Cryptographic key management for SCADA systems, issues and: Perspectives

International Journal of Security and its Applications

Volumn 2, Issue 3, 2008, Pages 31-40

  Piètre Cambacédes, Ludovic ^a,b   Sitbon, Pascal ^a  

^a EDF R AND D   (France)

^b TELECOM PARISTECH   (France)

Author keywords

[No Author keywords available]

Indexed keywords

CRYPTOGRAPHIC KEY MANAGEMENT; RESEARCH DIRECTIONS; SYSTEMS ENVIRONMENT; TECHNICAL PROPERTIES;

SCADA SYSTEMS;

PUBLIC KEY CRYPTOGRAPHY;

EID: 84858163848     PISSN: 17389976     EISSN: None     Source Type: Journal    
DOI: None     Document Type: Article

References (42)

1. Ronald L. Krutz, Securing Scada Systems (1st ed.), John Wiley & Sons, 2005, ISBN 0764597876, 1-22.
2. US General Accounting Office, Critical Infrastructure Protection: Challenges and Efforts to Secure Control Systems, Report to Congress, GAO-04-354, 2004
3. IEC (International Electrotechnical Commission), Power system control & associated communications - Data & communication security, IEC62351 part 1 to 7, Technical Specification, 2007
4. IEEE (Institute of Electrical and Electronics Engineers), Trial Use Std. for Retrofit Cyber Security of Serial SCADA Links and IED Remote Access, P1689, Draft, 2007.
5. IEC/ISO, IT Security techniques - Key management, IEC/ISO11770, International Standard
6. R. Dawson, C. Boyd, E. Dawson and JMG. Nieto, " SKMA, A Key Management Architecture for SCADA Systems" , Proc. of the AISW-NetSec workshop, ACM, 2006.
7. S. Bellovin, R. Housley, " Guidelines for Cryptographic Key Management" , RFC 4107, IETF, 2005.
8. R. Needham, M. Schroeder, "Using Encryption for Authentication in Large Networks of Computers" Communications of the ACM, Vol. 21, pp. 993-999, 1978.
9. G. Lowe, " An attack on the Needham-Schroeder public key authentication protocol" , Information Processing Letters, vol. 56(3), pp. 131-136, 1995.
10. B. C. Neuman, Theodore Ts'o, " Kerberos: An Authentication Service for Computer Networks" , IEEE Communications, volume 32/9, 33-38, 1994.
11. C. Neuman, T. Yu, S. Hartman,, K. Raeburn, " The Kerberos Network Authentication Service (V5)" , RFC 4120, IETF, 2005.
12. IEC/ISO, IT - Security techniques - Entity authentication, IEC/ISO9798-5:2004, International Standard
13. ITU (International Telecommunication Union), " Information Technology - Open Systems Interconnection -The Directory: Authentication Framework" , ITU-T Recommendation X.509, 2005.
14. IETF, PKIX Charter Requests For Comments (RFCs), http://www.ietf.org/html.charters/pkix-charter.html
15. P. Gutmann, X509 Style Guide, October 2000, http://www.cs.auckland.ac.nz/~pgut001/
16. N. Ferguson, B. Schneier, Practical Cryptography (1st ed.), Wiley, ISBN 0471223573, pp. 315-345, 2003.
17. P. Gutmann, "Everything you never wanted to know about PKI but have been forced to find out", 2001, http://www.cs.auckland.ac.nz/~pgut001/pubs/pkitutorial.pdf
18. B. Kaliski, " Learning to SKI Again: The Renaissance of Symmetric Key Infrastructures" , Proc. RSA Conference, San Francisco, USA, 2007.
19. L. Piètre-Cambacédès, C. Chalhoub, F. Cleveland, " IEC TC57 WG15 - Cyber security standards for the power system" , Proc. of CIGRE D2 Colloquium, Luzern, 2007.
20. DNP User Group, Secure DNP3 specifications, DNP User Group Library (www.dnp.org), 2007.
21. J. Lund, " Learning from European Advanced Metering Deployments" , Utility Automation & Engineering, June 2007
