Skip to main content
SpringerLink
Log in

Distributed Identity Based Private Key Generation for SCADA Systems

  • Conference paper
Critical Information Infrastructures Security

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 7722))

  • 1294 Accesses

Abstract

The security of the ICT (Information Communications Technology) components of industrial systems is gaining great importance in the context of their criticality for society at large. There is an urgent need for the consideration of security in their design, and for the analysis of the related vulnerabilities and potential threats. The high exposure of industrial critical infrastructure to such threats is mainly due to the intrinsic weakness of the communication protocols used to control the process network. The peculiarities of the industrial protocols (low computational power, large geographical distribution, near to real-time constraints) make hard the effective use of traditional cryptographic schemes and in particular the implementation of a effective key management infrastructure supporting a cryptographic layer. In this paper we present the first working prototype of a distributed key generation infrastructure for SCADA systems based on the well known identity based crypto-paradigm.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 49.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Fovino, I.N., Marcelo Masera, R.L.: Ict security assessment of a power plant, a case study. In: Second Annual IFIP Working Group 11.10 International Conference on Critical Infrastructure Protection, Arlington, USA (2008)

    Google Scholar 

  2. Majdalawieh, M., Parisi-Presicce, F., Wijesekera, D.: Distributed network protocol security (dnpsec) security framework. In: 21st Annual Computer Security Applications Conference (2005)

    Google Scholar 

  3. Igor Nai Fovino, A.C., Masera, M.: Secure modbus protocol, a proof of concept. In: Proceedings of the 3rd IFIP Int. Conf. on Critical Infrastructure Protection (2009)

    Google Scholar 

  4. Beaver, C., Donald Gallup, W.N., Torgerson, M.: Key management for scada. Technical report, Cryptography and Information Systems Surety Department Sandia National Laboratories (2002)

    Google Scholar 

  5. Robert, D., Colin, B., Dawson, E., Juan, M.: Skma a key management architecture for scada systems. In: Proceedings of the Proceedings of the 4th Australasian Information Security Workshop, vol. 54 (2006)

    Google Scholar 

  6. Lambert, R.J.: Ecc and scada key management. In: Proceedings of S4 (SCADA Security Scientific Symposium) Conference (2007)

    Google Scholar 

  7. Shamir, A.: Identity-based cryptosystems and signature schemes. In: Blakely, G.R., Chaum, D. (eds.) CRYPTO 1984. LNCS, vol. 196, pp. 47–53. Springer, Heidelberg (1985)

    Chapter  Google Scholar 

  8. Boneh, D., Franklin, M.: Identity-based encryption from the weil pairing. In: Kilian, J. (ed.) CRYPTO 2001. LNCS, vol. 2139, pp. 213–229. Springer, Heidelberg (2001)

    Chapter  Google Scholar 

  9. Shamir, A.: How to share a secret. Commun. ACM 22(11), 612–613 (1979)

    Article  MathSciNet  Google Scholar 

  10. Kate, A., Goldberg, I.: Asynchronous distributed private-key generators for identity-based cryptography. IACR Cryptology ePrint Archive 2009, 355 (2009)

    Google Scholar 

  11. Feldman, P.: A practical scheme for non-interactive verifiable secret sharing. In: Proceedings of the 28th Annual Symposium on Foundations of Computer Science, SFCS 1987, pp. 427–438. IEEE Computer Society, Washington, DC (1987)

    Google Scholar 

  12. Kilinc, G., Igor Nai Fovino, C.F., Koltuksuz, A.: A model of distributed key generation for industrial control systems. Technical report, E.C. Joint Research Centre, Institute for the Protection and Security of the Citizen (2012)

    Google Scholar 

  13. pairing-based cryptography, http://crypto.stanford.edu/pbc/

  14. Gnu multiple precision library, http://gmplib.org/

  15. Genge, B., Igor Nai Fovino, C.S., Masera, M.: Analyzing cyber-physical attacks on networked industrial control systems. In: Butts, J., Shenoi, S. (eds.) Critical Infrastructure Protection V. IFIP AICT, vol. 367, pp. 167–183. Springer, Boston (2011), doi:10.1007/978-3-642-24864-1_12

    Chapter  Google Scholar 

  16. Chor, B., Shaft Goldwasser, S.M., Awerbuch, B.: Verifiable secret sharing and achieving simultaneity in the presence of faults. In: Proceedings of 6th IEEE Symposium on Foundations of Computer Science, pp. 383–395 (1985)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Computer Eng. Dept., Izmir Institute of Technology, Gulbahce, Urla, Izmir, 35430, Turkey

    Görkem Kılınç

  2. Global Cyber Security Center, Viale Europa 174, Rome, Italy

    Igor Nai Fovino

Authors
  1. Görkem Kılınç
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Igor Nai Fovino
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Hochschule Luzern - Technik und Architektur, CEO Acris GmbH, Bodenhofstrasse 29, 6005 Luzern, Switzerland and Gjøvik University College, Teknologivegen 22, 2815, Gjøvik, Norway

    Bernhard M. Hämmerli

  2. Faculty of Computer Science and Media Technology, Gjøvik University College, Teknologivegen 22, 2815, Gjøvik, Norway

    Nils Kalstad Svendsen

  3. Department of Computer Science, E.T.S. Ingenieria Informatica, University of Malaga, Campus de Teatinos s/n, 29071, Malaga, Spain

    Javier Lopez

Rights and permissions

Reprints and permissions

Copyright information

© 2013 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Kılınç, G., Nai Fovino, I. (2013). Distributed Identity Based Private Key Generation for SCADA Systems. In: Hämmerli, B.M., Kalstad Svendsen, N., Lopez, J. (eds) Critical Information Infrastructures Security. Lecture Notes in Computer Science, vol 7722. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-41485-5_11

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-41485-5_11

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-41484-8

  • Online ISBN: 978-3-642-41485-5

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation