SCADA communication and security issues

Security and Communication Networks

Volumn 7, Issue 1, 2014, Pages 175-194

  Gao, Jingcheng ^a   Liu, Jing ^a   Rajan, Bharat ^a   Nori, Rahul ^a   Fu, Bo ^a   Xiao, Yang ^a   Liang, Wei ^b   Philip Chen, C L ^c  

^a University of Alabama   (United States)

^b SHENYANG INSTITUTE OF AUTOMATION   (China)

^c UNIVERSITY OF MACAU   (Macao)

Author keywords

Communication; SCADA; Security; Smart grid

Indexed keywords

COMMUNICATION; ELECTRIC POWER TRANSMISSION; ELECTRIC POWER TRANSMISSION NETWORKS; SCADA SYSTEMS;

HARDWARE AND SOFTWARE ARCHITECTURES; INDUSTRIAL PROCESSS; POWER DELIVERY SYSTEMS; REAL TIME MONITORING; SCADA; SECURITY; SMART GRID; SUPERVISORY CONTROL AND DATAACQUISITION SYSTEMS (SCADA);

SMART POWER GRIDS;

EID: 84894061097     PISSN: 19390114     EISSN: 19390122     Source Type: Journal    
DOI: 10.1002/sec.698     Document Type: Article

References (96)

