A Secured Offline Authentication Approach for Industrial Mobile Robots

Sarah Haas; Andreas Wallner; Ronald Tögl; Thomas Ulz; Christian Steger

A Secured Offline Authentication Approach for Industrial Mobile Robots

Sarah Haas, Andreas Wallner, Ronald Tögl, Thomas Ulz, Christian Steger

Institute of Technical Informatics (4480)

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Abstract

Mobile robots are used to replace conveyors in production facilities as they provide more flexibility and are easier to install or replace. These robots suffer from higher safety risks than conveyors as they move freely, necessitating extended security needs. A major point is the need for authentication to prevent unauthorized persons from manipulating a robot’s software or configuration. Traditional username and password schemes are unwildy and insufficient for industrial mobile robots as administration and maintenance do not scale well. We propose the use of one-time passwords for authentication on robots based on a shared secret and a counter. The authentication mechanism is further supported by secure elements to allow secured storage of the key and secured password derivation. We also provide a threat analysis for the proposed methods.

Original language	English
Title of host publication	Proceedings of the IEEE International Conference on Automation Science and Engineering
Number of pages	6
Publication status	Published - 2017

Hardware/Software-Codesign
Steger, C., Seifert, C., Stelzer, P., Fiala, G. & Basic, F.
1/01/95 → …
Project: Research area

Cite this

@inproceedings{809c1d5291ac40e499c331df39b6f5f7,

title = "A Secured Offline Authentication Approach for Industrial Mobile Robots",

abstract = "Mobile robots are used to replace conveyors in production facilities as they provide more flexibility and are easier to install or replace. These robots suffer from higher safety risks than conveyors as they move freely, necessitating extended security needs. A major point is the need for authentication to prevent unauthorized persons from manipulating a robot{\textquoteright}s software or configuration. Traditional username and password schemes are unwildy and insufficient for industrial mobile robots as administration and maintenance do not scale well. We propose the use of one-time passwords for authentication on robots based on a shared secret and a counter. The authentication mechanism is further supported by secure elements to allow secured storage of the key and secured password derivation. We also provide a threat analysis for the proposed methods.",

author = "Sarah Haas and Andreas Wallner and Ronald T{\"o}gl and Thomas Ulz and Christian Steger",

year = "2017",

language = "English",

booktitle = "Proceedings of the IEEE International Conference on Automation Science and Engineering",

}

TY - GEN

T1 - A Secured Offline Authentication Approach for Industrial Mobile Robots

AU - Haas, Sarah

AU - Wallner, Andreas

AU - Tögl, Ronald

AU - Ulz, Thomas

AU - Steger, Christian

PY - 2017

Y1 - 2017

N2 - Mobile robots are used to replace conveyors in production facilities as they provide more flexibility and are easier to install or replace. These robots suffer from higher safety risks than conveyors as they move freely, necessitating extended security needs. A major point is the need for authentication to prevent unauthorized persons from manipulating a robot’s software or configuration. Traditional username and password schemes are unwildy and insufficient for industrial mobile robots as administration and maintenance do not scale well. We propose the use of one-time passwords for authentication on robots based on a shared secret and a counter. The authentication mechanism is further supported by secure elements to allow secured storage of the key and secured password derivation. We also provide a threat analysis for the proposed methods.

AB - Mobile robots are used to replace conveyors in production facilities as they provide more flexibility and are easier to install or replace. These robots suffer from higher safety risks than conveyors as they move freely, necessitating extended security needs. A major point is the need for authentication to prevent unauthorized persons from manipulating a robot’s software or configuration. Traditional username and password schemes are unwildy and insufficient for industrial mobile robots as administration and maintenance do not scale well. We propose the use of one-time passwords for authentication on robots based on a shared secret and a counter. The authentication mechanism is further supported by secure elements to allow secured storage of the key and secured password derivation. We also provide a threat analysis for the proposed methods.

M3 - Conference paper

BT - Proceedings of the IEEE International Conference on Automation Science and Engineering

ER -

A Secured Offline Authentication Approach for Industrial Mobile Robots

Abstract

Fingerprint

Projects

Hardware/Software-Codesign

Cite this