Integration of Integrity Enforcing Technologies into Embedded Control Devices: Experiences and Evaluation

Krisper, M. (Speaker), Tobias Rauter (Contributor), Andrea Höller (Contributor), Johannes Iber (Contributor), Christian Josef Kreiner (Contributor)

Activity: Talk or presentationTalk at conference or symposiumScience to science

Description

Security is a vital property of SCADA systems, especially in critical infrastructure. An important aspect is maintaining (sub-)system integrity in networks of embedded control devices. One technology that is used to achieve this is remote attestation. It is used to prove the integrity of one system (prover) to another (challenger). However, due to the complexity of the maintenance of reference measurement, it is seen as impractical in such constrained distributed systems. In this work, we show how recent advances such as privilege-based attestation enable an architecture that is more feasible to use. Based on real control systems used for hydro-electric power plants, we evaluate the impact of the proposed infrastructure on the device performance and discuss our experiences with the consequences of using such technologies for the production and development processes of such systems.
Period17 Jan 2017
Held at22nd IEEE Pacific Rim International Symposium on Dependable Computing
Event typeConference
Conference number22
LocationChristchurch, New Zealand

Keywords

  • Computer Science(all)
  • Information, Communication & Computing
  • Application