Evaluation of OPC UA secure communication in web browser applications

IEEE International Conference on Industrial Informatics (INDIN)

Volumn , Issue , 2008, Pages 1660-1665

  Braune, Annerose ^a   Henning, Stefan ^a   Hegler, Sebastian ^a  

^a DRESDEN UNIVERSITY OF TECHNOLOGY   (Germany)

Author keywords

[No Author keywords available]

Indexed keywords

CONFORMAL MAPPING; CRYPTOGRAPHY; JAVA PROGRAMMING LANGUAGE; MARKUP LANGUAGES; REAL TIME SYSTEMS; SPECIFICATIONS; TECHNOLOGY TRANSFER; WEB SERVICES; WORLD WIDE WEB; XML;

COMPUTING TIMES; CRYPTOGRAPHIC ALGORITHMS; DATA EXCHANGES; DRESDEN; INDUSTRIAL AUTOMATIONS; INDUSTRIAL PROCESSES; JAVASCRIPT; OPERATING FUNCTIONS; PROCESS DATUM; SCRIPTING LANGUAGES; SECURE COMMUNICATIONS; SECURE MESSAGES; TECHNICAL PROCESSES; WEB SERVICE INTERFACES; WEB SERVICES SECURITIES; XML SIGNATURES; XML TECHNOLOGIES; XML WEB SERVICES;

WEB BROWSERS;

EID: 54849419301     PISSN: 19354576     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/INDIN.2008.4618370     Document Type: Conference Paper

References (24)

