Application of trusted network technology to industrial control networks

Hamed Okhravi; David M. Nicol

doi:10.1016/j.ijcip.2009.07.001

Application of trusted network technology to industrial control networks

Research output: Contribution to journal › Article › peer-review

Abstract

Interconnections between industrial control networks and enterprise networks expose instrumentation and control systems and the critical infrastructure components they operate to a variety of cyber attacks. Several architectural standards and security best practices have been proposed for industrial control systems. However, they are based on older architectures and do not leverage the latest hardware and software technologies. This paper describes new technologies that can be applied to the design of next generation security architectures for industrial control systems. The technologies are discussed along with their security benefits and design trade-offs.

Original language	English (US)
Pages (from-to)	84-94
Number of pages	11
Journal	International Journal of Critical Infrastructure Protection
Volume	2
Issue number	3
DOIs	https://doi.org/10.1016/j.ijcip.2009.07.001
State	Published - Oct 2009

Keywords

Firewalls
Industrial control systems
Security architecture
Trusted networks

ASJC Scopus subject areas

Modeling and Simulation
Safety, Risk, Reliability and Quality
Computer Science Applications
Information Systems and Management

Online availability

10.1016/j.ijcip.2009.07.001

Library availability

Discover UIUC Full Text

Cite this

@article{e9b01786f82545ceb21b839e73c2e1c9,

title = "Application of trusted network technology to industrial control networks",

abstract = "Interconnections between industrial control networks and enterprise networks expose instrumentation and control systems and the critical infrastructure components they operate to a variety of cyber attacks. Several architectural standards and security best practices have been proposed for industrial control systems. However, they are based on older architectures and do not leverage the latest hardware and software technologies. This paper describes new technologies that can be applied to the design of next generation security architectures for industrial control systems. The technologies are discussed along with their security benefits and design trade-offs.",

keywords = "Firewalls, Industrial control systems, Security architecture, Trusted networks",

author = "Hamed Okhravi and Nicol, {David M.}",

note = "We are grateful to the anonymous reviewers for very constructive recommendations. The US Department of Homeland Security, through grant award number 2006-CS-001-000001 under the auspices of the Institute for Information Infrastructure Protection (I3P) research program, partly supported this work. The views and conclusions contained in this document are those of the authors and should not be interpreted as necessarily representing the official policies, either expressed or implied, of the US Department of Homeland Security, the I3P, or Dartmouth College, which manages the I3P program. This material is also based in part upon work supported by National Science Foundation under Grant No. CNS-0524695. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of the National Science Foundation.",

year = "2009",

month = oct,

doi = "10.1016/j.ijcip.2009.07.001",

language = "English (US)",

volume = "2",

pages = "84--94",

journal = "International Journal of Critical Infrastructure Protection",

issn = "1874-5482",

publisher = "Elsevier B.V.",

number = "3",

}

TY - JOUR

T1 - Application of trusted network technology to industrial control networks

AU - Okhravi, Hamed

AU - Nicol, David M.

N1 - We are grateful to the anonymous reviewers for very constructive recommendations. The US Department of Homeland Security, through grant award number 2006-CS-001-000001 under the auspices of the Institute for Information Infrastructure Protection (I3P) research program, partly supported this work. The views and conclusions contained in this document are those of the authors and should not be interpreted as necessarily representing the official policies, either expressed or implied, of the US Department of Homeland Security, the I3P, or Dartmouth College, which manages the I3P program. This material is also based in part upon work supported by National Science Foundation under Grant No. CNS-0524695. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of the National Science Foundation.

PY - 2009/10

Y1 - 2009/10

N2 - Interconnections between industrial control networks and enterprise networks expose instrumentation and control systems and the critical infrastructure components they operate to a variety of cyber attacks. Several architectural standards and security best practices have been proposed for industrial control systems. However, they are based on older architectures and do not leverage the latest hardware and software technologies. This paper describes new technologies that can be applied to the design of next generation security architectures for industrial control systems. The technologies are discussed along with their security benefits and design trade-offs.

AB - Interconnections between industrial control networks and enterprise networks expose instrumentation and control systems and the critical infrastructure components they operate to a variety of cyber attacks. Several architectural standards and security best practices have been proposed for industrial control systems. However, they are based on older architectures and do not leverage the latest hardware and software technologies. This paper describes new technologies that can be applied to the design of next generation security architectures for industrial control systems. The technologies are discussed along with their security benefits and design trade-offs.

KW - Firewalls

KW - Industrial control systems

KW - Security architecture

KW - Trusted networks

UR - http://www.scopus.com/inward/record.url?scp=70149101305&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=70149101305&partnerID=8YFLogxK

U2 - 10.1016/j.ijcip.2009.07.001

DO - 10.1016/j.ijcip.2009.07.001

M3 - Article

AN - SCOPUS:70149101305

SN - 1874-5482

VL - 2

SP - 84

EP - 94

JO - International Journal of Critical Infrastructure Protection

JF - International Journal of Critical Infrastructure Protection

IS - 3

ER -

Application of trusted network technology to industrial control networks

Abstract

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this