Introducing security modules in PROFINET IO

Authors:
Johan Åkerberg;Mats Björkman
Affiliations:
ABB Corporate Research, Västerås, Sweden;Mälardalens University, Academy of Innovation, Design, and Technology, Västerås, Sweden
Venue:
ETFA'09 Proceedings of the 14th IEEE international conference on Emerging technologies & factory automation
Year:
2009

Citing 2
Cited 1

Computer Networks

Computer Networks
Exploring Security in PROFINET IO

COMPSAC '09 Proceedings of the 2009 33rd Annual IEEE International Computer Software and Applications Conference - Volume 01

Towards the protection of industrial control systems: conclusions of a vulnerability analysis of profinet IO

DIMVA'13 Proceedings of the 10th international conference on Detection of Intrusions and Malware, and Vulnerability Assessment

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper we show that it is possible to retrofit a security layer on top of PROFINET IO without changing the underlying transmission system or standards. By introducing security modules, end-to-end network security can be achieved and ensure authentication, integrity and confidentiality for real-time communication. The concept of security modules is a flexible framework and countermeasures can be changed, as security threats and exploits are changing over time. A proof-of-concept implementation shows that it is possible to implement security modules on existing products and secure them against, for example, man-in-the-middle attacks.