Cryptographic key management for SCADA systems - Issues and perspectives

Proceedings of the 2nd International Conference on Information Security and Assurance, ISA 2008

Volumn , Issue , 2008, Pages 156-161

  Pietre Cambacedes, Ludovic ^a,b   Sitbon, Pascal ^a  

^a EDF R AND D   (France)

^b TELECOM PARISTECH   (France)

Author keywords

[No Author keywords available]

Indexed keywords

CRYPTOGRAPHIC KEY MANAGEMENT; INFORMATION SECURITY; INTERNATIONAL CONFERENCES;

DATA ACQUISITION; INFORMATION SERVICES;

SCADA SYSTEMS;

EID: 51349131393     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ISA.2008.77     Document Type: Conference Paper

References (42)

1. st ed.), John Wiley & Sons, November 2005, ISBN 0764597876, pp. 1-22.
2. US General Accounting Office, Critical Infrastructure Protection: Challenges and Efforts to Secure Control Systems, Report to Congress, GAO-04-354, 2004.
3. IEC (International Electrotechnical Commission), Power system control & associated communications - Data & communication security, IEC62351 part 1 to 7, Technical Specification, 2007.
4. IEEE (Institute of Electrical and Electronics Engineers), Trial Use Std. for Retrofit Cyber Security of Serial SCADA Links and IED Remote Access, P1689, Draft, 2007.
5. IEC/ISO, IT Security techniques - Key management, IEC/ISO11770, International Standard.
6. R. Dawson, C. Boyd, E. Dawson and JMG. Nieto, "SKMA, A Key Management Architecture for SCADA Systems", Proc. of the AISW-NetSec workshop, ACM, 2006.
7. S. Bellovin, R. Housley, "Guidelines for Cryptographic Key Management", RFC 4107, IETF, 2005.
8. R. Needham, M. Schroeder, "Using Encryption for Authentication in Large Networks of Computers" Communications of the ACM, Vol. 21, pp. 993-999, 1978.
9. G. Lowe, "An attack on the Needham-Schroeder public key authentication protocol", Information Processing Letters, vol. 56(3), pp. 131-136, 1995.
10. B. C. Neuman, Theodore Ts'o, "Kerberos: An Authentication Service for Computer Networks", IEEE Communications, volume 32/9, pp33-38, 1994.
11. C. Neuman, T. Yu, S. Hartman, K. Raeburn, "The Kerberos Network Authentication Service (V5)", RFC 4120, IETF, 2005.
12. IEC/ISO, IT - Security techniques - Entity authentication, IEC/ISO9798-5:2004, International Standard.
13. ITU (International Telecommunication Union), "Information Technology - Open Systems Interconnection - The Directory: Authentication Framework", ITU-T Recommendation X.509, 2005.
14. IETF, PKIX Charter Requests For Comments (RFCs), http://www.ietf.org/html.charters/pkix-charter.html
15. P. Gutmann, X509 Style Guide, October 2000, http://www.cs.auckland.ac.nz/ ~pgut001/
16. st ed.), Wiley, ISBN 0471223573, pp. 315-345, 2003.
17. P. Gutmann, "Everything you never wanted to know about PKI but have been forced to find out", 2001, http://www.cs.auckland.ac.nz/~pgut001/pubs/ pkitutorial.pdf
18. B. Kaliski, "Learning to SKI Again: The Renaissance of Symmetric Key Infrastructures", Proc. RSA Conference, San Francisco, USA, 2007.
19. L. Piètre-Cambacédès, C. Chalhoub, F. Cleveland, "IEC TC57 WG15 - Cyber security standards for the power system", Proc. of CIGRE D2 Colloquium, Luzern, 2007.
20. DNP User Group, Secure DNP3 specifications, DNP User Group Library (www.dnp.org), 2007.
21. J. Lund, "Learning from European Advanced Metering Deployments", Utility Automation & Engineering June 2007
