Security enhancements for distributed control systems

IFIP International Federation for Information Processing

Volumn 253, Issue , 2007, Pages 133-146

  Hieb, Jeffrey ^a   Graham, James ^a   Patel, Sandip ^b  

^a UNIVERSITY OF LOUISVILLE   (United States)

^b MORGAN STATE UNIVERSITY   (United States)

Author keywords

DNP3; Role based authorization; RTU security; Secure communication

Indexed keywords

EID: 36248934250     PISSN: 15715736     EISSN: None     Source Type: Book Series    
DOI: 10.1007/978-0-387-75462-8_10     Document Type: Conference Paper

References (36)

1. J. Abshier, Ten principles for securing control systems, Control, vol. 18(10), pp. 77-81, 2005.
2. J. Abshier and J. Weiss, Securing control systems: What you need to know, Control, vol. 17(2), pp. 43-48, 2004.
3. J. Alves-Foss, C. Taylor and P. Oman, A multi-layered approach to security in high assurance systems, Proceedings of the Thirty-Seventh Annual Hawaii International Conference on System Sciences, 2004.
4. American Gas Association, Cryptographic Protection of SCADA Communications; Part 1: Background, Policies and Test Plan, AGA Report No. 12 (Part 1), Draft 5, Washington, DC (www.gtiservices.org/security/ AGA12Draft5r3.pdf), 2005.
5. American Gas Association, Cryptographic Protection of SCADA Communications; Part 2: Retrofit Link Encryption for Asynchronous Serial Communications, AGA Report No. 12 (Part 2), Draft, Washington, DC (www.gtiservices.org/security/aga-12p2-draft-0512.pdf), 2005.
6. C. Bowen III, T. Buennemeyer and R. Thomas, Next generation SCADA security: Best practices and client puzzles, Proceedings of the Sixth Annual IEEE Systems, Man and Cybernetics Information Assurance Workshop pp. 426-427, 2005.
7. T. Brown, Security in SCADA systems: How to handle the growing menace to process automation, Computing and Control Engineering Journal, vol. 16(3), pp. 42-47, 2005.
8. E. Byres and J. Lowe, The myths and facts behind cyber security risks for industrial control systems, presented at the VDE Congress, 2004.
9. W. Clinton, Presidential Decision Directive 63, The White House, Washington, DC (www.fas.org/irp/offdocs/pdd/pdd-63.htm), 1998.
10. A. Creery and E. Byres, Industrial cyber security for power system and SCADA networks, Proceedings of the Fifty-Second Annual Petroleum and Chemical Industry Conference, pp. 303-309, 2005.
11. J. Fernandez and A. Fernandez, SCADA systems: Vulnerabilities and remediation, Journal of Computing Sciences in Colleges, vol. 20(4), pp. 160-168, 2005.
12. D. Ferraiolo, R. Sandhu, S. Gavrila, D. Kuhn and R. Chandramouli, Proposed NIST standard for role-based access control, ACM Transactions on Information and System Security, vol. 4(3), pp. 224-274, 2001.
13. D. Gaushell and W. Block, SCADA communication techniques and standards, Computer Applications in Power, vol. 6(3), pp. 45-50, 1993.
14. D. Geer, Security of critical control systems sparks concern, IEEE Computer, vol. 39(1), pp. 20-23, 2006.
15. J. Graham and S. Patel, Correctness proofs for SCADA communications protocols, Proceedings of the Ninth World Multi-Conference on Systemics, Cybernetics and Informatics, pp. 392-397, 2005.
16. W. Harrison, N. Hanebutte, P. Oman and J. Alves-Foss, The MILS architecture for a secure global information grid, CrossTalk: The Journal of Defense Software Engineering, vol. 18(10), pp. 20-24, 2005.
17. Instrumentation Systems and Automation Society, Security Technologies for Manufacturing and Control Systems (ANSI/ISA-TR99.00.01-2004), Research Triangle Park, North Carolina, 2004.
18. Instrumentation Systems and Automation Society, Integrating Electronic Security into the Manufacturing and Control Systems Environment (ANSI/ ISA-TR99.00.02-2004), Research Triangle Park, North Carolina, 2004.
19. T. Kropp, System threats and vulnerabilities (power system protection), IEEE Power and Energy, vol. 4(2), pp. 46-50, 2006.
20. J. Liedtke, On micro-kernel construction, Proceedings of the Fifteenth ACM Symposium on Operating Systems Principles, pp. 237-250, 1995.
21. LynuxWorks (www.lynuxworks.com).
22. R. McClanahan, SCADA and IP: Is network convergence really here? IEEE Industry Applications, vol. 9(2), pp. 29-36, 2003.
23. A. Miller, Trends in process control systems security, IEEE Security and Privacy, vol. 3(5), pp. 57-60, 2005.
24. M. Naedele and O. Biderbost, Human-assisted intrusion detection for process control systems, Proceedings of the Second International Conference on Applied Cryptography and Network Security, 2004.
25. National Communications System, Supervisory Control and Data Acquisition (SCADA) Systems, Technical Bulletin 04-1, Arlington, Virginia, 2004.
26. Office of Energy Assurance, 21 Steps to Improve Cyber Security of SCADA Networks, U.S. Department of Energy, Washington, DC, 2002.
27. P. Oman, E. Schweitzer and D. Frincke, Concerns about intrusions into remotely accessible substation controllers and SCADA systems, Proceedings of the Twenty-Seventh Annual Western Protective Relay Conference, 2000.
28. P. Oman, E. Schweitzer and J. Roberts, Safeguarding IEDs, substations and SCADA systems against electronic intrusions, Proceedings of the Western Power Delivery Automation Conference, 2001.
29. S. Patel, Secure Internet-Based Communication Protocol for SCADA Networks, Ph.D. Dissertation, Department of Computer Engineering and Computer Science, University of Louisville, Louisville, Kentucky, 2006.
30. President's Commission on Critical Infrastructure Protection, Critical Foundations: Protecting America's Infrastructures, Report Number 040-000-00699-1, United States Government Printing Office, Washington, DC, 1997.
31. A. Risely, J. Roberts and P. LaDow, Electronic security of real-time protection and SCADA communications, Proceedings of the Fifth Annual Western Power Delivery Automation Conference, 2003.
32. W. Rush and A. Shah, Impact of Information Security Systems on Real-Time Process Control, Final Report, NIST Project SB1341-02-C-081, Gas Technology Institute, Des Plaines, Illinois (www.isd.mel.nist.gov/ projects/processcontrol/testbed/GTI_Final April2005.pdf), 2005.
33. K. Stouffer, J. Falco and K. Kent, Guide to Supervisory Control and Data Acquisition (SCADA) and Industrial Control Systems Security - Initial Public Draft, National Institute of Standards and Technology, Gaithersburg, Maryland, 2006.
34. E. Swankoski, N. Vijaykrishnan, M. Kandemir and M. Irwin, A parallel architecture for secure FPGA symmetric encryption, Proceedings of the Eighteenth International Parallel and Distributed Processing Symposium 2004.
35. A. Wright, Proposal on secure authentication and authorization for remote access to SCADA field equipment, presented at the Instrumentation Systems and Automation (ISA) Society EXPO, 2005.
36. A. Wright, J. Kinast and J. McCarty, Low-latency cryptographic protection for SCADA communications, in Applied Cryptography and Network Security (LNCS 3089), M. Jakobsson, M. Yung and J. Zhou (Eds.), Springer, Berlin-Heidelberg, Germany, pp. 263-277, 2004.