F. Stancu, R. Rughinis, C. Tranca, Ioana Laura Popescu
{"title":"Trusted Industrial Modbus Firewall for Critical Infrastructure Systems","authors":"F. Stancu, R. Rughinis, C. Tranca, Ioana Laura Popescu","doi":"10.1109/RoEduNet51892.2020.9324884","DOIUrl":null,"url":null,"abstract":"Cyber-attacks on critical infrastructure, industrial systems such as SCADA (Supervisory Control and Data Acquisition), have become ambitious over the past years, where a successful execution could lead to dangerous real world consequences such as power outages and expensive pieces of equipment receiving permanent damage. Additionally, the recently popular “Industry 4.0” trend brings Internet connectivity to sensitive industrial machinery, requesting improved cyber security practices to offset the extended attack surface. We present an affordable, realtime hardware firewall solution for securely isolating the cyber-physical devices from the untrusted, Internet facing networks, while still being able to remotely control them from trusted devices. We take on the insecure Modbus protocol and enhance it to ensure an authenticated industrial communication channel while keeping its strict latency requirements satistifed. Our architecture employs the Trusted Execution Technologies available on modern PCs such that operators will able to securely monitor and control their critical equipment from anywhere on the Internet, proposing a careful approach on the new industrial revolution.","PeriodicalId":140521,"journal":{"name":"2020 19th RoEduNet Conference: Networking in Education and Research (RoEduNet)","volume":"61 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-12-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 19th RoEduNet Conference: Networking in Education and Research (RoEduNet)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/RoEduNet51892.2020.9324884","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 4
Abstract
Cyber-attacks on critical infrastructure, industrial systems such as SCADA (Supervisory Control and Data Acquisition), have become ambitious over the past years, where a successful execution could lead to dangerous real world consequences such as power outages and expensive pieces of equipment receiving permanent damage. Additionally, the recently popular “Industry 4.0” trend brings Internet connectivity to sensitive industrial machinery, requesting improved cyber security practices to offset the extended attack surface. We present an affordable, realtime hardware firewall solution for securely isolating the cyber-physical devices from the untrusted, Internet facing networks, while still being able to remotely control them from trusted devices. We take on the insecure Modbus protocol and enhance it to ensure an authenticated industrial communication channel while keeping its strict latency requirements satistifed. Our architecture employs the Trusted Execution Technologies available on modern PCs such that operators will able to securely monitor and control their critical equipment from anywhere on the Internet, proposing a careful approach on the new industrial revolution.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
