论文信息 - Applicability of LTE Public Key Infrastructure Based Device Authentication in Industrial Plants

Applicability of LTE Public Key Infrastructure Based Device Authentication in Industrial Plants

The security in industrial automation domain using cryptography mechanisms is being discussed in both industry and academia. An efficient key management system is required to support cryptography for both symmetric key and public/private key encryption. The key management should ensure that the device is verified before distributing the initial key parameters to devices. The software/firmware used in the device comes from manufacturers, therefore the initial authenticity of the device can be easily verified with the help of manufacturers. Mobile telecommunication is an industrial segment where wireless devices are being used for a long time and the security of the wireless device management has been considered through a standard driven approach. Therefore, it is interesting to analyse the security authentication mechanisms used in mobile communication, specified in Long-Term-Evolution (LTE) standard. This paper analyses the initial device authentication using public key infrastructure in LTE standard, and discusses if, where and how the studied solutions can be tailored for device authenticity verification in industrial plant automation systems.

Mikael Gidlund | Mats Björkman | Johan Åkerberg | Apala Ray | Rolf Blom

[1] Jürgen Gessner,et al. Security architecture elements for IoT enabled automation networks , 2012, Proceedings of 2012 IEEE 17th International Conference on Emerging Technologies & Factory Automation (ETFA 2012).

[2] Dan Forsberg,et al. LTE Security , 2010 .

[3] Mikael Gidlund,et al. A solution for industrial device commissioning along with the initial trust establishment , 2013, IECON 2013 - 39th Annual Conference of the IEEE Industrial Electronics Society.

[4] Dieter Gollmann,et al. Industrial control systems security: What is happening? , 2013, 2013 11th IEEE International Conference on Industrial Informatics (INDIN).

[5] William Stallings,et al. Local and Metropolitan Area Networks , 1993 .

[6] Karen A. Scarfone,et al. Guide to Industrial Control Systems (ICS) Security , 2015 .

[7] Karen A. Scarfone,et al. SP 800-82. Guide to Industrial Control Systems (ICS) Security: Supervisory Control and Data Acquisition (SCADA) systems, Distributed Control Systems (DCS), and other control system configurations such as Programmable Logic Controllers (PLC) , 2011 .