Applications Nova Science Publishers, Inc.. pp. 177-194
Arrowhead compliant virtual market of energy
Ferreira, LL, Siksnys, L, Pedersen, P, Stluka, P, Chrysoulas, C, Le Guilly, T, Albano, M, Skou, A, Teixeira, C and Pedersen, T (2014). Arrowhead compliant virtual market of energy. Emerging Technology and Factory Automation. Barcelona, Spain 16 - 19 Sep 2014 London South Bank University. doi:10.1109/ETFA.2014.7005193
Towards a Security Enabled and SOA-based QoS (for the Smart Grid) Architecture.
Chrysoulas, C and Pitropakis, N (2018). Towards a Security Enabled and SOA-based QoS (for the Smart Grid) Architecture. EAI Endorsed Transactions on Industrial Networks and Intelligent Systems. 4, pp. e4-e4.
QoS provisioning in a service-oriented architecture targeting the smart grid world
Chrysoulas, C (2018). QoS provisioning in a service-oriented architecture targeting the smart grid world. International Journal of Smart Grid and Green Communications. 1 (3), pp. 216-226.
Teaching Industrial Automation Concepts with the use of Virtual/Augmented Reality – The IEC 61499 Case
Chrysoulas, C, Homay, A and Lemac, M (2018). Teaching Industrial Automation Concepts with the use of Virtual/Augmented Reality – The IEC 61499 Case. ITHET 2018, 17th International Conference on Information Technology Based Higher Education and Training. Olhao, Portugal 26 - 28 Apr 2018
Traffic Sign Recognition based on Synthesised Training Data
Stergiou, A, Kalliatakis, G and Chrysoulas, C (2018). Traffic Sign Recognition based on Synthesised Training Data. Big Data and Cognitive Computing. 2 (3), p. 19.
ProMe: A Mentoring Platform for Older Adults Using Machine Learning Techniques for Supporting the “Live and Learn” Concept
Chrysoulas, C, Kostopoulos, G, Neureiter, K, Papatoiu, D and Tscheligi, M (2018). ProMe: A Mentoring Platform for Older Adults Using Machine Learning Techniques for Supporting the “Live and Learn” Concept. Mobile Information Systems. 2018.
Building an adaptive E-learning system
Chrysoulas, C and Fasli, M (2017). Building an adaptive E-learning system. 9th International Conference on Computer Supported Education. Porto, Portugal 21 - 23 Apr 2017
Towards an adaptive SOA-based QoS & Demand-Response Provisioning Architecture for the Smart Grid
Chrysoulas, C and Fasli, M (2017). Towards an adaptive SOA-based QoS & Demand-Response Provisioning Architecture for the Smart Grid. Journal of Communications Software and Systems. 13 (2), pp. 77-86.
A service oriented QoS architecture targeting the smart grid world & machine learning aspects
Chrysoulas, C and Fasli, M (2016). A service oriented QoS architecture targeting the smart grid world & machine learning aspects. 2016 International Multidisciplinary Conference On Computer And Energy Science (SpliTech). Split, Croatia 13 - 15 Jul 2016 Institute of Electrical and Electronics Engineers (IEEE). doi:10.1109/SpliTech.2016.7555923
Exploiting voting strategies in partially replicated IEC 61499 applications
De Sousa, M, Chrysoulas, C and Homay, A (2015). Exploiting voting strategies in partially replicated IEC 61499 applications. 2015 IEEE World Conference on Factory Communication Systems. Palma de Mallorca, Spain 27 - 29 May 2015 Institute of Electrical and Electronics Engineers (IEEE). doi:10.1109/WFCS.2015.7160589
Multiply and conquer: A replication framework for building fault tolerant industrial applications
De Sousa, M, Chrysoulas, C and Homay, A (2015). Multiply and conquer: A replication framework for building fault tolerant industrial applications. 2015 IEEE 13th International Conference on Industrial Informatics. Cambridge, UK 22 - 24 Jul 2015 Institute of Electrical and Electronics Engineers (IEEE). pp. 1342-1347 doi:10.1109/INDIN.2015.7281930
Tolerating partial failures on IEC 61499 applications
De Sousa, M, Chrysoulas, C and Homay, A (2015). Tolerating partial failures on IEC 61499 applications. ACM SIGBED Review. 12 (3), pp. 32-35.
The arrowhead approach for SOA application development and documentation
Blomstedt, F, Ferreira, LL, Klisics, M, Chrysoulas, C, De Soria, IM, Morin, B, Zabasta, A, Eliasson, J, Johansson, M and Varga, P (2014). The arrowhead approach for SOA application development and documentation. IECON 2014 - 40th Annual Conference of the IEEE Industrial Electronics Society. Dallas, Texas 29 Oct - 01 Nov 2014 Institute of Electrical and Electronics Engineers (IEEE). pp. 2631-2637 doi:10.1109/IECON.2014.7048877