Matheus K. Ferst, Hugo F. M. de Figueiredo, G. Denardin, Juliano Lopes
{"title":"利用Modbus和传输层安全协议实现安全通信","authors":"Matheus K. Ferst, Hugo F. M. de Figueiredo, G. Denardin, Juliano Lopes","doi":"10.1109/INDUSCON.2018.8627306","DOIUrl":null,"url":null,"abstract":"Industrial Control Systems (ICS) and Supervisory Control systems and Data Acquisition (SCADA) networks implement industrial communication protocols to enable their operations. Unfortunately, wide used protocols, such as Modbus and DNP3, lack basic security mechanisms that lead to multiple vulnerabilities. The exploitation of such flaws may greatly impact companies and the general population, especially for attacks targeting critical infrastructural assets such as power plants, water distribution, and railway transportation systems. Such problem gets worse in the context of photovoltaic Distributed Energy Resources (DER), where devices are commonly located in customers facilities, making difficult to enforce appropriate security policies. This paper addresses the security problems of the Modbus protocol, proposing a new secure version based on the Transport Layer Security protocol. Experimental results shows that the proposed solution achieves request/response times way below the 16.67 ms period of the power grid 60 Hz cycle, revealing a negligible impact in power grids applications.","PeriodicalId":156866,"journal":{"name":"2018 13th IEEE International Conference on Industry Applications (INDUSCON)","volume":"183 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"19","resultStr":"{\"title\":\"Implementation of Secure Communication With Modbus and Transport Layer Security protocols\",\"authors\":\"Matheus K. Ferst, Hugo F. M. de Figueiredo, G. Denardin, Juliano Lopes\",\"doi\":\"10.1109/INDUSCON.2018.8627306\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Industrial Control Systems (ICS) and Supervisory Control systems and Data Acquisition (SCADA) networks implement industrial communication protocols to enable their operations. Unfortunately, wide used protocols, such as Modbus and DNP3, lack basic security mechanisms that lead to multiple vulnerabilities. The exploitation of such flaws may greatly impact companies and the general population, especially for attacks targeting critical infrastructural assets such as power plants, water distribution, and railway transportation systems. Such problem gets worse in the context of photovoltaic Distributed Energy Resources (DER), where devices are commonly located in customers facilities, making difficult to enforce appropriate security policies. This paper addresses the security problems of the Modbus protocol, proposing a new secure version based on the Transport Layer Security protocol. Experimental results shows that the proposed solution achieves request/response times way below the 16.67 ms period of the power grid 60 Hz cycle, revealing a negligible impact in power grids applications.\",\"PeriodicalId\":156866,\"journal\":{\"name\":\"2018 13th IEEE International Conference on Industry Applications (INDUSCON)\",\"volume\":\"183 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2018-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"19\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2018 13th IEEE International Conference on Industry Applications (INDUSCON)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/INDUSCON.2018.8627306\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 13th IEEE International Conference on Industry Applications (INDUSCON)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/INDUSCON.2018.8627306","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Implementation of Secure Communication With Modbus and Transport Layer Security protocols
Industrial Control Systems (ICS) and Supervisory Control systems and Data Acquisition (SCADA) networks implement industrial communication protocols to enable their operations. Unfortunately, wide used protocols, such as Modbus and DNP3, lack basic security mechanisms that lead to multiple vulnerabilities. The exploitation of such flaws may greatly impact companies and the general population, especially for attacks targeting critical infrastructural assets such as power plants, water distribution, and railway transportation systems. Such problem gets worse in the context of photovoltaic Distributed Energy Resources (DER), where devices are commonly located in customers facilities, making difficult to enforce appropriate security policies. This paper addresses the security problems of the Modbus protocol, proposing a new secure version based on the Transport Layer Security protocol. Experimental results shows that the proposed solution achieves request/response times way below the 16.67 ms period of the power grid 60 Hz cycle, revealing a negligible impact in power grids applications.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
