SCADA security: a review and enhancement for DNP3 based systems

摘要

Keywords SCADA security Vulnerabilities IDS Key management Page %P Close Plain text Look Inside Reference tools Export citation EndNote (.ENW) JabRef (.BIB) Mendeley (.BIB) Papers (.RIS) Zotero (.RIS) BibTeX (.BIB) Add to Papers Other actions Register for Journal Updates About This Journal Reprints and Permissions Share Share this content on Facebook Share this content on Twitter Share this content on LinkedIn Related Content Supplementary Material (0) References (44) References1.Tsang R (2010) Cyberthreats, vulnerabilities and attacks on SCADA Networks. University of California, Berkeley2.Zhu B, Joseph A, Sastry S (2011) A taxonomy of cyber attacks on SCADA system In: Proceedings of CPSCom 2011: the 4th IEEE international conference on cyber, physical and social computing, Dalian, China, October 19–223.Meserve J (2007) Sources: staged cyber attack reveals vulnerability in power grid. CNN, Washington, DC 4.Greenberg A (2008) Hackers Cut Cities’ Power. http://​www.​Forbes.​com. Accessed Feb 20125. http://​unix.​nocdesigns.​com/​aurora_​white_​paper.​htm. Accessed Feb 20126.Stamp J, Dillinger J, Young W, Depoy J (2003) Common vulnerabilities in critical infrastructure control systems. Sandia National Laboratories, Albuquerque7.DNP User Group. http://​www.​dnp.​org. Accessed Dec 20118.Makhija J, Subramanyan LR (2003) Comparison of protocols used in remote monitoring: DNP 3.0, IEC 870-5-101 and Modbus9.Cleveland F (2005) IEC TC57 security standards for the power systems info infrastructure: beyond simple encryption, IEC TC57 WG15 security standards ver510.IT Security Advisory Group (2005) SCADA security: advice for CEOs. Department of Communications, Information Technology and the Arts, Canberra11.East S, Butts J, Papa M, Shenoi S (2009) A taxonomy of attacks on the DNP3 protocol, crtical infrastructure protection III. IFIP Adv Inf Commun Technol 311:67–81CrossRef12.Ballman J (2003) The great blackout of 2003 Aug. 14 power outage largest in U.S. history. Disaster Recovery J 16(4)13.NCS (2004) Technical information bulletin 04-1, SCADA systems. NCS, Arlington14.Fovino IN, Coletta A, Masera M (2010) Taxonomy of security solutions for the SCADA sector, version 1.115.Ten CW, Manimaran G, Liu CC (2010) Cybersecurity for critical infrastructures: attack and defence modelling. IEEE Trans Syst Man Cybern 40(4):853–865CrossRef16.Beaver CL, Gallup DR, NeuMann WD, Torgerson MD (2002) Key management for SCADA (SKE). Sandia Lab, AlbuquerqueCrossRef17.Dawson R, Boyd C, Dawson E, Nieto JMG (2006) SKMA-A key management architecture for SCADA systems. In: Proceedings of the grid computing18.Lee S, Choi D, Park C, Kim S (2008) An efficient key management scheme for secure SCADA communication. In: Proceedings of world academy of science, engineering and technology, vol 3519.elec.qmul.ac.uk/resources/electricitydata/pages/electricitydata.html. Accessed Feb 201220.Patel A, Qassim Q, Wills C (2010) A survey of intrusion detection and prevention systems. Info Manage Comput Secur 18(4):27721.Zhu B, Sastry S (2010) SCADA-specific intrusion detection/prevention systems: a survey and taxonomy, secure control systems (SCS). Team for Research in Ubiquitous System Technology, Stockholm22. http://​www.​digitalbond.​com. Accessed Nov 201123.Verba J, Milvich M (2008) Idaho national laboratory supervisory control and data acquisition intrusion detection system (SCADA IDS) IEEE conference on technologies for homeland security24.Dayu Y, Alexander U, Hines JW (2006) Anomaly-based intrusion detection for SCADA systems, 5th international topical meeting on nuclear plant instrumentation, controls, and human machine interface technology25.Fovino IN, Coletta A, Carcano A, Masera M, Trombetta A (2010) Modbus/DNP3 state-based intrusion detection system 24th IEEE international conference on advanced information networking and applications26.Cheung S, Dutertre B, Fong M, Lindqvist U, Skinner K, Valdes A (2007) Using model-based intrusion detection for SCADA networks SCADA security scientific symposium 27.Liu CC, Stefanov A, Hong J, Panciatici P (2012) Intruders in the grid IEEE power and energy magazine28. http://​www.