22. EnerNex corporate communications, " EnerNex Announces Formation of AMI-SEC Task Force" , Oct. 2007.
23. G. Gilchrist & D. Highfill, " Key Management and Cryptography for Advanced Metering Infrastructures (AMI) and Other Large, Low Power Networks" , Proc. of the S4 2008 Conference, Miami, 2008.
24. C. Beaver, D. Gallup, W. Neumann & Torgerson M., " Key management for SCADA" , Technical Report SAND2001-3252, Sandia National Laboratories, 2002.
25. D. Holstein, J. Tengdin, J. Wack, R. Butler, T. Draelos, P. Blomgren, Cyber Security for Utility Operations, NETL Project M63SNL34, Final Report, 2005.
26. Robert J. Lambert, "ECC and SCADA Key Management", S4 (SCADA Security Scientific Symposium) Conference, Digital Bond ed., 2007.
27. S. Hankerson, A. Menezes, Guide to Elliptic Curve Cryptography, Springer-Verlag, Berlin, Germany, 2004.
28. ECRYPT (European Network of Excellence in Cryptology), ECRYPT Yearly Report on Algorithms and Keysizes (D.SPA.10), ECRYPT IST European Project, 2005.
29. Jean-Jacques Quisquater, Louis C. Guillou, Thomas A. Berson, " How to Explain Zero-Knowledge Protocols to Your Children" , Proc. of Crypto '89, Springer, 628-631, 1990.
30. T. Wu, " The SRP Authentication and Key Exchange System" , RFC 2945, IETF, 2000.
31. P. Palensky and T. Sauter, " Security considerations for FAN-Internet connections," in Proc. IEEE Workshop on Factory Communication Systems, Porto, 27-35, 2000.
32. T. Sauter and Ch. Schwaiger, " Achievement of secure Internet access to fieldbus systems" , Microprocessors and Microsystems Journal, Elsevier, Vol. 26, Issue 7, 2002.
33. C. Schwaiger and A. Treytl, " Smart card based security for Fieldbus systems" , in Proc. International IEEE Conference Emerging Technologies and Factory Automation 2003 (ETFA'03), vol. 1, 398-406, 2003.
34. M. Lobashov, G. Pratl, and T. Sauter, " Implications of power-line communication on distributed data acquisition and control systems" , in Proc. International IEEE Conference Emerging Technologies and Factory Automation 2003 (ETFA'03), vol. 2, 607-613, 2003.
35. A. Perrig, R. Canetti, J. Tygar & D. Song, " Efficient authentication and signing of multicast streams over lossy channels" , Proc. of the IEEE S&P Symp., IEEE CS, 2000.
36. Y. Wang, B. Chu, " sSCADA: Securing SCADA Infrastructure Communications" , IACR Eprint, 2004.
37. A. Perrig, R. Szewczyk, V. Wen, D. Culler and J. Tygar, " Spins: Security protocols for sensor networks" , Wireless Networks Journal (WINE), September 2002.
38. G. Yang, C. Rong, C. Veigner, J. Wang, and H. Cheng, " Identity-Based Key Agreement and Encryption for Wireless Sensor Networks" , IJCSNS International Journal of Computer Science and Network Security, Vol.6 No.5B, 2006.
39. D. Boneh, M. Franklin, " Identity-based encryption from the weil pairing" , Proceedings of CRYPTO'01, Springer, 2001.
40. M. Chorzempa, J-M. Park, M.Eltoweissy, " Key management for long-lived sensor networks in hostile environments" , ACM Computer Communications, Volume 30, Issue 9, 1964-1979, 2007.
41. A. Camtepe, B. Yener, " Key distribution mechanisms for wireless sensor networks: a survey" , Technical Report 05-07, Rensselaer Polytechnic Institute, 2005.
42. C. Alcaraz & R. Roman, " Applying Key Infrastructures for Sensor Networks in CIP/CIIP Scenarios" , Proceedings of CRITIS'06 Conference, Springer, 2006.