Design and Implementation of a Secure Modbus Protocol

  • Igor Nai Fovino
  • Andrea Carcano
  • Marcelo Masera
  • Alberto Trombetta
Conference paper

DOI: 10.1007/978-3-642-04798-5_6

Part of the IFIP Advances in Information and Communication Technology book series (IFIPAICT, volume 311)
Cite this paper as:
Fovino I.N., Carcano A., Masera M., Trombetta A. (2009) Design and Implementation of a Secure Modbus Protocol. In: Palmer C., Shenoi S. (eds) Critical Infrastructure Protection III. ICCIP 2009. IFIP Advances in Information and Communication Technology, vol 311. Springer, Berlin, Heidelberg

Abstract

The interconnectivity of modern and legacy supervisory control and data acquisition (SCADA) systems with corporate networks and the Internet has significantly increased the threats to critical infrastructure assets. Meanwhile, traditional IT security solutions such as firewalls, intrusion detection systems and antivirus software are relatively ineffective against attacks that specifically target vulnerabilities in SCADA protocols. This paper describes a secure version of the Modbus SCADA protocol that incorporates integrity, authentication, non-repudiation and anti-replay mechanisms. Experimental results using a power plant testbed indicate that the augmented protocol provides good security functionality without significant overhead.

Keywords

SCADA systems Modbus secure protocol 

Copyright information

© IFIP International Federation for Information Processing 2009

Authors and Affiliations

  • Igor Nai Fovino
  • Andrea Carcano
  • Marcelo Masera
  • Alberto Trombetta

There are no affiliations available

Personalised recommendations