​vikingproject.​eu. Accessed April 201229. http://​www.​uclm.​edu/​area/​gsee/​Web/​Federico/​psat.​htm. Accessed March 201230.Liu Y, Ning P, Reiter MK (2009) False data injection attacks against state estimation in electric power grids. In: Proceedings of the 15th ACM conference on computer and communications security, pp 21–3231.Bagaria S, Prabhakar SB, Saquib Z (2011) Flexi-DNP3:flexible distributed network protocol version 3 (DNP3) for SCADA security. ReTIS, Kolkatta32.Sekar R, Gupta A, Frullo J, Shanbhag T, Tiwari A, Yang H, Zhou S (2002) Specification based anomaly detection: a new approach for detecting network intrusions. In: Proceedings of the 9th ACM conference on computer and communications security33.NCS (2004) DNP3 (Distributed Network Protocol version 3.0) , and Modbus NCS Technical Information Bulletin 04-1, SCADA Systems 34.Shahzad AA, Musa S (2012) Securing SCADA communication using hybrid cryptography ICUIMC. In: Proceedings of the 6th international conference35.Carcano A, Coletta A, Guglielmi M, Masera M, Nai Fovino I, Trombetta A (2011) A multidimensional critical state analysis for detecting intrusions in SCADA systems. IEEE Trans Ind inform 7(2):179–186CrossRef36.Fovino IN, Coletta A, Carcano A, Masera M (2012) Critical state-based filtering system for securing SCADA network protocols. IEEE Trans Ind Electron 59:1037.Orset JM, Alcade B, Cavalli A (2005) An EFSM based Intrusion detection system for ad hoc networks, automated technology for verification and analysis, LNCS 3707, pp 400–41338.Smith R, Estan C, Jha S (2008) XFA: faster signature matching with extended automata IEEE symposium on security and privacy39.Barry BIA, Chan HA (2007) A hybrid, stateful and cross-protocol intrusion detection system for converged applications. In: Lecture notes in computer science, vol 4804. pp 1616–163340.Garcia Teodoro P, Diaz Verdejo J, Macia Fernandez G, Yazquez E (2009) Anomaly-based network intrusion detection: techniques, systems and challenges. Comput Secur 28:18–28CrossRef41.Mander T, Cheung R, Nabhani F (2010) Power system DNP3 data object security using data sets. Computer and Security 29:487–500CrossRef42. http://​164.​100.​176.​38/​patentsearch/​search/​index.​aspx. Accessed July 201243.Queiroz C, Mahmood A, Tari Z (2011) SCADASim a framework for building SCADA simulations. IEEE Trans Smart Grid 2(4):589-597CrossRef44. http://​www.​ee.​washington.​edu/​research/​pstca. Accessed Feb 2012 About this Article Title SCADA security: a review and enhancement for DNP3 based systems Journal CSI Transactions on ICT Volume 1, Issue 4 , pp 301-308 Cover Date2013-12 DOI 10.1007/s40012-013-0024-2 Print ISSN 2277-9078 Online ISSN 2277-9086 Publisher Springer India Additional Links Register for Journal Updates Editorial Board About This Journal Manuscript Submission Topics Software Engineering/Programming and Operating Systems Systems and Data Security Computer Communication Networks Input/Output and Data Communications Computer Science, general Keywords SCADA security Vulnerabilities IDS Key management Authors Peeyush Jain (1) Paritosh Tripathi (1) Author Affiliations 1. Centre for Development of Advanced Computing, Gulmohar Cross Road No. 9, Juhu, Mumbai, India Continue reading... To view the rest of this content please follow the download PDF link above.