Embedded plug-in devices to secure industrial network communications

With Ethernet as an ubiquitous technology also emerging in industrial networks, security is becoming one of the most important aspects. Whereas IT-networks together with their security features in the office domain are subject of a dynamic change, networks in the industrial environment have a long operational time and therefore are more vulnerable to unauthorized access due to outdated hard- and software components. IT-threats such as Stuxnet are targeted to these areas and in the case of a failure of, e.g., a critical infrastructure this can directly harm the public security. Hence, in this paper a concept of an embedded plug-in device is proposed that secures the authentication and integrity of communication flows between two communicating network parties. A key focus of the development is the message authentication mechanism without neglecting the safety aspect imperative for industrial networks.

[1]  Y. Abouelseoud,et al.  Certificate-based authenticated key agreement protocols , 2013, 2013 International Conference on Computer Applications Technology (ICCAT).

[2]  Jesus Lazaro,et al.  Scalable 128-bit AES-CM crypto-core reconfigurable implementation for secure communications , 2009, 2009 Applied Electronics.

[3]  Wolfgang Granzer,et al.  Security in Building Automation Systems , 2010, IEEE Transactions on Industrial Electronics.

[4]  N. Hadjina SECURCOM - the security solution for Ethernet LANs , 2002, 11th IEEE Mediterranean Electrotechnical Conference (IEEE Cat. No.02CH37379).

[5]  Martin Schramm,et al.  Trustworthy building blocks for a more secure embedded computing environment , 2011, 2011 International Conference on Applied Electronics.

[6]  Toshio Miyachi,et al.  Current issues and challenges on cyber security for industrial automation and control systems , 2014, 2014 Proceedings of the SICE Annual Conference (SICE).

[7]  Paul Svasta,et al.  Secure communication protocol using embedded devices based on FPGA , 2014, Proceedings of the 5th Electronics System-integration Technology Conference (ESTC).

[8]  Jiang Du,et al.  Design and Implementation of Efficient One-Way Isolation System Based on PF_RING , 2012, 2012 Fourth International Conference on Multimedia Information Networking and Security.

[9]  J. Lazaro,et al.  OSCRYB: Open Source CRYpto-Bridge for Secure Ethernet point-to-point Industrial Communications , 2007, IECON 2007 - 33rd Annual Conference of the IEEE Industrial Electronics Society.