Title | A Lightweight Compound Defense Framework Against Injection Attacks in IIoT |
Publication Type | Conference Paper |
Year of Publication | 2018 |
Authors | Chi, Po-Wen, Wang, Ming-Hung |
Conference Name | 2018 IEEE Conference on Dependable and Secure Computing (DSC) |
Keywords | authentication, command injection attacks, commands, composability, compound approach, Compounds, computer network security, cryptography, Data Transmission, field agent, field data, IIoT network protocols, IIoT Security, Industrial Internet of Things, Industries, Injection attack, injection attack event, Internet of Things, lightweight authentication, lightweight compound defense framework, message authentication, Metrics, private networks, production engineering computing, Protocols, pubcrawl, Resiliency, Sensors, Smart industry, software defined networking, Switches, telecommunication security |
Abstract | Industrial Internet of Things (IIoT) is a trend of the smart industry. By collecting field data from sensors, the industry can make decisions dynamically in time for better performance. In most cases, IIoT is built on private networks and cannot be reached from the Internet. Currently, data transmission in most of IIoT network protocols is in plaintext without encryption protection. Once an attacker breaks into the field, the attacker can intercept data and injects malicious commands to field agents. In this paper, we propose a compound approach for defending command injection attacks in IIOT. First, we leverage the power of Software Defined Networking (SDN) to detect the injection attack. When the injection attack event is detected, the system owner is alarmed that someone tries to pretend a controller or a field agent to deceive the other entity. Second, we develop a lightweight authentication scheme to ensure the identity of the command sender. Command receiver can verify commands first before processing commands. |
DOI | 10.1109/DESEC.2018.8625150 |
Citation Key | chi_lightweight_2018 |