• DocumentCode
    2586548
  • Title

    Introducing security modules in PROFINET IO

  • Author

    Åkerberg, Johan ; Björkman, Mats

  • Author_Institution
    Corp. Res., ABB AB, Vasters, Sweden
  • fYear
    2009
  • fDate
    22-25 Sept. 2009
  • Firstpage
    1
  • Lastpage
    8
  • Abstract
    In this paper we show that it is possible to retrofit a security layer on top of PROFINET IO without changing the underlying transmission system or standards. By introducing security modules, end-to-end network security can be achieved and ensure authentication, integrity and confidentiality for real-time communication. The concept of security modules is a flexible framework and countermeasures can be changed, as security threats and exploits are changing over time. A proof-of-concept implementation shows that it is possible to implement security modules on existing products and secure them against, for example, man-in-the-middle attacks.
  • Keywords
    local area networks; message authentication; protocols; Ethernet-based fieldbus protocols; PROFINET IO; end-to-end network security; man-in-the-middle attacks; message authentication; security modules; transmission system; Authentication; Automation; Availability; Communication system security; Data security; Field buses; Internet; Production; Protection; Protocols;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Emerging Technologies & Factory Automation, 2009. ETFA 2009. IEEE Conference on
  • Conference_Location
    Mallorca
  • ISSN
    1946-0759
  • Print_ISBN
    978-1-4244-2727-7
  • Electronic_ISBN
    1946-0759
  • Type

    conf

  • DOI
    10.1109/ETFA.2009.5347205
  • Filename
    5347205
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2586548