THE PERFORMANCE OF OPC-UA SECURITY MODEL AT FIELD DEVICE LEVEL

Olli Post; Jari Seppälä; Hannu Koivisto

doi:10.5220/0002249103370341

THE PERFORMANCE OF OPC-UA SECURITY MODEL AT FIELD DEVICE LEVEL

Olli Post, Jari Seppälä, Hannu Koivisto

2009

Abstract

This paper discusses the performance of OPC UA security model at field device level. Process networks have traditionally been isolated networks but today there is interest to integrate process networks to manufacture and office network. Remote management of field devices via Internet is also gaining interest. This requires implementation of TCP/IP in field devices. However, this causes process networks not being isolated anymore and attention must be paid to the security of process networks. OPC UA is a specification for data transfer in automation systems that can be used to integrate information, horizontally and vertically. Security has also been considered in OPC UA but security measures implemented by OPC UA are too heavy to be uses in field devices. Thus, implementing security profile for authentication without encryption in OPC UA or running OPC UA on IPSec without its own security profile is proposed.

References

Alshamsi, A., Saito, T., 2005. A technical comparison of IPSec and SSL. In: IEEE (Institute of Electrical and Electronics Engineers), The 19th International Conference on Advanced Information Networking and Applications. Tamkang, Taiwan 28-30 March 2005.
Byres, E. & Hoffman D., 2003. The Myths and Facts behind Cyber Security Risks for Industrial Control Systems. In: ISA (International Society of Automation), Process Control Conference 2003.
Dierks, T. & Allen, C, 1999. The TLS Protocol Version 1.0, Request for Comments: 2246.
Douligeris, C. et al., 2007. Network Security Current Status and Future Directions. Hoboken, NJ: WileyIEEE Press.
Elkeelany, O,; Matalgah, M.M., Sheikh, K.P., Thaker, M., Chaudhry, G., Medhi, D. & Qaddour, J., 2002. Performance Analysis of IPSec Protocol: Encryption and Authentication. In: IEEE (Institute of Electrical and Electronics Engineers), International Conference on Communications 2002.New York, United States of America 28 April - 2 May 2002.
European Network of Excellence in Cryptology, 2008. Yearly Report on Algorithms and Keysizes (2007- 2008) [Online] Available at: http://www.ecrypt.eu.org/ecrypt1/documents/D.SPA.2 8-1.1.pdf [Accessed 25 March 2009].
International Society of Automation, 2004. ISATR99.00.02-2004 Integrating Electronic Security into the Manufacturing and Control Systems Environment OPC Foundation, 2009. OPC Unified Architecture Specification, Part: 2 Security Model, Release 1.01 OPC Foundation, 2009. OPC Unified Architecture Specification, Part: 4 Services, Release 1.01 OPC Foundation, 2009. OPC Unified Architecture Specification, Part: 6 Mappings, Release 1.00.
OPC Foundation, 2009. OPC Unified Architecture Specification, Part: 7 Profiles, Release 1.00.
Treytl, A., Sauter, T. & Schwaiger, C., 2004. Security measures for industrial fieldbus systems - state of the art and solutions for IP-based approaches. In: IEEE (Institute of Electrical and Electronics Engineers), IEEE International Workshop on Factory Communication Systems. Vienna, Austria 22-24 September 2004.
Treytl, A., Sauter, T. & Schwaiger, C., 2005. Security measures in automation systems-a practice-oriented approach. In: IEEE (Institute of Electrical and Electronics Engineers), 10th IEEE Conference on Emerging Technologies and Factory Automation. Catania, Italy 19-22 September 2005.

Download

Paper Citation

in Harvard Style

Post O., Seppälä J. and Koivisto H. (2009). THE PERFORMANCE OF OPC-UA SECURITY MODEL AT FIELD DEVICE LEVEL . In Proceedings of the 6th International Conference on Informatics in Control, Automation and Robotics - Volume 1: ICINCO, ISBN 978-989-674-000-9, pages 337-341. DOI: 10.5220/0002249103370341

in Bibtex Style

@conference{icinco09,
author={Olli Post and Jari Seppälä and Hannu Koivisto},
title={THE PERFORMANCE OF OPC-UA SECURITY MODEL AT FIELD DEVICE LEVEL},
booktitle={Proceedings of the 6th International Conference on Informatics in Control, Automation and Robotics - Volume 1: ICINCO,},
year={2009},
pages={337-341},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002249103370341},
isbn={978-989-674-000-9},
}

in EndNote Style

TY - CONF
JO - Proceedings of the 6th International Conference on Informatics in Control, Automation and Robotics - Volume 1: ICINCO,
TI - THE PERFORMANCE OF OPC-UA SECURITY MODEL AT FIELD DEVICE LEVEL
SN - 978-989-674-000-9
AU - Post O.
AU - Seppälä J.
AU - Koivisto H.
PY - 2009
SP - 337
EP - 341
DO - 10.5220/0002249103370341