1. Softing AG, "OPC Toolbox C++ XML DA. Produktinformation Softing AG. 09/2003, 3rd ed." http://www.softing.com/home/de/pdf/ia/productinfo/opc/ D_IA_10D_0309_OPC_Toolbox_Z.pdf Last checked: March, 7th 2008.
2. Schneider Electric, "Quantum Unity Ethernet Network Modules Documentation, 3rd ed", Schneider Electric, 09/2005.
3. ISO/IEC, "Information technology - Open Systems Interconnection - Basic Reference Model: The Basic Model (ISO/IEC 7498-1:1994 (E), second edition 1996)", ISO/IEC International Standard, 1996.
4. OPC Foundation, "OPC Unified Architecture - Part 6: Mappings, Release Candidate 0.93", OPC Industry Standard Specification, 2006.
5. NAMUR-Arbeitskreis AK 2.8 "Internet/Intranet", "NA 115 - IT-Security for Industrial Automation Systems: Constraints for measures applied in process industries", NAMUR-Worksheet, 2006.
6. VDI/VDE-Gesellschaft Mess- und Automatisierungstechnik, Fachausschuss Security, "IT-security for industrial automation - General model", VDI/VDE-Richtlinien, 2007.
7. Normenausschuss Informationstechnik (NI) im DIN, "Information technology - Security techniques - Management of information and communications technology security - Part 1: Concepts and models for information and communications technology security management (ISO/IEC 13335-1:2004)", Deutsches Institut fiir Normung e.V., 2006.
8. N. Mitra and Y. Lafon, "SOAP version 1.2 part 0: Primer (second edition), " W3C, Tech. Rep., Apr. 2007, http://www.w3.org/TR/2007/REC- soap12-part0-20070427/.
9. M. Bartel, J. Boyer, B. Fox, B. LaMacchia, and E. Simon, "XML-signature syntax and processing", W3C, W3C Recommendation, Feb. 2002, http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/.
10. Imamura, B. Dillaway, and E. Simon, "XML encryption syntax and processing", W3C, W3C Recommendation, Dec. 2002, http://www.w3.org/TR/2002/ REC-xmlenc-core-20021210/.
11. Organization for the Advancement of Structured Information Standards, OASIS, "Web Services Security: SOAP Message Security 1.1 (WS-Security 2004)", OASIS Standard Specification, http://oasis-open.org/committees/ tc_home.php?wg_abbrev=wss, 2006.
12. S. Anderson, J. Bohren, T. Boubez, M. Chanliau, G. Della-Libera, B. Dixon, P. Garg, M. Gudgin, S. Hada, P. Hallam-Baker, M. Hondo, C. Kaler, H. Lockhart, R. Martherus, H. Maruyama, A. Nadalin, N. Nagaratnam, A. Nash, R. Philpott, D. Piatt, H. Prafullchandra, M. Sahu, J. Shewchuk, D. Simon, D. Srinivas, E. Waingold, D. Waite, D. Walter, and R. Zolfonoon, "Web Services Secure Conversation Language (WS-SecureConversation", OASIS Standard Specification, http://docs.oasis-open.org/ws-sx/ws-secureconversation/200512, 2007.
13. S. Anderson, J. Bohren, T. Boubez, M. Chanliau, G. Della-Libera, B. Dixon, P. Garg, M. Gudgin, P. Hallam-Baker, M. Hondo, C. Kaler, H. Lockhart, R. Martherus, H. Maruyama, A. Nadalin, N. Nagaratnam, A. Nash, R. Philpott, D. Piatt, H. Prafullchandra, M. Sahu, J. Shewchuk, D. Simon, D. Srinivas, E. Waingold, D. Waite, D. Walter, and R. Zolfonoon, "Web Services Trust Language (WS-Trust)", OASIS Standard Specification, http://docs.oasis-open. org/ws-sx/ws-trust/200512, 2007.
14. T. Rogers, M. Hadley, and M. Gudgin, "Web services addressing 1.0 - core", W3C, W3C Recommendation, May 2006, http://www.w3.org/TR/2006/REC-ws- addr-core-20060509.
15. A. O. Freier, P. Karlton, and P. C. Kocher, "The SSL Protocol - Version 3.0", INTERNET-DRAFT, http://wp.netscape.com/eng/ssl3/draft302.txt, 1996.
16. OASIS, "eXtensible Access Control Markup Language (XACML) Version 2.0", OASI Standard Specification, http://oasis-open.org/committees/ tc_home.php?wg_abbrev=xacml, 2005
17. D. Eastlake 3rd and P. Jones, "US Secure Hash Algorithm 1 (SHAl)", RFC 3174 (Informational), Sep. 2001, updated by RFC 4634. [Online]. Available: http://www.ietf.org/rfc/rfc3174.txt
18. D. Wang, T. Beyer, T. Frotscher, and M. Teufel, Java Web Services mit Apache Axis. Software & Support Verlag GmbH, Frankfurt, 2004.
19. T. Wu, "BigIntegers and RSA in JavaScript", http://www-cs-students.stanford.edu/ĩjw/jsbn/, Last checked: March, 7th 2008.
20. The Apache Software Foundation, "Apache Project", http://ws.apache.org/, Last checked: March, 7th 2008.
21. P. Johnston, G. Holt, A. Kepert, Ydnar, and Lostinet, "JavaScript MD5", http://pajhome.org.uk/crypt/md5/index.html, Last checked: March, 8th 2008.
22. T. Dierks and E. Rescorla, "The Transport Layer Security (TLS) Protocol Version 1.1", RFC 4346 (Proposed Standard), Apr. 2006, updated by RFCs 4366, 4680, 4681. [Online]. Available: http://www.ietf.org/rfc/rfc4346.txt
23. R. Fielding, J. Gettys, J. Mogul, H. Frystyk, L. Masinter, P. Leach, and T. Berners-Lee, "Hypertext Transfer Protocol - HTTP/1.1", RFC 2616 (Draft Standard), Jun. 1999, updated by RFC 2817. [Online] Available: http://www.ietf.org/rfc/rfc2616.txt
24. H. Krawczyk, M. Bellare, and R. Canetti, "HMAC: Keyed-Hashing for Message Authentication", RFC 2104 (Informational), Feb. 1997. [Online]. Available: http://www.ietf.org/rfc/rfc2104.txt.