Sarah Haas, Andreas Wallner, Ronald Toegl, Thomas Ulz, C. Steger
{"title":"A secured offline authentication approach for industrial mobile robots","authors":"Sarah Haas, Andreas Wallner, Ronald Toegl, Thomas Ulz, C. Steger","doi":"10.1109/COASE.2017.8256121","DOIUrl":null,"url":null,"abstract":"Mobile robots are used to replace conveyors in production facilities as they provide more flexibility and are easier to install or replace. These robots suffer from higher safety risks than conveyors as they move freely, necessitating extended security needs. A major point is the need for authentication to prevent unauthorized persons from manipulating a robot's software or configuration. Traditional username and password schemes are unwildy and insufficient for industrial mobile robots as administration and maintenance do not scale well. We propose the use of one-time passwords for authentication on robots based on a shared secret and a counter. The authentication mechanism is further supported by secure elements to allow secured storage of the key and secured password derivation. We also provide a threat analysis for the proposed methods.","PeriodicalId":445441,"journal":{"name":"2017 13th IEEE Conference on Automation Science and Engineering (CASE)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-08-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 13th IEEE Conference on Automation Science and Engineering (CASE)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/COASE.2017.8256121","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 2
Abstract
Mobile robots are used to replace conveyors in production facilities as they provide more flexibility and are easier to install or replace. These robots suffer from higher safety risks than conveyors as they move freely, necessitating extended security needs. A major point is the need for authentication to prevent unauthorized persons from manipulating a robot's software or configuration. Traditional username and password schemes are unwildy and insufficient for industrial mobile robots as administration and maintenance do not scale well. We propose the use of one-time passwords for authentication on robots based on a shared secret and a counter. The authentication mechanism is further supported by secure elements to allow secured storage of the key and secured password derivation. We also provide a threat analysis for the proposed methods.