1. Tib N. 04-1, Technical Information Bulletin 04-1, National Communications System, SCADA Systems. October, 2004.
2. Gaushell D, Block W. SCADA communication techniques and standards. Computer Applications in Power IEEE 2002; 6:45-50.
3. Daneels A, Salter W. What is SCADA? International Conference on Accelerator and Large Experimental Physics Control Systems. 1999.
4. Xiao Y. Editorial. International Journal of Security and Networks (IJSN) 2012; 7(2):71-72.
5. Neji NB, Bouhoula A. Managing hybrid packet filter's specifications. International Journal of Security and Networks (IJSN) 2012; 7(2):73-82.
6. Baig ZA. Rapid anomaly detection for smart grid infrastructures through hierarchical pattern matching. International Journal of Security and Networks (IJSN) 2012; 7(2):83-94.
7. Boyer S, Robert J, Otrok H, Rousseau C. An adaptive tit-for-tat strategy for IEEE 802.11 CSMA/CA protocol. International Journal of Security and Networks (IJSN) 2012; 7(2):95-106.
8. Butun I, Wang Y, Lee Y, Sankar R. Intrusion prevention with two level user authentication in heterogeneous wireless sensor networks. International Journal of Security and Networks (IJSN) 2012; 7(2):107-121.
9. Kolesnikov V, Lee W. MAC aggregation resilient to DoS attacks. International Journal of Security and Networks (IJSN) 2012; 7(2):122-132.
10. Wong D, Tian X. E-mail protocols with perfect forward secrecy. International Journal of Security and Networks 2012; 7(1):1-5. DOI:10.1504/IJSN.2012.048491
11. Vespa LJ, Chakrovorty R, Weng N. Lightweight testbed for evaluating worm containment systems. International Journal of Security and Networks 2012; 7(1):6-16. DOI:10.1504/IJSN.2012.048478
12. Kandah F, Singh Y, Zhang W, Wang T. A misleading active routing attack in mobile ad-hoc networks. International Journal of Security and Networks 2012; 7(1):17-29. DOI:10.1504/IJSN.2012.048492.
13. Alsubhi K, Alhazmi Y, Bouabdallah N, Boutaba R. Security configuration management in intrusion detection and prevention systems. International Journal of Security and Networks 2012; 7(1):30-39. DOI:10.1504/IJSN.2012.048493
14. Xiao Z, Xiao Y. PeerReview re-evaluation for accountability in distributed systems or networks. International Journal of Security and Networks 2012; 7(1):40-58. DOI:10.1504/IJSN.2012.048494
15. Al-Salloum ZS. Defensive computer worms: an overview. International Journal of Security and Networks 2012; 7(1):59-70. DOI:10.1504/IJSN.2012.048479
16. Mu Y, Chen L, Chen X, et al. Editorial. International Journal of Security and Networks 2007; 2(3/4):171-174.
17. Tartary C, Tartary H. Efficient multicast stream authentication for the fully adversarial network model. International Journal of Security and Networks 2007; 2(3/4):175-191.
18. Bhaskar R, Herranz J, Laguillaumie F. Aggregate designated verifier signatures and application to secure routing. International Journal of Security and Networks 2007; 2(3/4):192-201.
19. Hsu H, Zhu S, Hurson AR. LIP: a lightweight interlayer protocol for preventing packet injection attacks in mobile ad hoc network. International Journal of Security and Networks 2007; 2(3/4):202-215.
20. Oliveira LB, Wong H, Loureiro AAF, Dahab R. On the design of secure protocols for hierarchical sensor networks. International Journal of Security and Networks 2007; 2(3/4):216-227.
21. Michail HE, Panagiotakopoulos GA, Thanasoulis VN, Kakarountas AP, Goutis CE. Server side hashing core exceeding 3Gbps of throughput. International Journal of Security and Networks 2007; 2(3/4):228-238.
22. Hoeper K, Gong G. Preventing or utilising key escrow in identity-based schemes employed in mobile ad hoc networks. International Journal of Security and Networks 2007; 2(3/4):239-250.
23. Cheng Z, Chen L. On security proof of McCullagh-Barreto's key agreement protocol and its variants. International Journal of Security and Networks 2007; 2(3/4):251-259.
24. Finnigin KM, Mullins BE, Raines RA, Potoczny HB. Cryptanalysis of an elliptic curve cryptosystem for wireless sensor networks. International Journal of Security and Networks 2007; 2(3/4):260-271.
25. Huang D. Pseudonym-based cryptography for anonymous communications in mobile ad hoc networks. International Journal of Security and Networks 2007; 2(3/4):272-283.
26. Abdalla M, Bresson E, Chevassut O, Moller B, Pointcheval D. Strong password-based authentication in TLS using the three-party group Diffie-Hellman protocol. International Journal of Security and Networks 2007; 2(3/4):284-296.
27. Chen H, Guizani M. Editorial. International Journal of Security and Networks 2007; 2(1/2):1-2.
28. Li R, Li J, Chen H. DKMS: distributed hierarchical access control for multimedia networks. International Journal of Security and Networks 2007; 2(1/2):3-10.
29. Sakarindr P, Ansari N. Adaptive trust-based anonymous network. International Journal of Security and Networks 2007; 2(1/2):11-26.
30. Malaney RA. Securing Wi-Fi networks with position verification: extended version. International Journal of Security and Networks 2007; 2(1/2):27-36.
31. Sun F, Shayman MA. On pairwise connectivity of wireless multihop networks. International Journal of Security and Networks 2007; 2(1/2):37-49.
