SSCADA: Securing SCADA infrastructure communications

International Journal of Communication Networks and Distributed Systems

Volumn 6, Issue 1, 2011, Pages 59-78

  Wang, Yongge ^a  

^a UNIVERSITY OF NORTH CAROLINA AT CHARLOTTE   (United States)

Author keywords

Critical infrastructure protection; Cyber attacks; DCS; Distributed control systems; SCADA; Secure communication; Smart grid security; Supervisory control and data acquisition

Indexed keywords

COMPUTER CRIME; CRITICAL INFRASTRUCTURES; CRYPTOGRAPHY; DISTRIBUTED PARAMETER CONTROL SYSTEMS; ELECTRIC POWER TRANSMISSION NETWORKS; ENERGY EFFICIENCY; NETWORK SECURITY; PUBLIC WORKS; REMOTE CONTROL; SECURE COMMUNICATION; SOFTWARE TESTING; WAGES;

CRITICAL INFRASTRUCTURE PROTECTION; CYBER-ATTACKS; SCADA; SMART GRID; SUPERVISORY CONTROL AND DATA ACQUISITION;

SCADA SYSTEMS;

EID: 84871951474     PISSN: 17543916     EISSN: 17543924     Source Type: Journal    
DOI: 10.1504/IJCNDS.2011.037328     Document Type: Article

References (34)

