Title: Critical infrastructure protection security layer for DNP3 devices

Authors: Farhad Nabhani; Todd Mander; Simon Hodgson; Paul Shelton

Addresses: School of Science and Technology, University of Teesside, Middlesbrough, Tees Valley, TS1 3BA, UK. ' Department of Electrical and Computer Engineering, Ryerson University, 350 Victoria Street, Toronto, Ontario M5B 2K3, Canada. ' School of Science and Technology, University of Teesside, Middlesbrough, Tees Valley, TS1 3BA, UK. ' School of Science and Technology, University of Teesside, Middlesbrough, Tees Valley, TS1 3BA, UK

Abstract: A security layer for the popular utility Distributed Network Protocol (DNP) is proposed, limiting the effectiveness of cyber attacks on critical infrastructures with essential confidentiality. Ongoing automation of critical infrastructures, including power, gas and water, increases the responsiveness of control operations and the number of utility devices. This ongoing automation, therefore, increases cyber attacker capabilities to disrupt utility operations and, therefore, create serious security challenges. These security challenges result in manufacturer challenges that are not readily met by current commercial security implementations. The security layer presented in this paper meets the security challenges and manufacturer challenges and handles utility characteristics. [Received 27 February 2010; Revised 10 August 2010; Accepted 18 December 2010]

Keywords: DNP; distributed network protocol; DNP3; security layer; critical infrastructures; infrastructure security; QoS; quality of service; cyber attacks; utilities; manufacturing.

DOI: 10.1504/IJMR.2012.045245

International Journal of Manufacturing Research, 2012 Vol.7 No.1, pp.72 - 85

Published online: 22 Nov 2014 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article