nach oben

The Journal of Supercomputing

Erschienen in:

13.04.2017

An analytical method for developing appropriate protection profiles of Instrumentation & Control System for nuclear power plants

verfasst von: Manhyun Chung, Woogeun Ahn, Byunggil Min, Jungtaek Seo, Jongsub Moon

Erschienen in: The Journal of Supercomputing | Ausgabe 3/2018

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

A very important target of Instrumentation & Control System used in nuclear power plants is to ensure the safe operation of these plants. Until recently, an analog technology has been used for this purpose; however, this is now being replaced by the digital technology. Such replacement is facilitated by the wide use of real-time distribution of data that are collected by sensor devices of machine-to-machine technology. This, however, provides possibility of exposing Instrumentation & Control System to cyber-attack, as was the case for the Iranian Bushehr nuclear power plant, which the centrifuge was destroyed by the malicious code, Stuxnet. Therefore, security products which are exclusively developed for the prevention of cyber-attack on nuclear power plants are particularly needed in the development and operation of Instrumentation & Control System. However, the currently available security guidelines for such Instrumentation & Control System cover only security policies and protocols, without any specific reference urgent issues of cyber-attack. This paper proposes an implementable Instrumentation & Control System analysis model having focus on cyber security and technology evaluation. The model has been already implemented in reactor protection systems that is operating in Republic of Korea.

Vorheriger Artikel Theoretical peak FLOPS per instruction set: a tutorial

Nächster Artikel An efficient implementation of pairing-based cryptography on MSP430 processor

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Lee C-K (2012) Cyber security technology trends of instrumentation and control system in nuclear power plants. Rev Korean Inst Inf Secur Cryptol 22(5):28–34

Koo I-S, Kim K-W, Hong S-B, Park G-O, Park J-Y (2011) Digital asset analysis methodology against cyber threat to instrumentation and control system in nuclear power plants. J Korean Inst Electron Commun Sci 6(6):839–847

Symantec Security Response (2011) W32.Stuxnet Dossier, Rev. 1.4

CC v3.1. Release 4. http://www.commoncriteriaportal.org/cc/

10 CFR 73.54 Protection of digital computer and communication systems and networks, March 2009

NRC Regulatory Guide 5.71. Cyber security programs for nuclear power facilities. US NRC, Jan 2010

National Institute of Criteria and Technology (2009) Special publication 800-53, Aug 2009

National Institute of Criteria and Technology (2011) Special publication 800-82, June 2011

International Atomic Energy Agency (2011) IAEA nuclear security series no. 17, Computer security at nuclear facilities. IAEA, Vienna

10.

Suo H, Wan J, Zou C, Liu J (2012) Security in the internet of things: a review. In: 2012 International Conference on Computer Science and Electronics Engineering, pp 648–651, 23–25 March 2012

11.

Roman R, Najera P, Lopez J (2011) Securing the internet of things. Comput Mag 44(9):51–58CrossRef

12.

Li N (2010) Research on Diffie–Hellman key exchange protocol. In: Computer Engineering and Technology (ICCET), vol 4, pp 634–637, 16–18 Apr 2010

13.

PROFIBUS. http://www.rtaautomation.com/technologies/profibus/

14.

MODBUS. http://www.rtaautomation.com/technologies/modbus-rtu/

15.

European Network and Information Security Agency (2013) ENISA threat landscape, Jan 2013

16.

ICS-CERT. Cyber threat source descriptions. http://ics-cert.us-cert.gov/content/cyber-threat-source-descriptions

17.

Microsoft. DREAD. http://msdn.microsoft.com/en-us/library/ff648644.aspx

18.

OCTAVE. http://www.cert.org/octave/

19.

OWASP. Threat risk modeling. https://www.owasp.org/index.php/Threat_Risk_Modeling

20.

International Organization for Standardization. ISO/IEC 27001:2005 (information technology—security techniques—information security management systems—requirements)

21.

Lee D-Y, Choi J-G, Lyou J (2006) A safety assessment methodology for a digital reactor protection system. Int J Control Autom Syst 4(1):105–112

22.

Song J-G, Lee J-W, Lee C-K, Kwon K-C, Lee D-Y (2012) A cyber security risk assessment for the design of I&C systems in nuclear power plants. Nucl Eng Technol 44(8):919–928

Titel: An analytical method for developing appropriate protection profiles of Instrumentation & Control System for nuclear power plants
verfasst von: Manhyun Chung
Woogeun Ahn
Byunggil Min
Jungtaek Seo
Jongsub Moon
Publikationsdatum: 13.04.2017
Verlag: Springer US
Erschienen in: The Journal of Supercomputing / Ausgabe 3/2018
Print ISSN: 0920-8542
Elektronische ISSN: 1573-0484
DOI: https://doi.org/10.1007/s11227-017-2034-6

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft"

Springer Professional "Technik"

Springer Professional "Wirtschaft+Technik"

Weitere Artikel der Ausgabe 3/2018

Analysis of performance measures in cloud-based ubiquitous SaaS CRM project systems

E2FS: an elastic storage system for cloud computing

Efficient design and hardware implementation of the OpenFlow v1.3 Switch on the Virtex-6 FPGA ML605

A method for enhancing end-to-end transfer efficiency via performance tuning factors on dedicated circuit networks with a public cloud platform

An algorithm to find relationships between web vulnerabilities

Fusion algorithms and high-performance applications for vehicular cloud computing

Premium Partner