Security measures in automation systems - A practice-oriented approach

IEEE International Conference on Emerging Technologies and Factory Automation, ETFA

Volumn 2 2 OF 2 VOL, Issue , 2005, Pages 847-856

  Treytl, Albert ^a   Sauter, Thilo ^a,b   Schwaiger, Christian ^c  

^a VIENNA UNIVERSITY OF TECHNOLOGY   (Austria)

^b ERICH SCHMID INSTITUTE OF MATERIALS SCIENCE   (Austria)

^c Austria Card   (Austria)

Author keywords

[No Author keywords available]

Indexed keywords

ADD-ON SERVICE; AUTOMATION SYSTEMS; RESOURCE LIMITATIONS; SYSTEM LEVELS;

DATA COMMUNICATION SYSTEMS; SECURITY OF DATA; SYSTEM STABILITY; SYSTEMS ANALYSIS;

AUTOMATION;

EID: 33847298654     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (37)

1. C. Schwaiger and A. Treytl, "Smart Card Based Security for Fieldbus Systems", 2003 IEEE Conference on Emerging Technologies and Factory Automation, Lisbon,16.-19. Sep. 2003, pp. 398-406, 2003.
2. A. Treytl, T. Sauter, and C. Schwaiger, "Security Measures for Industrial Fieldbus Systems - State of the Art and Solutions for IP-based Approaches", IEEE International Workshop on Factory Communication Systems (WFCS), Wien, 22.-24. Sep. 2004, pp. 201-209.
3. M. Knizak, M. Kunes, M. Manninger, and T. Sauter, "Modular Agent Design for Fieldbus Management", IEEE International Conference on Emerging Technologies and Factory Automation", Barcelona, 18.-21. Oct. 1999, pp. 857-864.
4. M.S. DePriest, Network security considerations in TCP/IP-based manufacturing automation", ISA Transactions, vol. 36, no. 1, 1997, pp. 37-48.
5. P. Palensky and T. Sauter, "Security Considerations for FAN-Internet Connections", IEEE International Workshop on Factory Communication Systems (WFCS), Porto, 2000, pp 27-35
6. International Standardization Organization, "Basic Reference Model for Open System Interconnection - Part 2: Security Architecture", 1989.
7. S. Northcutt et al., "Inside Network Perimeter Security", 2nd Edition, Sams Publishing, 2005.
8. C. Schwaiger and T. Sauter, "Security Strategies for Field Area Networks", 28th Annual Conference of the IEEE Industrial Electronics Society (IECON), Sevilla, S.-S. Nov. 2002, pp. 2915-2920.
9. E. Byres, J. Lowe, "The Myths and Facts behind Cyber Security Risks for Industrial Control Systems", VDE Kongress 2004, Berlin, pp. 213-218.
10. R. Roger and S. Meyers (Eds.), "Maximum Security", Sams.net Publishing, 1997.
11. The Honeynet Project, "Know Your Enemy", w. CD-ROM, Addison-Wesley Professional, 2004
12. A.C. Weaver, "Enforcing Distributed Data Security via Web Services", IEEE International Workshop on Factory Communication Systems (WFCS), Wien, 22.-24. Sep. 2004, pp. 397-402.
13. M. Wollschlaeger, T. Bangemann, "Maintenance Portals in Automation Networks - Requirements, Structures and Model for Web-based Solutions", WFCS 2004, pp. 193-199.
14. T. Smith, "Hacker jailed for revenge sewage attacks" [online]. The Register, 31. Oktober 2001 [available at] http://www.theregister. co.uk/2001/10/31/hacker_jailed_for_revenge_sewage/
15. U.S. Nuclear Regulatory Commission, "NRC Issues Information Notice on Potential of Nuclear Power Plant Network To Worm Infection", No. 03-108, 2003. [Available at]http://www.nrc.gov/OPA
16. Auguste Kerckhoffs, "La cryptographie militaire", Journal des sciences militaires, vol. IX, pp. 5-38, Janvier 1883, pp. 161-191, Février 1883.
