Advanced SearchSearch Tips
A Study on Introducing Security Certification for Control Systems
facebook(new window)  Pirnt(new window) E-mail(new window) Excel Download
 Title & Authors
A Study on Introducing Security Certification for Control Systems
Choi, Hoyeol; Kim, Daeyeong; Shin, Hyungjune; Hahn, Changhee; Hur, Junbeom;
  PDF(new window)
SCADA(Supervisory Control and Data Acquisition) system is widely used for remote monitoring and control throughout the domestic industry. Due to a recent breach of security on SCADA systems, such as Stuxnet, the need of correctly established secure certification of a control system is growing. Currently, EDSA-CRT (Embedded Device Security Assurance-Communication Robustness Test), which tests the ability to provide core services properly in a normal/abnormal network protocol, is only focused on the testing of IP-based protocols such as IP, ARP, TCP, etc. Thus, in this paper, we propose test requirements for DNP3 protocol based on EDSA-CRT. Our analysis show that the specific test cases provide plentiful evidences that DNP3 should follow based on its functional requirements. As a result, we propose 33 specific test case for DNP3 protocol.
SCADA;DNP3;EDSA-CRT;Certification;Robustness Testing;Load Stress Testing;
 Cited by
Seonmun Kwon and Taesik Son, "The vulnerabilities and security present condition of DNP3 protocol in control systems," Conference of the Korea Institute of Information Security and Cryptology, 24(1), pp. 53-58, 2014

Dongsoo Lee and Kwangjo Kim, "Building Small-Scale Testbed for DNP3 Protocol in SCADA system," Journal of The Korea Institute of Information Security and Cryptology, pp. 66-71, 2013

Moonsu Jang, Gunhee Lee, SinKyu Kim, Byung-gil Min, Woo-nyon Kim, and Jungtaek Seo, "Testing Vulnerabilities of DNP3," Journal of Security Engineering, 7(1), pp. 15-28, 2010

Tae-Gyeong Kim, "An Application level security design for DNP3," Journal of the Korea Institute of Electrical Engineers, pp. 362-363, July. 2010

IEEE Power & Energy Society, "IEEE Standard for Electric Power System Communications - Distributed Network Protocol (DNP3)," IEEE, pp. 1-821, 2012

Clarke, Gordon R, Deon Reynders, Edwin Wright, "Practical modern SCADA protocols: DNP3, 60870.5 and related systems," Newnes, 2004

Jeong-Han Yun, Sung-Ho Jeon, Kyoung-Ho Kim, Woo-Nyon Kin, "A Burst-based Whitelist Model for DNP3 Communication in the SCADA System," International Journal of Control and Automation, 21, pp. 56-59, 2013

EDSA-310, Embedded Device Security Assurance - Common requirements for communication robustness testing of IP-based protocol implementations, ISA Security Compliance Institute, 2010

Hoyeol Choi, Daeyeong Kim, Hyungjune Shin, Changgee Hahn, and Junbeom Hur, "A Study on Introducing Security Certification for Control Systems,"

The Achilles Certification Program, achilles-communications-certification

Kim, Jongwan, and Taeshik Shon. "A Study of Security Certification and Accreditation for DNP3 linkage section in EMS/SCADA," Journal of The Korea Institute of Information Security & Cryptology, 25(3), pp. 703-713, 2015 crossref(new window)

EDSA Certification,