Improving security in industry 4.0 by extending OPC-UA with usage control

Proceedings of the 15th International Conference on Availability, Reliability and Security Pub Date : 2020-08-25 DOI:10.1145/3407023.3407077

F. Martinelli, Oleksii Osliak, P. Mori, A. Saracino

{"title":"Improving security in industry 4.0 by extending OPC-UA with usage control","authors":"F. Martinelli, Oleksii Osliak, P. Mori, A. Saracino","doi":"10.1145/3407023.3407077","DOIUrl":null,"url":null,"abstract":"This work presents a framework that provides ongoing control on actions execution in the industrial environment exploiting the OPC Unified Architecture (OPC-UA) framework and the Usage Control (UCON) paradigm. We present a fine-grained usage control model, referred as OPC-UCON, satisfying security and privacy needs of the OPC-UA framework. Our proposed framework exploits the OPC-UA connectivity between simulated industrial components and uses the UCON paradigm for dynamically controlling actions execution according to fine-grained policies reported in the standardized format. The UCON paradigm, in a form of the system, is in charge of controlling the process of dynamic policy reevaluation and the possibility of revoking already granted authorization by stopping previously authorized actions if conditions do not satisfy policy anymore. We presented the implementation and deployment of the proposed framework in a simulated industrial environment with relevant security policies to reflect the advantages of the OPC-UCON model.","PeriodicalId":121225,"journal":{"name":"Proceedings of the 15th International Conference on Availability, Reliability and Security","volume":"11 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-08-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 15th International Conference on Availability, Reliability and Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3407023.3407077","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

Abstract

This work presents a framework that provides ongoing control on actions execution in the industrial environment exploiting the OPC Unified Architecture (OPC-UA) framework and the Usage Control (UCON) paradigm. We present a fine-grained usage control model, referred as OPC-UCON, satisfying security and privacy needs of the OPC-UA framework. Our proposed framework exploits the OPC-UA connectivity between simulated industrial components and uses the UCON paradigm for dynamically controlling actions execution according to fine-grained policies reported in the standardized format. The UCON paradigm, in a form of the system, is in charge of controlling the process of dynamic policy reevaluation and the possibility of revoking already granted authorization by stopping previously authorized actions if conditions do not satisfy policy anymore. We presented the implementation and deployment of the proposed framework in a simulated industrial environment with relevant security policies to reflect the advantages of the OPC-UCON model.

查看原文本刊更多论文

通过扩展OPC-UA和使用控制来提高工业4.0的安全性

这项工作提出了一个框架，该框架利用OPC统一架构(OPC- ua)框架和使用控制(UCON)范式，在工业环境中提供对操作执行的持续控制。我们提出了一个细粒度的使用控制模型，称为OPC-UCON，满足了OPC-UA框架的安全和隐私需求。我们提出的框架利用模拟工业组件之间的OPC-UA连接，并使用UCON范式根据以标准化格式报告的细粒度策略动态控制操作执行。UCON范例作为系统的一种形式，负责控制动态政策重新评价的过程，以及在条件不再满足政策要求时，通过停止先前授权的行动来撤销已经授予的授权的可能性。我们提出了在具有相关安全策略的模拟工业环境中实施和部署所提出的框架，以反映OPC-UCON模型的优势。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 15th International Conference on Availability, Reliability and Security

自引率

0.00%

发文量