Next-Generation Access Control for Distributed Control Systems

被引：19

作者：

Huh, Jun Ho

Bobba, Rakesh B. ^{[1
]}

Markham, Tom

Nicol, David M. ^{[2
]}

Hull, Julie

Chernoguzov, Alex

Khurana, Himanshu

Staggs, Kevin

Huang, Jingwei ^{[3
]}

机构：

[1] Oregon State Univ, Sch Elect Engn & Comp Sci, Corvallis, OR 97331 USA

[2] Univ Illinois, Elect & Comp Engn, Urbana, IL 61801 USA

[3] Old Dominion Univ, Engn Management & Syst Engn, Norfolk, VA 23529 USA

来源：

IEEE INTERNET COMPUTING | 2016年 / 20卷 / 05期

关键词：

access control; distributed control systems; industrial control systems; Internet/Web technologies; role-based access control;

D O I：

10.1109/MIC.2016.105

中图分类号：

TP31 [计算机软件];

学科分类号：

081202 ; 0835 ;

摘要：

Wired and wireless internetworking technologies are rapidly integrating, leaving distributed control systems (DCS) increasingly susceptible to cyberattacks. Access control frameworks can contain and mitigate the impact of cyberattacks, but existing solutions often leave holes that can undermine a plant's security. This article identifies key challenges in creating a complete, manageable access control framework for DCS and presents a model architecture that can ensure that each access is checked against policies that adhere to the least-privilege principle. The proposed architecture facilitates centralized, plant-wide policy management and protection of all connected field devices.

引用

页码：28 / 37

页数：10

共 50 条

[1] Distributed medium access control for next-generation CDMA wireless networks
Jiang, Hai
Zhuang, Weihua
Shen, Xuemin
IEEE WIRELESS COMMUNICATIONS, 2007, 14 (03) : 25 - 31
[2] A new control plane for next-generation WDM-PON access systems
Gagnaire, Maurice
Koubaa, Mohamed
2007 SECOND INTERNATIONAL CONFERENCE ON ACCESS NETWORKS & WORKSHOPS, 2007, : 10 - +
[3] DISTRIBUTED OR CENTRALIZED CONTROL FOR NEXT GENERATION OF SYSTEMS
BOND, A
PROCESS ENGINEERING, 1976, (APR) : 69 - 69
[4] Emerging Intelligence for Next-Generation Intelligent Systems and Control
Sawaragi, Tetsuo
Journal of Robotics and Mechatronics, 2000, 12 (06) : 614 - 627
[5] HoneyPLC: A Next-Generation Honeypot for Industrial Control Systems
Morales, Efren Lopez
Rubio-Medrano, Carlos
Doupe, Adam
Shoshitaishvili, Yan
Wang, Ruoyu
Bao, Tiffany
Ahn, Gail-Joon
CCS '20: PROCEEDINGS OF THE 2020 ACM SIGSAC CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY, 2020, : 279 - 291
[6] Access granularity control of multichannel random access in next-generation wireless LANs
Yin, Jiechen
Mao, Yuming
Leng, Supeng
Jiang, Yuming
Khan, Muhammad Asad
Computer Networks, 2015, 91 : 135 - 150
[7] NEXT-GENERATION SPACECRAFT CONTROL
BELL, TE
IEEE SPECTRUM, 1989, 26 (12) : 34 - 38
[8] Next-Generation Access Architectures and Distributed MSAN Concept
Gallon, Chris
Chohan, Dal
James, Steve
FUJITSU SCIENTIFIC & TECHNICAL JOURNAL, 2009, 45 (04): : 339 - 345
[9] Next-generation Access architectures and distributed MSAN concept
Gallon, Chris
Chohan, Dal
James, Steve
Fujitsu Scientific and Technical Journal, 2009, 45 (04): : 339 - 345
[10] OFDMA-Based Medium Access Control for Next-Generation WLANs
Alnuweiri, H. M.
Fallah, Y. Pourmohammadi
Nasiopoulos, P.
Khan, S.
EURASIP JOURNAL ON WIRELESS COMMUNICATIONS AND NETWORKING, 2009,

← 1 2 3 4 5 →