Using Bloom Filters to Ensure Access Control and Authentication Requirements for SCADA Field Devices

Abstract : The critical infrastructure cannot operate without SCADA systems; this has made the task of securing SCADA systems a national security priority. While progress has been made in securing control networks, security at the field device level is still lacking. Field devices present unique security challenges and these challenges are compounded by the presence of legacy devices. This paper describes a technique that uses Bloom filters to implement challenge-response authentication and role-based access control in field devices. The approach, which is implemented in an in-line security pre-processor, provides for rapid and constant access check times. Experiments involving a prototype device demonstrate that the false positive rate can be kept arbitrarily low and that the real-time performance is acceptable for many SCADA applications.
Type de document :
Communication dans un congrès
Jonathan Butts; Sujeet Shenoi. 6th International Conference on Critical Infrastructure Protection (ICCIP), Mar 2012, Washington, DC, United States. Springer, IFIP Advances in Information and Communication Technology, AICT-390, pp.85-97, 2012, Critical Infrastructure Protection VI. 〈10.1007/978-3-642-35764-0_7〉
Liste complète des métadonnées

Littérature citée [12 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01483822
Contributeur : Hal Ifip <>
Soumis le : lundi 6 mars 2017 - 15:02:09
Dernière modification le : lundi 6 mars 2017 - 15:05:07
Document(s) archivé(s) le : mercredi 7 juin 2017 - 14:33:27

Fichier

978-3-642-35764-0_7_Chapter.pd...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Jeffrey Hieb, Jacob Schreiver, James Graham. Using Bloom Filters to Ensure Access Control and Authentication Requirements for SCADA Field Devices. Jonathan Butts; Sujeet Shenoi. 6th International Conference on Critical Infrastructure Protection (ICCIP), Mar 2012, Washington, DC, United States. Springer, IFIP Advances in Information and Communication Technology, AICT-390, pp.85-97, 2012, Critical Infrastructure Protection VI. 〈10.1007/978-3-642-35764-0_7〉. 〈hal-01483822〉

Partager

Métriques

Consultations de la notice

182

Téléchargements de fichiers

108