KIT | KIT-Bibliothek | Impressum | Datenschutz

On the Security of IIoT Deployments: An Investigation of Secure Provisioning Solutions for OPC UA

Kohnhäuser, Florian; Meier, David; Patzer, Florian; Finster, Sören

Abstract (englisch):

A key technology for the communication in the Industrial Internet of Things (IIoT) is the Open Platform Communications Unified Architecture (OPC UA). OPC UA is a standard that enables interoperable, secure, and reliable communication between industrial devices. To defend against cyber attacks, OPC UA has built-in security mechanisms that protect the authenticity, integrity, and confidentiality of data in transit. Before communicating securely, it is essential that OPC UA devices are set up in a secure manner. This process is referred to as secure provisioning. An improper provisioning can lead to weak or insecure OPC UA deployments that enable adversaries to eavesdrop or even manipulate communication between industrial devices. Such insecure deployments can also be maliciously provoked by adversaries who tamper with insecure provisioning solutions. Despite secure provisioning is essential for OPC UA security and usability, there exists no overview and systematic analysis on the patchwork of different solutions in industry and academia. This article presents the first investigation of secure device provisioning solutions for the OPC UA communication protocol. ... mehr

DOI: 10.1109/ACCESS.2021.3096062
Zitationen: 18
Web of Science
Zitationen: 10
Zitationen: 16
Zugehörige Institution(en) am KIT Fraunhofer-Institut für Optronik, Systemtechnik und Bildauswertung (IOSB)
Institut für Informationssicherheit und Verlässlichkeit (KASTEL)
Publikationstyp Zeitschriftenaufsatz
Publikationsdatum 09.07.2021
Sprache Englisch
Identifikator ISSN: 2169-3536
KITopen-ID: 1000140728
HGF-Programm 46.23.04 (POF IV, LK 01) Engineering Security for Production Systems
Erschienen in IEEE access
Verlag Institute of Electrical and Electronics Engineers (IEEE)
Band 9
Seiten 99299–99311
Schlagwörter Communication system security; Device provisioning; Industrial Internet of Things (IIoT); Industry 40; Network security; OPC UA; Secure provisioning
Nachgewiesen in Web of Science
KIT – Die Forschungsuniversität in der Helmholtz-Gemeinschaft
KITopen Landing Page