Challenges and direction toward secure communication in the SCADA system

CNSR 2010 - Proceedings of the 8th Annual Conference on Communication Networks and Services Research

Volumn , Issue , 2010, Pages 381-386

  Hong, Sugwon ^a   Lee, Myongho ^a  

^a Myong Ji University   (South Korea)

Author keywords

SCADA cyber security; Security protocol; Smart device; Smart grid

Indexed keywords

COMMUNICATION FUNCTIONS; CYBER SECURITY; INTERNATIONAL STANDARD ORGANIZATIONS; POWER GRIDS; RESEARCH COMMUNITIES; SCADA SECURITY; SECURE COMMUNICATIONS; SECURITY FUNCTIONS; SECURITY ISSUES; SECURITY MECHANISM; SECURITY PROTOCOLS; SMART DEVICES; SMART GRID; STANDARD DOCUMENTS; SUPERVISORY CONTROL AND DATA ACQUISITION SYSTEMS; TECHNOLOGICAL CHALLENGES;

COMMUNICATION; NETWORK SECURITY; POWER GENERATION; RESEARCH; SCADA SYSTEMS;

NETWORK PROTOCOLS;

EID: 77955220046     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CNSR.2010.52     Document Type: Conference Paper

References (30)

1. V. M. Igure, S. A. Laugher, and R. D. Williams, "Security issues in SCADA networks," Computers & Security Vol. 25, pp. 498-506, 2006.
2. J. Clerk Maxwell, A Treatise on Electricity and Magnetism, 3rd ed., vol.2. Oxford: Clar IEC technical committee 57, "Part 1: Communication network and system security - Introduction to security issues," IEC 62351-62361, May 2007.
3. DNP User Group, http://www.dnp.org.
4. IEC, "Communication networks and systems in substations- Part 1: introduction and overview," IEC TR 61850-1, 2003.
5. L. Pietre-Cambacedes and P. Sitbon, "Cryptographic key management for SCADA systems - issues and perspectives," International Conference on Information Security and Assurance, 2008.
6. ISO, Information Technology - Security Techniques - Key Management - Part 2: Mechanisms Using Symmetric Techniques, ISO/IEC 11770-11772, 1996.
7. R. Dawson, C. Boyd, E. Dawson, and J.M.G. Nieto, "SKMA-A Key Management Architecture for SCADA Systems," Proceedings of the Australasian workshops on Grid computing and e-research, 2006.
8. C. Beaver, D. Gallup, W. Neuman, and M. Torgerson, "Key management for SCADA," Technical Report, SANDIA, 2002.
9. B. Clifford Neuman and T. Tso, "Kerberos: An authentication service for computer networks", IEEE Communications Magazine, Vol.32, No.9, pp33-28, September 1994.
10. ISO, Information Technology - Security Techniques - Key Management - Part 2: Mechanisms Using Symmetric Techniques, ISO/IEC 11770-11772, 1996.
11. Y. Wang and B.-T. Chu, "sSCADA: Securing SCADA Infrastructure Communications," http://eprint.iacr.org/2004/265.pdf.
12. S.A. Camtepe and B. Yener, "Key Distribution Mechanisms for Wireless Sensor Networks: a Survey," TR-05-07, Dept. of Computer Science, Rensselaer Polytechnic Institute, 2005.
13. S. Cheung, B. Dutertre, M. Fong, U. Lindqvist, and K. Skinner, "Using Model-based Intrusion Detection for SCADA Networks," SCADA Security Scientific Symposium, 2007.
14. J.L. Rrushi and R. H. Campbell, "Detecting Attacks in Power Plant Interfacing Substations through Probabilistic Validation of Attack-Effect Bindings," SCADA Security Scientific Symposium, 2008.
15. P.P. Tsang and S.W. Smith, "YASIR: A Low-Latency, High-Integrity Security Retrofit for Legacy SCADA Systems," The IFIP TC 11 23rd International Information Security Conference, 2008.
16. A. K. Wright, J. A. Kinast, and J. McCarty, "Low-Latency Cryptographic Protection for SCADA Communications," Applied Cryptography and Network Security, 2004.
17. IEC technical committee 57, "Data and Communications Security, Part 5: Security for IEC 60870-5 and derivatives," IEC 62351-62355 Second Committee Draft, December 2005.
18. DNP User Group, Secure DNP3 specification, www.dnp.org, 2007.
19. IEEE, Trial Use Std. for Retrofit Cyber Security of Serial SCADA Links and IED Remote Access, P1689, 2007.
20. AGA Report No. 12, Cryptographic Protection of SCADA Communications: General Recommendations, Draft2, 2004.
21. H. Krawcryk, M. Bellare, and R. Canetti, "HMAC: Keyed-Hashing for Message Authentication", RFC 2104, February 1997.
22. I. H. Lim, S. Hong, M. S. Choi, S.J. Lee, T. W. Kim, S. W. Lee, and B. N. Ha, "Security Protocols Against Cyber Attacks in the Distribution Automation System," IEEE Tran. on Power Delivery, Vol.25, No 1, Jan. 2010.
23. R. Rivest, "The MD5 Message-Digest Algorithms", RFC 1321, April 1992.
24. J. C. Mogul and K. K. Ramakrishnanl "Eliminating receive livelock in an interrupted-driven kernel," ACM Trans. On Computer System, Vol.15, No 3, pp217-252, 1997.
25. L. Rizzo, "Device Polling support for FreeBSD," the EuroBSDCon 2001.
26. L. Deri, "Improving passive packet packet capture: Beyond device polling," the 4th Int. System Administration and Network Engineering Conference 2004.
27. L. Deri, "nCap: Wire-speed packet capture and transmission," the IEEE/IFIP Workshop on End-to-End Monitoring Techniques and Services 2005.
28. F. Schneider, J. Wallerich, and A. Feldmann, "Packet Capture in 10-Gigabit Ethernet Environments Using Contemporary Commodity Hardware," LNCS 4427, pp207-217, 2007.
29. L. Spracklen and S. Abraham, Chip MultiThreading: Opportunities and Challenges, 11th International Symposium on High-Performance Computer Architecture (HPCA-11), pp 248-252, 2005.
30. Y. Li, D. Brooks, Z. Hu, K. Shadron, "Performance, Energy, and Thermal Considerations for SMT and CMP Architectures," 11th International Symposium on High-Performance Computer Architecture, 2005.endon, 1892, pp.68-73.