Browse > Article
http://dx.doi.org/10.13089/JKIISC.2019.29.3.579

Access Control Mechanism for Industrial Control System Based Smart Contract  

Cho, Minjeong (Department of Computer Science and Engineering, Seoul National University of Science and Technology)
Lee, Changhoon (Department of Computer Science and Engineering, Seoul National University of Science and Technology)
Publication Information
Journal of the Korea Institute of Information Security & Cryptology / v.29, no.3, 2019 , pp. 579-588 More about this Journal
Abstract
Industrial control systems consist of various physical devices such as sensors, actuators. Security Infringement such as waterworks facilities Remote Access Infringement and power control systems Infection have been occured by vulnerability of Access Control. Access control to physical devices must be fulfilled with a reliable system. However, Having a single access control system inside company can not guarantee reliability. In addition, when single access control is struggled with error or infringement, access control system is totally unavailable. so system requires a additional access control method or system. In this paper, we proposed access control mechanism for reliable and stable operation using blockchain and smart contract. Proposed Mechanism using trust score to consider resources to be consumed depending on each industrial environment in consideration of the industrial control system where availability is more important than integrity and confidentiality. Unlike other blockchain-based access control system, proposed system is designed for the currently operating industrial control system.
Keywords
Blockchain; Smart Contract; Industrial Control System(ICS); Access Control; Availability;
Citations & Related Records
Times Cited By KSCI : 1  (Citation Analysis)
연도 인용수 순위
1 Jae Hoon Nah and Jung Chan Nah, "Standardization Trend of Industrial Control System Security", Review of KIISC, 26(4), pp.28-35, Aug., 2016
2 Jun Hyoung Oh, Young in You and Kyungho Lee, "Infrastructure Incident and Control System Standard Trend", Review of KIISC, 27(2), pp.5-11, Apr., 2017
3 IT World, "infrasturcture Hacking Damage Security Incident", 'The most important "facts", numerical value and statistics related to security in 2018', http://www.itworld.co.kr/news/111098, 2019.02.11.
4 Kaspersky Lab, "The State of Industiral Cybersecurity 2017", 2017
5 ZDNet Korea, "industirl control system security", http://www.zdnet.co.kr/view/?no=20171124160854, 2019.02.08
6 "Security Requirements for Industrial Control System - Part 1: Concepts and Reference Model", TTAK.KO-12.0307-Part1, June, 2017
7 NCCIC, "ICS-CERT Monitor November-December 2017 US-CERT ", 2017
8 Fireeye, "2016 ICS Vulnerability Trend Report". 2016
9 Stouffer, K., Falco, J., and Scarfone, K. "Guide to industrial control systems (ICS) security". NIST special publication, 800(82), 2011.
10 Nakamoto, S. "Bitcoin: A peer-to-peer electronic cash system.", Oct. 2008.
11 Wood, G. "Ethereum: A secure decentralised generalised transaction ledger." Ethereum project yellow paper, 2014.
12 Stallings, William. Cryptography and network security: principles and practice. Practice (6th Edition), Pearson, 2008.
13 Sungbum Lee, Boohyung Lee, Sein Myung and Jong-Hyouk Lee, "Security Analysis of Blockchain Systems: Case Study of Cryptocurrencies." Journal of The Korea Institute of Information Security & Cryptology, 28(1), pp5-14, Feb, 2018.   DOI
14 Daehwa Rayer Lee and Hyoungshick Kim, "Block Chain Research Trend Analysis: focusing on the consensus algorithm." Review of KIISC, 28(3), pp5-10, 2018
15 Ouaddah, A., Abou Elkalam, A., & A it Ouahman, A. , "FairAccess: a new Blockchain-based access control framework for the Internet of Things.", Security and Communication Networks, 9(18), pp5943-5964 , Feb., 2017.   DOI
16 Zheng, Z., Xie, S., Dai, H. N., Chen, X., and Wang, H. "Blockchain challenges and opportunities: A survey." International Journal of Web and Grid Services, 14(4), pp352-375, 2018.   DOI
17 Szabo, Nick. "Smart contracts: building blocks for digital markets." EXTROPY: The Journal of Transhumanist Thought, 1996.
18 Chanyoung Lee, Manhyun Chung and Byung-gil Min, "Industrial control system control command integrity protection scheme using OTP(One-Time Password)", Review of KIISC, 27(2), pp.34-40, Apr., 2017.
19 Zhang, Y., Kasahara, S., Shen, Y., Jiang, X., and Wan, J. "Smart Contract-Based Access Control for the Internet of Things.",6(2), pp1594-1605, Apri., 2019   DOI
20 Pinno, O. J. A., Gregio, A. R. A., & De Bona, L. C. "ControlChain: Blockchain as a Central Enabler for Access Control Authorizations in the IoT." In: GLOBECOM 2017-2017 IEEE Global Communications Conference. IEEE, pp. 1-6, 2017.
21 "Security Requirements for Industrial Control System - Part 3: Control Layer", TTAK.KO-12.0307-Part3, Jun., 2017