Security Concepts Based on IEEE 802.1X for G.hn Broadband PLC Access Networks

2020 IEEE International Symposium on Power Line Communications and its Applications (ISPLC) Pub Date : 2020-05-01 DOI:10.1109/ISPLC48789.2020.9115402

G. Hallak, T. Frauenrath, A. Mengi

{"title":"Security Concepts Based on IEEE 802.1X for G.hn Broadband PLC Access Networks","authors":"G. Hallak, T. Frauenrath, A. Mengi","doi":"10.1109/ISPLC48789.2020.9115402","DOIUrl":null,"url":null,"abstract":"Broadband Power Line Communications (BPL) has the potential to play a significant role in the German smart grid, due to its high data rate. Although BPL may offer significant competitive benefits, the possible negative impact that BPL may have on security may be a more important factor in BPL deployment. In this paper, security issues regarding the current implementations of ITU-T G.hn BPL for access networks are discussed. It has been shown that an authentication using AES-128 on the physical layer cannot grant the authenticity. Security requirements to improve the actual situation are introduced. Furthermore, three security concepts in different complexities to adapt the key features of IEEE 802.1X into G.hn are presented. The first concept is based on the encryption of the content of the authentication messages during the handshake. The second concept extends the previous one with additional response messages. The last concept is based on the insertion of EAP-TLS authentication to validate the possession of the private keys.","PeriodicalId":403692,"journal":{"name":"2020 IEEE International Symposium on Power Line Communications and its Applications (ISPLC)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-05-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 IEEE International Symposium on Power Line Communications and its Applications (ISPLC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISPLC48789.2020.9115402","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

Broadband Power Line Communications (BPL) has the potential to play a significant role in the German smart grid, due to its high data rate. Although BPL may offer significant competitive benefits, the possible negative impact that BPL may have on security may be a more important factor in BPL deployment. In this paper, security issues regarding the current implementations of ITU-T G.hn BPL for access networks are discussed. It has been shown that an authentication using AES-128 on the physical layer cannot grant the authenticity. Security requirements to improve the actual situation are introduced. Furthermore, three security concepts in different complexities to adapt the key features of IEEE 802.1X into G.hn are presented. The first concept is based on the encryption of the content of the authentication messages during the handshake. The second concept extends the previous one with additional response messages. The last concept is based on the insertion of EAP-TLS authentication to validate the possession of the private keys.

查看原文本刊更多论文

基于IEEE 802.1X的宽带PLC接入网安全概念

宽带电力线通信(BPL)由于其高数据速率，有可能在德国智能电网中发挥重要作用。尽管BPL可能提供显著的竞争优势，但BPL可能对安全性产生的负面影响可能是BPL部署中更重要的因素。本文讨论了当前接入网中ITU-T G.hn BPL实现的安全问题。研究表明，在物理层使用AES-128的身份验证不能授予真实性。介绍了改进实际情况的安全要求。此外，提出了三种不同复杂性的安全概念，以适应IEEE 802.1X的关键特性。第一个概念是基于握手期间身份验证消息内容的加密。第二个概念用附加的响应消息扩展了前一个概念。最后一个概念是基于插入EAP-TLS身份验证来验证私钥的所有权。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2020 IEEE International Symposium on Power Line Communications and its Applications (ISPLC)

自引率

0.00%

发文量