Result Details
A Formal Authorization Framework for Networked SCADA Systems
Ráb Jaroslav, Ing., DIFS (FIT)
Ryšavý Ondřej, doc. Ing., Ph.D., DIFS (FIT)
Švéda Miroslav, prof. Ing., CSc., DIFS (FIT), UTKO (FEEC)
In this paper, we propose an application of a formal authorization framework for defining and enforcing security policies in SCADA systems. Current generation of SCADA systems are built as open networked systems often connected to public networks. Thus the security becomes an important issue, which needs to be properly addressed in these systems. The knowledge gained from securing networked computer based systems may help to develop security measures for SCADA systems too. Among such methods, a policy based security methods are the most applied. The contribution of this paper consists of an overview of security issues related to SCADA systems and a proposal to use a logic-based authorization framework in this environment for achieving scalable and efficient authentication.
SCADA Systems, Authorization, security management, security policy management, formal methods
@inproceedings{BUT91509,
author="Patrik {Halfar} and Jaroslav {Ráb} and Ondřej {Ryšavý} and Miroslav {Švéda}",
title="A Formal Authorization Framework for Networked SCADA Systems",
booktitle="Proceedings IEEE ECBS 2012",
year="2012",
pages="298--302",
publisher="IEEE Computer Society",
address="Novy Sad",
isbn="978-0-7695-4664-3",
url="https://www.fit.vut.cz/research/publication/10015/"
}Centrum excelence IT4Innovations, MŠMT, Operační program Výzkum a vývoj pro inovace, ED1.1.00/02.0070, start: 2011-01-01, end: 2015-12-31, completed
SCADA system for control and monitoring RT processes, TAČR, Program aplikovaného výzkumu a experimentálního vývoje ALFA, TA01010632, start: 2011-01-01, end: 2013-12-31, completed
Security-Oriented Research in Information Technology, MŠMT, Institucionální prostředky SR ČR (např. VZ, VC), MSM0021630528, start: 2007-01-01, end: 2013-12-31, running