22. EnerNex corporate communications, "EnerNex Announces Formation of AMI-SEC Task Force", Oct. 2007.
23. G. Gilchrist & D. Highfill, "Key Management and Cryptography for Advanced Metering Infrastructures (AMI) and Other Large, Low Power Networks", Proc. of the S4 2008 Conference, Miami, 2008.
24. C. Beaver, D. Gallup, W. Neumann & Torgerson M., "Key management for SCADA", Technical Report SAND2001-3252, Sandia National Laboratories, 2002.
25. D. Holstein, J. Tengdin, J. Wack, R. Butler, T. Draelos, P. Blomgren, Cyber Security for Utility Operations, NETL Project M63SNL34, Final Report, 2005.
26. Robert J. Lambert, "ECC and SCADA Key Management", S4 (SCADA Security Scientific Symposium) Conference, Digital Bond ed., 2007.
27. S. Hankerson, A. Menezes, Guide to Elliptic Curve Cryptography, Springer-Verlag, Berlin, Germany, 2004.
28. ECRYPT (European Network of Excellence in Cryptology), ECRYPT Yearly Report on Algorithms and Keysizes (D.SPA.10), ECRYPT IST European Project, 2005.
29. Jean-Jacques Quisquater, Louis C. Guillou, Thomas A. Berson, "How to Explain Zero-Knowledge Protocols to Your Children", Proc. of Crypto '89, Springer, pp.628-631, 1990.
30. T. Wu, "The SRP Authentication and Key Exchange System", Request for Comments (RFC) 2945, IETF, 2000.
31. P. Palensky and T. Sauter, "Security considerations for FAN-Internet connections," in Proc. IEEE Workshop on Factory Communication Systems, Porto, pp. 27-35, 2000.
32. T. Sauter and Ch. Schwaiger, "Achievement of secure Internet access to fieldbus systems", Microprocessors and Microsystems Journal, Elsevier, Vol. 26, Issue 7, 2002.
33. C. Schwaiger and A. Treytl, "Smart card based security for Fieldbus systems", in Proc. International IEEE Conference Emerging Technologies and Factory Automation 2003 (ETFA '03), vol. 1, pp. 398-406, 2003.
34. M. Lobashov, G. Pratl, and T. Sauter, "Implications of power-line communication on distributed data acquisition and control systems", in Proc. International IEEE Conference Emerging Technologies and Factory Automation 2003 (ETFA '03), vol. 2, pp. 607-613, 2003.
35. A. Perrig, R. Canetti, J. Tygar & D. Song, "Efficient authentication and signing of multicast streams over lossy channels", Proc. of the IEEE S&P Symp., IEEE CS, 2000.
36. Y. Wang, B. Chu, "sSCADA: Securing SCADA Infrastructure Communications", IACR Eprint, 2004.
37. A Perrig, R. Szewczyk, V. Wen, D. Culler and J. Tygar, "Spins: Security protocols for sensor networks", Wireless Networks Journal (WINE), September 2002.
38. G. Yang, C. Rong, C. Veigner, J. Wang, and H. Cheng, "Identity-Based Key Agreement and Encryption for Wireless Sensor Networks", IJCSNS International Journal of Computer Science and Network Security, Vol.6 No.5B, 2006.
39. D. Boneh, M. Franklin, "Identity-based encryption from the weil pairing", Proc. of CRYPTO'01, Springer, 2001.
40. M. Chorzempa, J-M. Park, M.Eltoweissy, "Key management for long-lived sensor networks in hostile environments", ACM Computer Communications, Volume 30, Issue 9, pp. 1964-1979, 2007.
41. A. Camtepe, B. Yener, "Key distribution mechanisms for wireless sensor networks: a survey", Technical Report 05-07, Rensselaer Polytechnic Institute, 2005.
42. C. Alcaraz & R. Roman, "Applying Key Infrastructures for Sensor Networks in CIP/CIIP Scenarios", Proceedings of CRITIS'06 Conference, Springer, 2006.