32. Erdogan O, Cao P. Hash-AV: fast virus signature scanning by cache-resident filters. International Journal of Security and Networks 2007; 2(1/2):50-59.
33. Rabinovich P, Simon R. Secure message delivery in publish/subscribe networks using overlay multicast. International Journal of Security and Networks 2007; 2(1/2):60-70.
34. Chen Z, Ji C. Optimal worm-scanning method using vulnerable-host distributions. International Journal of Security and Networks 2007; 2(1/2):71-80.
35. Pan J, Cai L, Shen X. Vulnerabilities in distance-indexed IP traceback schemes. International Journal of Security and Networks 2007; 2(1/2):81-94.
36. Korkmaz T, Gong C, Sarac K, Dykes SG. 8 Single packet IP traceback in AS-level partial deployment scenario. International Journal of Security and Networks 2007; 2(1/2):95-10.
37. Ling H, Znati T. End-to-end pairwise key establishment using node disjoint secure paths in wireless sensor networks. International Journal of Security and Networks 2007; 2(1/2):109-121.
38. Artan NS, Chao HJ. Design and analysis of a multipacket signature detection system. International Journal of Security and Networks 2007; 2(1/2):122-136.
39. Zhu Y, Fu X, Bettati R, Zhao W. Analysis of flow-correlation attacks in anonymity network. International Journal of Security and Networks 2007; 2(1/2):137-153.
40. Gu Q, Liu P, Chu C, Zhu S. Defence against packet injection in ad hoc networks. International Journal of Security and Networks 2007; 2(1/2):154-169.
41. Hwu J, Hsu S, Lin Y-B, Chen R. End-to-end security mechanisms for SMS. International Journal of Security and Networks 2006; 1(3/4):177-183.
42. Wang X. The loop fallacy and deterministic serialisation in tracing intrusion connections through stepping stones. International Journal of Security and Networks 2006; 1(3/4):184-197.
43. Jiang Y, Lin C, Shi M, Shen X. A self-encryption authentication protocol for teleconference services. International Journal of Security and Networks 2006; 1(3/4):198-205.
44. Owens SF, Levary RR. An adaptive expert system approach for intrusion detection. International Journal of Security and Networks 2006; 1(3/4):206-217.
45. Chen Y, Susilo W, Mu Y. Convertible identity-based anonymous designated ring signatures. International Journal of Security and Networks 2006; 1(3/4):218-225.
46. Teo J, Tan C, Ng J. Low-power authenticated group key agreement for heterogeneous wireless networks. International Journal of Security and Networks 2006; 1(3/4):226-236.
47. Tan C. A new signature scheme without random oracles. International Journal of Security and Networks 2006; 1(3/4):237-242.
48. Liu Y, Comaniciu C, Man H. Modelling misbehaviour in ad hoc networks: a game theoretic approach for intrusion detection. International Journal of Security and Networks 2006; 1(3/4):243-254.
49. Karyotis V, Papavassiliou S, Grammatikou M, Maglaris V. A novel framework for mobile attack strategy modelling and vulnerability analysis in wireless ad hoc networks. International Journal of Security and Networks 2006; 1(3/4):255-265.
50. Xiao Y, Jia X, Sun B, Du X. Editorial: security issues on sensor networks. International Journal of Security and Networks 2006; 1(3/4):125-126.
51. Wang H, Sheng B, Li Q. Elliptic curve cryptography-based access control. International Journal of Security and Networks 2006; 1(3/4):127-137.
52. Zheng J, Li J, Lee MJ, Anshel M. A lightweight encryption and authentication scheme for wireless sensor networks. International Journal of Security and Networks 2006; 1(3/4):138-146.
53. Al-Karaki JN. Analysis of routing security-energy trade-offs in wireless sensor networks. International Journal of Security and Networks 2006; 1(3/4):147-157.
54. Araz O, Qi H. Load-balanced key establishment methodologies in wireless sensor networks. International Journal of Security and Networks 2006; 1(3/4):158-166.
55. Deng J, Han R, Mishra S. Limiting DoS attacks during multihop data delivery in wireless sensor networks. International Journal of Security and Networks 2006; 1(3/4):167-178.
56. Duong T. "The design of next generation SCADA systems, " in Power Industry Computer Application Conference, 1995. Conference Proceedings, 1995 IEEE. 1995; 431-436.
57. Sciacca SC, Block WR. Advanced SCADA concepts. Computer Applications in Power IEEE 1995; 8:23-28.
58. Medida S, et al. "SCADA-EMS on the Internet, " in Energy Management and Power Delivery, 1998. Proceedings of EMPD '98. International Conference on, 1998. 1998; 2: 656-660.
59. Kwok-Hong M, Holland BL. Migrating electrical power network SCADA systems to TCP/IP and Ethernet networking. Power Engineering Journal 2002; 16:305-311.
60. McClanahan RH. "The benefits of networked SCADA systems utilizing IP-enabled networks, " in Rural Electric Power Conference, 2002. 2002 IEEE. 2002; 7: C5-C5.
61. Ebata Y, et al. "Development of the Intranet-based SCADA (supervisory control and data acquisition system) for power system, " in Power Engineering Society Winter Meeting, 2000. IEEE. 2000; 3: 1656-1661.
