Advertisement

Exploring Network Security in PROFIsafe

  • Johan Åkerberg
  • Mats Björkman
Part of the Lecture Notes in Computer Science book series (LNCS, volume 5775)

Abstract

Safety critical systems are used to reduce the probability of failure that could cause danger to person, equipment or environment. The increasing level of vertical and horizontal integration increases the security risks in automation. Since the risk of security attacks can not be treated as negligible anymore, there is a need to investigate possible security attacks on safety critical communication.

In this paper we show that it is possible to attack PROFIsafe and change the safety-related process data without any of the safety measures in the protocol detecting the attack. As a countermeasure to network security attacks, the concept of security modules in combination with PROFIsafe will reduce the risk of security attacks, and is in line with the security concept defense-in-depth.

Keywords

Message Authentication Code Security Module Security Attack Factory Automation Functional Safety 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. 1.
    Sirkka, L., Jämsä, J.: Future trends in process automation. Annual Reviews in Control 31, 211–220 (2007)CrossRefGoogle Scholar
  2. 2.
    Dzung, D., Naedele, M., Von Hoff, T., Crevatin, M.: Security for industrial communication systems. Proceedings of the IEEE 93(6), 1152–1177 (2005)CrossRefGoogle Scholar
  3. 3.
    Tanenbaum, A.S.: Computer Networks, 4th edn. Pearson Education International, London (2003)zbMATHGoogle Scholar
  4. 4.
    Treytl, A., Sauter, T., Schwaiger, C.: Security measures for industrial fieldbus systems - state of the art and solutions for ip-based approaches. In: IEEE International Workshop on Factory Communication Systems, September 2004, pp. 201–209 (2004)Google Scholar
  5. 5.
    Harada, M.: Security management of factory automation. In: SICE, 2007 Annual Conference, September 2007, pp. 2914–2917 (2007)Google Scholar
  6. 6.
    IEC: IEC 61784-3-3. Industrial communication networks - Profiles - Part 3-3: Functional safety fieldbuses - Additional specifications for CPF 3. International Electrotechnical Commission (2007)Google Scholar
  7. 7.
    Treytl, A., Sauter, T., Schwaiger, C.: Security measures in automation systems-a practice-oriented approach. In: 10th IEEE Conference on Emerging Technologies and Factory Automation, September 2005, vol. 2, p. 9 (2005)Google Scholar
  8. 8.
    Baud, M., Felser, M.: Profinet io-device emulator based on the man-in-the-middle attack. In: 11th IEEE Conference on Emerging Technologies and Factory Automation, pp. 437–440 (2006)Google Scholar
  9. 9.
    Åkerberg, J., Björkman, M.: Exploring security in profinet io. 33rd Annual IEEE International Computer Software and Applications Conference (2009) (in press)Google Scholar
  10. 10.
    Granzer, W., Reinisch, C., Kastner, W.: Denial-of-service in automation systems. In: 13th IEEE Conference on Emerging Technologies and Factory Automation, pp. 468–471 (2008)Google Scholar
  11. 11.
    Granzer, W., Reinisch, C., Kastner, W.: Key Set Management in Networked Building Automation Systems using Multiple Key Servers. In: Proc. 7th IEEE International Workshop on Factory Communication Systems (WFCS 2008), May 2008, pp. 205–214 (2008)Google Scholar
  12. 12.
    Neumann, P.: Virtual automation network - reality or dream. In: IEEE International Conference on Industrial Technology, December 2003, vol. 2, pp. 994–999 (2003)Google Scholar
  13. 13.
    Neumann, P.: Communication in industrial automation-what is going on? Control Engineering Practice 15, 1332–1347 (2006)CrossRefGoogle Scholar
  14. 14.
    Neumann, P., Poeschmann, A., Messerschmidt, R.: Architectural concept of virtual automation networks. In: IFAC World Congress (2008)Google Scholar
  15. 15.
    IEC: IEC 61784-3. Industrial communication networks - Profiles - Part 3: Functional safety fieldbuses - General rules and profile definitions. International Electrotechnical Commission (2007)Google Scholar
  16. 16.
    PNO: PROFIsafe - Profile for Safety Technology on PROFIBUS DP and PROFINET IO. Version 2.0. Order No: 3.192. PROFIBUS Nutzerorganisation e.V. (2005)Google Scholar
  17. 17.
    IEC: IEC 62280-1. Railway applications - Communication, signaling and processing systems - Part 1: Safety-related communication in closed transmission systems. International Electrotechnical Commission (2002)Google Scholar
  18. 18.
    IEC: IEC 62280-2. Railway applications - Communication, signaling and processing systems - Part 2: Safety-related communication in open transmission systems. International Electrotechnical Commission (2002)Google Scholar
  19. 19.
    IEC: IEC 61508. Functional safety of electrical/electronic/programmable electronic safety-related systems - Part 1: General requirements. International Electrotechnical Commission (1998)Google Scholar
  20. 20.
    PNO: PROFINET Security Guideline, Version 1.0. PROFIBUS Neutzerorganisation e.V. (2005)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2009

Authors and Affiliations

  • Johan Åkerberg
    • 1
  • Mats Björkman
    • 2
  1. 1.ABB AB, Corporate ResearchVästeråsSweden
  2. 2.Academy of Innovation, Design, and TechnologyMälardalens UniversityVästeråsSweden

Personalised recommendations