Detail výsledku
A Formal Authorization Framework for Networked SCADA Systems
Ráb Jaroslav, Ing., UIFS (FIT)
Ryšavý Ondřej, doc. Ing., Ph.D., UIFS (FIT)
Švéda Miroslav, prof. Ing., CSc., UIFS (FIT), UTKO (FEKT)
In this paper, we propose an application of a formal authorization framework for defining and enforcing security policies in SCADA systems. Current generation of SCADA systems are built as open networked systems often connected to public networks. Thus the security becomes an important issue, which needs to be properly addressed in these systems. The knowledge gained from securing networked computer based systems may help to develop security measures for SCADA systems too. Among such methods, a policy based security methods are the most applied. The contribution of this paper consists of an overview of security issues related to SCADA systems and a proposal to use a logic-based authorization framework in this environment for achieving scalable and efficient authentication.
SCADA Systems, Authorization, security management, security policy management, formal methods
@inproceedings{BUT91509,
author="Patrik {Halfar} and Jaroslav {Ráb} and Ondřej {Ryšavý} and Miroslav {Švéda}",
title="A Formal Authorization Framework for Networked SCADA Systems",
booktitle="Proceedings IEEE ECBS 2012",
year="2012",
pages="298--302",
publisher="IEEE Computer Society",
address="Novy Sad",
isbn="978-0-7695-4664-3",
url="https://www.fit.vut.cz/research/publication/10015/"
}Pokročilé bezpečné, spolehlivé a adaptivní IT, VUT, Vnitřní projekty VUT, FIT-S-11-1, zahájení: 2011-01-01, ukončení: 2013-12-31, ukončen
SCADA systém pro řízení a monitorování procesů v reálném čase, TAČR, Program aplikovaného výzkumu a experimentálního vývoje ALFA, TA01010632, zahájení: 2011-01-01, ukončení: 2013-12-31, ukončen
Výzkum informačních technologií z hlediska bezpečnosti, MŠMT, Institucionální prostředky SR ČR (např. VZ, VC), MSM0021630528, zahájení: 2007-01-01, ukončení: 2013-12-31, řešení