JOURNAL BROWSE
Search
Advanced SearchSearch Tips
A Study on Introducing Security Certification for Control Systems
facebook(new window)  Pirnt(new window) E-mail(new window) Excel Download
 Title & Authors
A Study on Introducing Security Certification for Control Systems
Choi, Hoyeol; Kim, Daeyeong; Shin, Hyungjune; Hahn, Changhee; Hur, Junbeom;
  PDF(new window)
 Abstract
SCADA(Supervisory Control and Data Acquisition) system is widely used for remote monitoring and control throughout the domestic industry. Due to a recent breach of security on SCADA systems, such as Stuxnet, the need of correctly established secure certification of a control system is growing. Currently, EDSA-CRT (Embedded Device Security Assurance-Communication Robustness Test), which tests the ability to provide core services properly in a normal/abnormal network protocol, is only focused on the testing of IP-based protocols such as IP, ARP, TCP, etc. Thus, in this paper, we propose test requirements for DNP3 protocol based on EDSA-CRT. Our analysis show that the specific test cases provide plentiful evidences that DNP3 should follow based on its functional requirements. As a result, we propose 33 specific test case for DNP3 protocol.
 Keywords
SCADA;DNP3;EDSA-CRT;Certification;Robustness Testing;Load Stress Testing;
 Language
Korean
 Cited by
 References
1.
Seonmun Kwon and Taesik Son, "The vulnerabilities and security present condition of DNP3 protocol in control systems," Conference of the Korea Institute of Information Security and Cryptology, 24(1), pp. 53-58, 2014

2.
Dongsoo Lee and Kwangjo Kim, "Building Small-Scale Testbed for DNP3 Protocol in SCADA system," Journal of The Korea Institute of Information Security and Cryptology, pp. 66-71, 2013

3.
Moonsu Jang, Gunhee Lee, SinKyu Kim, Byung-gil Min, Woo-nyon Kim, and Jungtaek Seo, "Testing Vulnerabilities of DNP3," Journal of Security Engineering, 7(1), pp. 15-28, 2010

4.
Tae-Gyeong Kim, "An Application level security design for DNP3," Journal of the Korea Institute of Electrical Engineers, pp. 362-363, July. 2010

5.
IEEE Power & Energy Society, "IEEE Standard for Electric Power System Communications - Distributed Network Protocol (DNP3)," IEEE, pp. 1-821, 2012

6.
Clarke, Gordon R, Deon Reynders, Edwin Wright, "Practical modern SCADA protocols: DNP3, 60870.5 and related systems," Newnes, 2004

7.
Jeong-Han Yun, Sung-Ho Jeon, Kyoung-Ho Kim, Woo-Nyon Kin, "A Burst-based Whitelist Model for DNP3 Communication in the SCADA System," International Journal of Control and Automation, 21, pp. 56-59, 2013

8.
EDSA-310, Embedded Device Security Assurance - Common requirements for communication robustness testing of IP-based protocol implementations, ISA Security Compliance Institute, 2010

9.
Hoyeol Choi, Daeyeong Kim, Hyungjune Shin, Changgee Hahn, and Junbeom Hur, "A Study on Introducing Security Certification for Control Systems," https://goo.gl/Zx4Uit

10.
The Achilles Certification Program, https://www.wurldtech.com/certifications/ achilles-communications-certification

11.
Kim, Jongwan, and Taeshik Shon. "A Study of Security Certification and Accreditation for DNP3 linkage section in EMS/SCADA," Journal of The Korea Institute of Information Security & Cryptology, 25(3), pp. 703-713, 2015 crossref(new window)

12.
EDSA Certification, http://www.isasecure.org/en-US/Certification/IEC-62443-4-2-EDSA-Certification