Secure Links: Secure-by-Design Communications in IEC 61499 Industrial   Control Applications

Awais Tanveer; Roopak Sinha; Matthew M. Y. Kuo

arXiv:2107.11537·cs.CR·July 27, 2021

Secure Links: Secure-by-Design Communications in IEC 61499 Industrial Control Applications

Awais Tanveer, Roopak Sinha, Matthew M. Y. Kuo

PDF

TL;DR

This paper introduces a secure-by-design development method for industrial control systems that integrates security mechanisms into applications via secure links, enhancing security, reducing complexity, and improving maintainability.

Contribution

It extends the IEC 61499 standard with secure links, enabling automatic compilation into compliant software with integrated security features.

Findings

01

Secure links reduce design complexity

02

Secure links improve application maintainability

03

Secure links enhance security compliance

Abstract

Increasing automation and external connectivity in industrial control systems (ICS) demand a greater emphasis on software-level communication security. In this article, we propose a secure-by-design development method for building ICS applications, where requirements from security standards like ISA/IEC 62443 are fulfilled by design-time abstractions called secure links. Proposed as an extension to the IEC 61499 development standard, secure links incorporate both light-weight and traditional security mechanisms into applications with negligible effort. Applications containing secure links can be automatically compiled into fully IEC 61499-compliant software. Experimental results show secure links significantly reduce design and code complexity and improve application maintainability and requirements traceability.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.