Security is an essential requirement of Industrial Control System (ICS) environments and its underlying communication infrastructure. Especially the lowest communication level within Supervisory Control and Data Acquisition (SCADA) systems - the field level - commonly lacks security measures. Since emerging wireless technologies within field level expose the lowest communication infrastructure towards potential attackers, additional security measures above the prevalent concept of air-gapped communication must be considered. Therefore, this work analyzes security aspects for the wireless communication protocol IO-LinkWireless (IOLW), which is commonly used for sensor and actuator field level communication. A possible architecture for an IOLW safety layer has already been presented recently [1]. In this paper, the overall attack surface of IOLW within its typical environment is analyzed and attack preconditions are investigated to assess the effectiveness of different security measures. Additionally, enhanced security measures are evaluated for the communication systems and the results are summarized. Also, interference of security measures and functional safety principles within the communication are investigated, which do not necessarily complement one another but may also have contradictory requirements. This work is intended to discuss and propose enhancements of the IOLW standard with additional security considerations in future implementations.
翻译:工业控制系统环境及其基本通信基础设施的基本安全要求是工业控制系统环境及其基本通信基础设施的基本要求,特别是监督控制和数据采集系统(外地一级)中最低的通信水平,通常缺乏安全措施;由于外地一级新出现的无线技术使潜在的袭击者暴露在最低通信基础设施之上,因此必须考虑在空控通信普遍概念之外采取更多的安全措施;因此,这项工作分析了无线通信协议IO-LinkWireless(IOLW)的安全方面,它通常用于感应器和操作器实地通信;最近已经提出了IOLW安全层的可能架构[1];在本文件中,对IOLW在其典型环境中的总体攻击面进行了分析,并对攻击的先决条件进行了调查,以评估不同安全措施的有效性;此外,还评估了通信系统的强化安全措施,并总结了结果;此外,对通信中安全措施和功能安全原则的干扰也进行了调查,这不一定相互补充,但也可能有相互矛盾的要求;这项工作旨在讨论并提出提高IOLW标准并在今后实施时附加安全考虑。