62. Zecevic G. "Web based interface to SCADA system, " in Power System Technology, 1998. Proceedings. POWERCON '98. International Conference on, 1998. 1998; 2: 1218-1221.
63. Zhihao L, Jinshou Y. "The design of SCADA based on industrial Ethernet, " in Intelligent Control and Automation, 2002. Proceedings of the 4th World Congress on, 2002, pp. 2786-2789 vol.4.
64. Qiu B, Gooi HB. Web-based SCADA display systems (WSDS) for access via Internet. Power Systems, IEEE Transactions on 2000l; 15:681-686.
65. "IEEE Standard for SCADA and automation systems, " IEEE Std C37.1-2007 (revision of IEEE Std C37.1-1994). 2008; c1-133.
66. "IEEE recommended practice for master/remote supervisory control and data acquisition (SCADA) communications, " IEEE Std. 999-1992, p. 0_1, 1993.
67. IBM Internet security systems. Available: http://www.iss.net/
68. Bruce AG. Reliability analysis of electric utility SCADA systems. IEEE Transactions on Power Systems 1998; 13(3):844-849 Aug.
69. Creery A, Byres EJ. Industrial cybersecurity for power system and SCADA networks. Paper No. PCIC-2005-34.
70. Shyh-Jier H, Chih-Chieh L. Application of ATM-based network for an integrated distribution SCADA-GIS system. Power Systems IEEE Transactions on 2002; 17:80-86.
71. Toshida N, et al. Open distributed EMS/SCADA system. Hitachi Review 1998; 47:208-213.
72. Goel A, Mishra R. Remote data acquisition using wireless-SCADA system. International Journal of Engineering (IJE) 2009; 3:58.
73. Molina F, et al. "Automated meter reading and SCADA application for wireless sensor network, " Ad-Hoc, Mobile, and Wireless Networks. 2003; 223-234.
74. Ozdemir E, Karacor M. Mobile phone based SCADA for industrial automation. ISA Transactions 2006; 45:67-75.
75. Ozimek I, Kandus G. SCADA system using TETRA communication network. Recent advances in computers, computing and communications. 164-166.
76. Beaver C, et al. "Key management for SCADA, " Cryptog. Information Sys. Security Dept., Sandia Nat. Labs, Tech. Rep. SAND2001-3252. 2002.
77. Wright A, et al. Low-latency cryptographic protection for SCADA communications. 2004; 263-277.
78. Donghyun C, et al. Advanced key-management architecture for secure SCADA communications. Power Delivery IEEE Transactions on 2009; 24:1154-1163.
79. Marihart DJ. Communications technology guidelines for EMS/SCADA systems. Power Delivery IEEE Transactions on 2001; 16:181-188.
80. Parniani M, Nasri A. "SCADA based under frequency load shedding integrated with rate of frequency decline, " in Power Engineering Society General Meeting, 2006. IEEE, 2006; 6.
81. "Trends in security incidents in the SCADA and process industries: a summary - part II" Eric Byres, David Leversage, Nate Kube, Symantec Corporation. 2007.
82. "SQL slammer worm lessons learned for consideration by the electricity sector, " North American Electric Reliability Council, Princeton NJ, June 20. 2003.
83. IBM internet security systems white paper, "A Strategic Approach to Protecting SCADA and Process Control Systems".
84. C1Working group members of power system relying committee. Cyber Security Issues for Protective Relays, Power Engineering Society general meeting. 2007.
85. Oman P, Edmund O. S, Frincke D. Concerns about intrusions into remotely accessible substation controllers and SCADA systems. 2000.
86. IEEE Power Engineering Society. IEEE Standard 1402-2000: IEEE Guide for Electric Power Substation Physical and Electronic Security, IEEE. New York, NY, Apr. 4, 2000.
87. National Security Telecommunications Advisory Committee Information Assurance Task Force. Electric Power Risk Assessment. March, 1997.
88. Poulsen K. "Lights out: NIPC unveils plan to monitor cyber attacks on the power grid, " an InfoSec News Article Ported to Security Focus Web Page. May 25, 2000: http://www.securityfocus.com/news/41
89. McQueen MA, Boyer WF, Flynn MA, Beitel GA. Quantitative cyber risk reduction estimation methodology for a small SCADA control system. International Conference on System Sciences. 2006
90. NISCC good practice guide, "Firewall Deployment for SCADA and Process Control Networks 1.4" British Columbia Institute of Technology. 2005.
91. "Trends in security incidents in the SCADA and process industries: a summary - part I" Eric Byres, David Leversage, Nate Kube, Symantec Corporation. 2007.
92. Marcuse J, et al. Servers in SCADA applications. Industry Applications IEEE Transactions on 1997; 33:1295-1299.
93. Gacek D, et al. "Migrating from SCADA to automation, " in Transmission and Distribution Conference and Exposition, 2001 IEEE/PES. 2001; 1: 343-348.
94. Davidson EM, et al. "Applying multi-agent system technology in practice: automated management and analysis of SCADA and digital fault recorder data, " in Power Engineering Society General Meeting, 2006. IEEE. 2006; 1.
95. Horng J. SCADA system of DC motor with implementation of fuzzy logic controller on neural network. Advances in Engineering Software 2002; 33:361-364.
96. Ye W, Heidemann J. "Enabling interoperability and extensibility of future SCADA systems, " University Southern California, USC/ISI Technical Report, ISITR-625, 2006.