Deployment of New Dynamic Cryptography Buffer for SCADA Security Enhancement

Shahzad, Aamir; Musa, Shahrulniza; Irfan, Muhammad; Asadullah, Salman

doi:10.3923/jas.2014.2487.2497

Cited by 10 publications

(34 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Due to the evolution of technology, the advanced version of DNP3 provides interconnectivity over the Internet; the information travels through non-proprietary protocols, which reside below DNP3 [5,19]. Due to open connectivity, DNP3 has been vulnerable to Internet attacks; most DNP3 devices are configured, and communicate without any proper authentication mechanism or have little protection in the SCADA network against vulnerabilities [23][24][25][26][27][28][29][30]. Cryptography based security mechanisms [31] have been proposed for DNP3 by DNP3 users group, in which symmetric and asymmetric methods are defined and a detailed description of challenge-response technique is made to examine the security goals (or parameters), such as authentication and integrity, and to protect the transmission against attacks, such as replay, spoofing, and modification attacks [8,32,33], at the application layer.…”

Section: Background Studymentioning

confidence: 99%

“…More specifically, the DNP3 frames are encapsulated in other lower layer protocols, such as SSH, IPSec, and SSL/TLS [23,41], which protect the sensitive information of the SCADA/DNP3 system against Internet vulnerabilities and attacks [20,39,[42][43][44][45][46][47]. In conclusion, DNP3 relies on other open protocols, such as TCP/IP and UDP, in terms of transmission over the Internet and on protocols (such as SSH, IPSec, and SSL/TLS) for security purposes, but these open protocols (such as TCP/IP and UDP) have several vulnerabilities, and the protocols (such as SSH, IPSec, and SSL/TLS) also have limitations [8,36], because they depend on other security protocols, such as cryptography protocols [19,23].…”

Section: Study Motivationmentioning

confidence: 99%

“…In the initial structure of DNP3, there is no security mechanism that can protect sensitive information from security threats [5,7,21,23]. Due to the evolution of technology, the advanced version of DNP3 provides interconnectivity over the Internet; the information travels through non-proprietary protocols, which reside below DNP3 [5,19].…”

Section: Background Studymentioning

confidence: 99%

“…Research [16][17][18][19][20][21][22][23] has been conducted on the vulnerable aspects of SCADA systems. Specifically, cryptography mechanisms have been developed to enhance the security of these critical systems, and most of these developments have been successful.…”

Section: Study Motivationmentioning

confidence: 99%

“…SCADA security via cryptography mechanisms has been considered as a vital approach during transmission [19][20][21][22]. On the other hand, cryptography based approaches are deemed to be complex and heavy computational approaches during security design and development-especially, in industrial processing [8,10,19,[22][23][24][25]. The proposed study has analyzed the cryptography approaches, and then, employed the inclusive security solution in DNP3 which significantly increased the security of the SCADA system.…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

New Security Development and Trends to Secure the SCADA Sensors Automated Transmission during Critical Sessions

et al. 2015

View full text Add to dashboard Cite

Modern technology enhancements have been used worldwide to fulfill the requirements of the industrial sector, especially in supervisory control and data acquisition (SCADA) systems as a part of industrial control systems (ICS). SCADA systems have gained popularity in industrial automations due to technology enhancements and connectivity with modern computer networks and/or protocols. The procurement of new technologies has made SCADA systems important and helpful to processing in oil lines, water treatment plants, and electricity generation and control stations. On the other hand, these systems have vulnerabilities like other traditional computer networks (or systems), especially when interconnected with open platforms. Many international organizations and researchers have proposed and deployed solutions for SCADA security enhancement, but most of these have been based on node-to-node security, without emphasizing critical sessions that are linked directly with industrial processing and automation. This study concerns SCADA security measures related to critical processing with specified sessions of automated polling, analyzing cryptography mechanisms and deploying the appropriate explicit inclusive security solution in a distributed network protocol version 3 (DNP3) stack, as part of a SCADA system. The bytes flow through the DNP3 stack with security OPEN ACCESSSymmetry 2015, 7 1946 computational bytes within specified critical intervals defined for polling. We took critical processing knowledge into account when designing a SCADA/DNP3 testbed and deploying a cryptography solution that did not affect communications.

show abstract

Section: Background Studymentioning

confidence: 99%

Section: Study Motivationmentioning

confidence: 99%

Section: Background Studymentioning

confidence: 99%

Section: Study Motivationmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

New Security Development and Trends to Secure the SCADA Sensors Automated Transmission during Critical Sessions

et al. 2015

View full text Add to dashboard Cite

show abstract

The Sensors Connectivity within SCADA Automation Environment and New Trends for Security Development during Multicasting Routing Transmission

Shahzad

Udagepola²,

Lee

et al. 2015

International Journal of Distributed Sensor Networks

View full text Add to dashboard Cite

show abstract

Industrial Control Systems Vulnerabilities and Security Issues and Future Enhancements

Chae¹,

Shahzad

Irfan

et al. 2015

Advanced Science and Technology Letters

View full text Add to dashboard Cite

Massive numbers of applications have been developed to fulfill the requirements of end-users; the world is considered as a cell of communication in which applications are centralized and distributed, and accessed by internet. Like traditional networks, real time networks such as supervisory control and data acquisition (SCADA) systems, distributed controller systems (DCSs) and others have been employing the internet technology to connect their various stations, and with central controller(s). Internet technology brought several benefits in terms of real time delivery of information to, and between geographical located stations; but at the other side, numerous of security issues have also been accounted and considered to be dangerous for information delivery. In survey, numbers of vulnerabilities and security issues are identified by reviewing of existing researches in real time networks, existing security developments are also reviewed and analyzed, and future directions are highlighted that will enhance the security in real time transmission(s).

show abstract

Deployment of New Dynamic Cryptography Buffer for SCADA Security Enhancement

Cited by 10 publications

References 0 publications

New Security Development and Trends to Secure the SCADA Sensors Automated Transmission during Critical Sessions

New Security Development and Trends to Secure the SCADA Sensors Automated Transmission during Critical Sessions

The Sensors Connectivity within SCADA Automation Environment and New Trends for Security Development during Multicasting Routing Transmission

Industrial Control Systems Vulnerabilities and Security Issues and Future Enhancements

Contact Info

Product

Resources

About