Security considerations in DNP3 SCADA systems

被引：0

作者：

Patel, SC ^{[1
]}

Graham, JH ^{[1
]}

机构：

[1] Univ Louisville, Dept Comp Engn & Comp Sci, Louisville, KY 40292 USA

来源：

COMPUTER APPLICATIONS IN INDUSTRY AND ENGINEERING | 2004年

关键词：

control systems; computer networks; computer security; SCADA; DNP3;

D O I：

暂无

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

Supervisory Control and Data Acquisition (SCADA) networks are used by many utility companies that form critical infrastructure. SCADA networks can be easy targets for unauthorized intrusions that can result in devastating attacks by terrorists. This research identifies threats faced by SCADA and investigates effective methods to enhance security of DNP3 protocols, which are widely used for SCADA implementations. We propose implementation alternatives including SSL/TLS, IPsec, object security, encryption, and message authentication object. The paper analyzes and compares these approaches. In addition, it also evaluates implementation details of these solutions, which can be in the form of an open source toolkits or necessary changes to DNP3. Finally, we provide new research directions to more adequately secure SCADA and DNP3.

引用

页码：73 / 78

页数：6

共 50 条

[31] A Linux-based firewall for the DNP3 protocol
Nivethan, Jeyasingam
Papa, Mauricio
2016 IEEE SYMPOSIUM ON TECHNOLOGIES FOR HOMELAND SECURITY (HST), 2016,
[32] Security Analysis of the Non-Aggressive Challenge Response of the DNP3 Protocol using a CPN Model
Amoah, Raphael
Suriadi, Suriadi
Camtepe, Seyit
Foo, Ernest
2014 IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS (ICC), 2014, : 827 - 833
[33] Experimental and Theoretical Modeling of DNP3 Attacks in Smart Grids
Darwish, Ihab
Igbe, Obinna
Saadawi, Tarek
2015 36TH IEEE SARNOFF SYMPOSIUM, 2015, : 155 - 160
[34] If I Knew Then What I Know Now: On Reevaluating DNP3 Security using Power Substation Traffic
Irvene, Celine
Shekari, Tohid
Formby, David
Beyah, Raheem
5TH ANNUAL INDUSTRIAL CONTROL SYSTEM SECURITY WORKSHOP (ICSS 2019), 2019, : 48 - 59
[35] Hardware Implementation of Ethernet Based DNP3 Data Link
Padilla, Esteban
Cardenas, Alben
Agbossou, Kodjo
2012 IEEE ELECTRICAL POWER AND ENERGY CONFERENCE (EPEC), 2012, : 8 - 13
[36] Modbus/DNP3 State-based Filtering System
Carcano, Andrea
Fovino, Igor Nai
Masera, Marcelo
IEEE INTERNATIONAL SYMPOSIUM ON INDUSTRIAL ELECTRONICS (ISIE 2010), 2010, : 231 - 236
[37] RNN-based Anomaly Detection in DNP3 Transport Layer
Kwon, Sungmoon
Yoo, Hyunguk
Shon, Taeshik
2019 IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS, CONTROL, AND COMPUTING TECHNOLOGIES FOR SMART GRIDS (SMARTGRIDCOMM), 2019,
[38] Securing Networked Microgrids Operation through DNP3 Protocol Implementation
Soliman, Ahmed S.
Saad, Ahmed A.
Mohammed, Osama
2021 IEEE INDUSTRY APPLICATIONS SOCIETY ANNUAL MEETING (IAS), 2021,
[39] Modbus/DNP3 State-based Intrusion Detection System
Fovino, Igor Nai
Carcano, Andrea
Murel, Thibault De lacheze
Trombetta, Alberto
Masera, Marcelo
2010 24TH IEEE INTERNATIONAL CONFERENCE ON ADVANCED INFORMATION NETWORKING AND APPLICATIONS (AINA), 2010, : 729 - 736
[40] Bolt-On Security Extensions for Industrial Control System Protocols: A Case Study of DNP3 SAv5
Crain, J. Adam
Bratus, Sergey
IEEE SECURITY & PRIVACY, 2015, 13 (03) : 74 - 79

← 1 2 3 4 5 →