1. Abrams, M. and Weiss, J. (2007) 'Bellingham, Washington, control system cyber security case study', available at http://csrc.nist.gov/groups/SMA/fisma/ ics/documents/Bellingham-Case-Study-report%2020Sep071.pdf (accessed on 22 February 2010).
2. Abrams, M. and Weiss, J. (2007) 'Malicious control system cyber security attack case study - Maroochy water services', Australia, available at http://csrc.nist.gov/groups/SMA/fisma/ics/documents/Maroochy-Water-Services- Case-Study-briefing.pdf (accessed on 22 February 2010).
3. AGA Report No. 12 (2004) 'Cryptographic protection of SCADA communications: general recommendations', Draft 2, 5 February 2004, The draft 2 is no longer available online, The draft 3 is available for purchase at http://www.aga.org/ (accessed on 22 February 2010).
4. Anderson, R., Bergadano, F., Crispo, B., Lee, J., Manifavas, C. and Needham, R. (1998) 'A new family of authentication protocols', Operating Systems Review, October, Vol. 32, No. 4, pp. 9-20.
5. Bellare, M., Boldyreva, A., Knudsen, L. and Namprempre, C. (2001) 'On-line ciphers and the Hash-CBC constructions', Advances in Cryptology - Crypto 2001, Lecture Notes in Computer Science 2139, Springer-Verlag.
6. Bellare, M., Canetti, R. and Krawczyk, H. (1996) 'Message authentication using hash functions - the HMAC construction', RSA Laboratories CryptoBytes, Spring, Vol. 2, No. 1.
7. Bellare, M., Kilian, J. and Rogaway, P. (2000) 'The security of the cipher block chaining message authentication code', Journal of Computer and System Sciences, Vol. 6, No. 3, pp. 362-399.
8. Bergadano, F., Cavagnino, D. and Crispo, B. (2000a) 'Chained stream authentication', Selected Areas in Cryptography, Waterloo, Canada.
9. Bergadano, F., Cavagnino, D. and Crispo, B. (2000b) 'Individual single source authentication on the mbone', ICME 2000, August, pp. 541-544.
10. Blumenfeld, L. (2003) 'Dissertation could be security threat', Washington Post, available at http://www.washingtonpost.com/ac2/wp-dyn/A23689-2003Jul7 (accessed on 22 February 2010).
11. Briscoe, B. (2000) 'FLAMeS: fast, loss-tolerant authentication of multicast streams', Technical report, available at http://citeseerx.ist.psu.edu/ viewdoc/download?doi=10.1.1.63.9263&rep=rep1&type=pdf (accessed on 22 February 2010).
12. Cegrell, T. (1986) Power System Control Technology, Prentice-Hall International (UK) Ltd.
13. Cheung, S. (1997) 'An efficient message authentication scheme for link state routing', 13th Annual Computer Security Applications Conference.
14. DOE (2009) 'Study of security attributes of smart grid systems - current cyber security issues', April, available at http://www.inl.gov/scada/ publications/d/securing-the-smart-grid-current-issues.pdf (accessed on 22 February 2010).
15. GAO-04-628T (2004) 'Critical infrastructure protection: challenges and efforts to secure control systems', Testimony Before the Subcommittee on Technology Information Policy, Intergovernmental Relations and the Census, House Committee on Government Reform, 30 March, available at http://www.gao.gov/new. items/d04628t.pdf (accessed on 22 February 2010).
16. Goldreich, O., Goldwasser, S. and Micali, S. (1987) 'How to construct random functions', J. of the ACM, Vol. 33, No. 4, pp. 792-807.
17. Goldwasser, S. and Michali, S. (1984) 'Probabilistic encryption', Journal of Computer and System Sciences, Vol. 28, pp. 270-299.
18. Haller, N. (1995) 'The S/KEY one-time password system', IETF RFC 1760, February.
19. Idaho National Laboratory (2008) 'SCADA test bed program', available at http://www.inl.gov/scada/ (accessed on 22 February 2010).
20. IEC 608705, 'User group maillist information', available at http://www.trianglemicroworks.com/iec60870-5/index.htm (accessed on 22 February 2010).
21. IEC TC57, available at http://www.ieee.org/portal/cms-docs-pes/pes/ subpages/publications-folder/TC-57-Column.pdf (accessed on 22 February 2010).
22. IEEE P1711, 'Trial use standard for a cryptographic protocol for cyber security of substation serial links', available at http://grouper.ieee.org/ groups/sub/wgc6/documents/drafts/IEEE%20P1711%20Draft2006-12-10.doc (accessed on 22 February 2010).
23. IEEE P1815, 'Standard for electric power systems communications - distributed network Protocol (DNP3).
24. Krawczyk, H., Bellare, M. and Canetti, R. (1997) 'HMAC: keyed-hashing for message authentication', Internet RFC 2104, February.
25. Lamport, L. (1981) 'Password authentication with insecure communication', Commun. ACM, Vol. 24, No. 11.
26. NIST (1981) 'DES model of operation', FIPS Publication 81 (FIPS PUB 81).
27. NIST (2008) 'Industrial control system security (ICS)', available at http://csrc.nist.gov/groups/SMA/fisma/ics/index.html (accessed on 22 February 2010).
28. Perrig, A., Canetti, R., Song, D. and Tygar, J. (2001) 'Efficient and secure source authentication for multicast', Network and Distributed System Security Symposium, NDSS'01.
29. Perrig, A., Canetti, R., Tygar, J. and Song, D. (2000) 'Efficient authentication and signing of multicast streams over lossy channels', IEEE Symposium on Security and Privacy.
30. Perrig, A., Szewczyk, R., Tygar, J., Wen, V. and Culler, D. (2002) 'SPINS: security protocols for sensor networks', Wireless Networks, Vol. 8, pp. 521-534.
31. Rappaport, J. (2007) 'What you don't know might hurt you: Alum's work balances national security and information sharing', available at http://gazette.gmu.edu/articles/11144 (accessed on 22 February 2010).
32. SCADAsafe, available at http://scadasafe.sourceforge.net.
33. USA Today (2007) 'AURORA case: US video shows hacker hit on power grid', available at http://www.usatoday.com/tech/news/computersecurity/2007-09-27- hacker-video-N.htm (accessed on 31 May 2010).
34. Wright, A.K., Kinast, J.A. and McCarty, J. (2004) 'Low-latency cryptographic protection for SCADA communications', Proc. 2nd Int. Conf. on Applied Cryptography and Network Security, ACNS 2004, LNCS 3809, Springer, pp. 263-277.