17. SELMA - Project for secure electronic metering data interchange, 2003. [Available at] http://www.selma-project.de
18. A. Treytl, N. Roberts, G.P. Hancke, "Security Architecture for Power-line Metering System", IEEE International Workshop on Factory Communication Systems (WFCS), Wien, 22.-24. Sep. 2004, pp. 393-396.
19. International Electrotechnical Commission, "IEC 61784-1, Digital data communications for measurement and control - Part 1: Profile sets for continuous and discrete manufacturing relative to fieldbus use in industrial control systems", 2003
20. International Electrotechnical Commission, IEC 61158, Digital data communications for measurement and control - Fieldbus for use in industrial control systems, 2003
21. R. Zalenski, "Firewall technologies", IEEE Potentials, vo. 21, no. 1, 2002, pp. 24-29.
22. V. Kapsalis, K. Charatsis, M. Georgoudakis, G. Papadopoulos, "Architecture for Web-based services integration," in Proc. 29th Annual Conference of the IEEE Industrial Electronics Society Vol. 1, Roanoke, 2003, pp. 866-871.
23. R. Sandhu, E. J. Coyne, H. L. Feinstein, C. E.Youman, "Role Based Access Control Models", IEEE Computers, vol.29, 1996, pp. 38-47
24. A. Sikora, P. Brügger, "Virtual Private Infrastructure (VPI) Initiative - An Industry Consortium for Unified and Secure Web Control with Embedded Devices", ETFA 2003, vol. 1, pp. 288-291.
25. C. Paquet, W. Saxe, "Business Case for Network Security: Advocacy, Governance, and ROI", The Cisco Press, 2004.
26. T. Dierks and C. Allen, "RFC 2246: The TLS Protocol", Version 1.0. The Internet Society, January 1999. [Available at] http://www.rfc-editor.org.
27. E. Rescorla, "SSL and TLS ", Addison Wesley, 2000.
28. M. Lobashov, G. Pratl and T. Sauter, "Applicability of Internet protocols for fleldbus access", in IEEE International Workshop on Factory Communication Systems (WFCS), 2002, pp. 205-213.
29. R. Fielding et al., "RFC 2616, Hypertext Transfer Protocol - HTTP/1.1", The Internet Society, June 1999. [Available at] http://www.rfc-editor.org.
30. E. Rescorla, "RFC 2818: HTTP Over TLS", The Internet Society, May 2000. [Available at] http://www.rfc-editor.org
31. J. Hodges, R. Morgan, M. Wahl, "RFC 2830: Lightweight Directory Access Protocol (v3): Extension for Transport Layer Security", The Internet Society, May 2000. [Available at] http://www.rfc-editor.org.
32. U. Blumenthal and B. Wijnen, "RFC 2574: User-based Security Model (USM) for version 3 of the Simple Network Management Protocol (SNMPv3)", The Internet Society, April 1999. [Available at] http://www.rfc-editor.org.
33. W3C, "SOAP Version 1.2 Part 0: Primer", W3C Recommendation 24 June 2003, [Available at] http://www.w3.org/TR/soap12-part0/
34. Franks et al., "RFC 2617, HTTP Authentication: Basic and Digest Access Authentication", The Internet Society, June 1999. [Available at] http://www.rfc-editor.org.
35. T.P. von Hoff, M. Crevatin, "HTTP Digest Authentication in Embedded Automation Systems", ETFA 2003, vol. 1, pp. 390-397.
36. R. Bhatti, E. Bertino, A. Ghafoor, J.B.D. Joshi, "XML-Based Specification for Web Services Document Security", IEEE Computer, 2004, pp. 41-49.
37. Naganand Doraswamy, Dan Harkins, "IPSec: The New Security Standard for the Internet, Intranets, and Virtual Private Networks", 2nd ed., Prentice Hall PTR, 2003