当前位置: X-MOL 学术Int. J. Crit. Infrastruct. Prot. › 论文详情
Our official English website, www.x-mol.net, welcomes your feedback! (Note: you will need to create a separate account there.)
Key pre-distribution scheme with join leave support for SCADA systems
International Journal of Critical Infrastructure Protection ( IF 4.1 ) Pub Date : 2018-11-02 , DOI: 10.1016/j.ijcip.2018.10.011
Pramod T. C. , Kianoosh G. Boroojeni , M. Hadi Amini , N.R. Sunitha , S.S. Iyengar

Supervisory Control and Data Acquisition (SCADA) systems are used in major industries to achieve greater levels of efficiency, safety and quality. Due to massive security attacks, securing such systems is a critical issue. In order to secure the communications of SCADA systems, it is observed that key pre-distribution schemes are more suitable. In this paper, we propose a matrix- based key pre-distribution scheme for SCADA systems. The scheme supports device join, leave and key update operations with less communication cost. Also, the proposed key pre-distribution scheme supports secure broadcasting, multi-casting and unicast communications between the SCADA systems. In this novel approach, secret keys are not transmitted over the network to handle the operations, such as key update, join and leave. Alternatively, each device locally computes the required keys, once they are deployed in the network. However, in these situations that the device compromises or supports forward secrecy, the auxiliary and group keys are encrypted and sent to the required devices. In order to validate the effectiveness of the proposed scheme from both performance and security perspectives, it is compared with existing schemes through simulation results and analyzing the findings.



中文翻译:

关键的预分配方案,支持SCADA系统的加入休假

监督控制和数据采集(SCADA)系统用于主要行业,以实现更高水平的效率,安全性和质量。由于大规模的安全攻击,保护此类系统至关重要。为了确保SCADA系统的通信安全,可以发现关键的预分配方案更为合适。在本文中,我们提出了一种基于矩阵的SCADA系统密钥预分配方案。该方案以较低的通信成本支持设备加入,离开和密钥更新操作。而且,提出的密钥预分配方案支持SCADA系统之间的安全广播,多播和单播通信。在这种新颖的方法中,秘密密钥不会通过网络传输来处理诸如密钥更新,联接和离开之类的操作。或者,一旦将它们部署到网络中,每个设备都会在本地计算所需的密钥。但是,在这些设备损害或支持前向保密性的情况下,辅助密钥和组密钥将被加密并发送到所需的设备。为了从性能和安全性角度验证所提出方案的有效性,通过仿真结果和分析结果将其与现有方案进行比较。

更新日期:2018-11-02
down
wechat
bug