Browse > Article
http://dx.doi.org/10.13089/JKIISC.2019.29.5.1063

Security Threats Analysis and Security Requirement for Industrial Wireless Protocols : ISA 100.11a and WirelessHART  

Jeong, Jae-Han (Department of Computer Engineering, Ajou University)
Kwon, Sung-Moon (Department of Computer Engineering, Ajou University)
Shon, Tae-Shik (Department of Computer Engineering, Ajou University)
Publication Information
Journal of the Korea Institute of Information Security & Cryptology / v.29, no.5, 2019 , pp. 1063-1075 More about this Journal
Abstract
In recent years, industrial automation has been established and WISN (Wireless Industrial Sensor Network) has been introduced for efficient system management. By introducing WISN, many engineering costs have been reduced and process processors have been optimized. And communication flow using wireless is increasing. An empirical study on industrial wireless sensor networks is actively conducted, but there are few security studies on them and they are exposed to such threats. If there is a problem with the standard of the wireless communication protocol itself, the device that is certified according to the standard may also be subject to security threats including problems. We analyze security functions and threats of ISA 100.11a and WirelessHART protocol stack based on standards. Procedures for distributing the security key are not provided or it is vulnerable using the Global Data Link key when the device enters the network. This paper presents the problems of the standard itself and presents the security requirements accordingly.
Keywords
ISA 100; WirelessHART; Security; WISN; Threat Analysis;
Citations & Related Records
연도 인용수 순위
  • Reference
1 B&R Industrial Automation, "Smart Factory:Industry 4.0", 2016
2 Dr.Manjari Asawa, Brett Murphy and Sujan Bose, "Synchronized and Business-Ready Microgrid:An Industrial Internet Consortium Results White Papaer", 2017
3 Zillner, "Tobias: White paper: ZigBee Exploited - The good, the bad and the ugly. Technical report", Cognosec, pp. 1-6, August 2015.
4 Lennvall, Tomas, Stefan Svensson, and Fredrik Hekland, "A comparison of WirelessHART and ZigBee for industrial applications." 2008 IEEE International Workshop on Factory Communication Systems. IEEE, pp. 85-88, May 2008.
5 Zhang, Xuan et al., "Research and implementation of security mechanism in ISA100. 11a networks." 2009 9th International Conference on Electronic Measurement & Instruments. IEEE, pp. 4-716, August 2009.
6 Alcaraz, Cristina, and Javier Lopez, "A security analysis for wireless sensor mesh networks in highly critical systems.", IEEE Transactions on Systems, Man, and Cybernetics, Part C (Applications and Reviews) 40.4, pp 419-428, April 2010   DOI
7 ANSI/ISA-100, "ANSI/ISA-100.11a-2011 Wireless systems for industrial automation: Process control and related applications", pp. 1-792, 2011
8 Montenegro, Gabriel et al, "Transmission of IPv6 packets over IEEE 802.15. 4 networks.", No. RFC 4944, September 2007.
9 Wang Gengyun, "Comparison and Evaluation of Industrial Wireless Sensor Network Standards ISA100. 11a and WirelessHART.", Master of Science Thesis, Chalmers University of Technology, 2011
10 HART Communication Foundation, "IEC-62591:Industrial networks - Wireless communication network and communication profiles - $WirelessHART^{TM}$", pp. 1-1043, 2016
11 Bayou and Lyes et al. "Security analysis of WirelessHART communication scheme.", International Symposium on Foundations and Practice of Security. Springer, pp. 223-238, 2016.
12 Nixon, Mark, and T. X. Round Rock, "A Comparison of WirelessHART and ISA100. 11a." Whitepaper, Emerson Process Management (2012), pp. 1-36, July 2012.