TY - JOUR
T1 - Advanced key-management architecture for secure SCADA communications
AU - Choi, Donghyun
AU - Kim, Hakman
AU - Won, Dongho
AU - Kim, Seungjoo
N1 - Funding Information:
Manuscript received June 27, 2008; revised July 30, 2008. First published May 02, 2009; current version published June 24, 2009. This work was supported by the Ministry of Knowledge Economy, Korea, under the Information Technology Research Center support program supervised by the Institute of Information Technology Advancement under Grants IITA-2008-C1090-0801-0028 and IITA-2008-C1090-0801-0016. Paper no. TPWRD-00488-2008.
Copyright:
Copyright 2009 Elsevier B.V., All rights reserved.
PY - 2009
Y1 - 2009
N2 - Supervisory control and data-acquisition (SCADA) systems are control systems for many national infrastructures. In the past, SCADA systems were designed without security functionality because of the closed operating environment. However, the security of SCADA systems has become an issue with connection to open networks becoming more common. Any damage to the SCADA system can have a widespread negative effect to society. In this paper, we review constraints and security requirements for SCADA systems and then investigate whether the existing key-management protocols for the SCADA systems satisfy these requirements. Afterward, we propose an advanced key-management architecture fitted for secure SCADA communications. The contributions of our work are two-fold. First, our scheme supports both message broadcasting and secure communication. Second, by evenly spreading much of the total amount of computation across high power nodes (MTU or SUB-MTU), our protocol avoids any potential performance bottleneck of the system while keeping the burden on low power nodes (RTU) at minimal.
AB - Supervisory control and data-acquisition (SCADA) systems are control systems for many national infrastructures. In the past, SCADA systems were designed without security functionality because of the closed operating environment. However, the security of SCADA systems has become an issue with connection to open networks becoming more common. Any damage to the SCADA system can have a widespread negative effect to society. In this paper, we review constraints and security requirements for SCADA systems and then investigate whether the existing key-management protocols for the SCADA systems satisfy these requirements. Afterward, we propose an advanced key-management architecture fitted for secure SCADA communications. The contributions of our work are two-fold. First, our scheme supports both message broadcasting and secure communication. Second, by evenly spreading much of the total amount of computation across high power nodes (MTU or SUB-MTU), our protocol avoids any potential performance bottleneck of the system while keeping the burden on low power nodes (RTU) at minimal.
KW - Key management
KW - Power system security
KW - Supervisory control and data-acquisition (SCADA) systems
UR - http://www.scopus.com/inward/record.url?scp=67650661171&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=67650661171&partnerID=8YFLogxK
U2 - 10.1109/TPWRD.2008.2005683
DO - 10.1109/TPWRD.2008.2005683
M3 - Article
AN - SCOPUS:67650661171
SN - 0885-8977
VL - 24
SP - 1154
EP - 1163
JO - IEEE Transactions on Power Delivery
JF - IEEE Transactions on Power Delivery
IS - 3
ER -