Switchboard: secure, monitored connections for client-server communication

Freudenthal, Eric; Port, Lawrence; Pesin, Tracy; Keenan, Edward; Karamcheti, Vijay

doi:10.1109/icdcsw.2002.1030844

Cited by 2 publications

(1 citation statement)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Among other security enhancements that could be applied to SCADA include research such as that by Kato et al (2001) who designed a Secure Tele‐operation Protocol specification for internet‐based control systems. Freudenthal et al (2002) proposed a “switchboard” for continuous monitoring of a credential's liveness and the trust relationships that authorize it. Similar methods could be very useful for securing SCADA connections since the connections stay open for a very long period of time giving an intruder better opportunities to launch a cyberattack.…”

Section: Possible Cyber‐security Measuresmentioning

confidence: 99%

Securing SCADA systems

Patel

Sanyal

2008

Information Management &Amp; Computer Security

View full text Add to dashboard Cite

PurposeSupervisory control and data acquisition (SCADA) systems are widely used by utility companies during the production and distribution of oil, gas, chemicals, electric power, and water to control and monitor these operations. A cyber attack on a SCADA system cannot only result in a major financial disaster but also in devastating damage to public safety and health. The purpose of this paper is to survey the literature on the cyber security of SCADA systems and then suggest two categories of security solutions.Design/methodology/approachThe paper proposes the use of secure socket layer/transport layer security (SSL/TLS) and IP security (IPsec) solutions, implemented on the test‐bed at the University of Louisville, as the optimal choices when considering the level of security a solution can provide and the difficulty of implementing such a security measure. The paper analyzes these two solution choices, discuss their advantages and disadvantages, and present details on efficient ways of implementing these solutions.FindingsThe SSL/TLS solution to the protocol security using public domain toolkits such as OpenSSL may provide a fast, effective, and economical solution. However, the SSL/TLS protocol and its implementation toolkits have their limitations so this approach may need another enhancement.Practical implicationsIPsec can be used to provide IP‐level security in addition to SSL/TLS.Originality/valueThe use of these enhanced security approaches in SCADA systems should effectively reduce the vulnerability of these critical systems to malicious cyber attacks, and thereby potentially avoiding the serious consequences of such attacks.

show abstract

Section: Possible Cyber‐security Measuresmentioning

confidence: 99%