Přístupnostní navigace
E-application
Search Search Close
Publication detail
RYŠAVÝ, O. RÁB, J. ŠVÉDA, M.
Original Title
Improving security in SCADA systems through firewall policy analysis
Type
article in a collection out of WoS and Scopus
Language
English
Original Abstract
Many of modern SCADA networks are connected to both the company's enterprise network and the Internet. Because these industrial systems often control critical processes the cyber- security requirements become a priority for their design. This paper deals with network communication security in SCADA environment implemented by firewall devices. We proposed a method for verification of firewall configurations against security policy to detect and reveal potential holes in implemented rule sets. We present a straightforward verification method based on representation of a firewall configuration as a set of logical formulas suitable for automated analysis using SAT tools. We demonstrate how such configuration can be analyzed for security policy violation that can be inferred from security policy specification of an industrial automation system.
Keywords
SCADA, network firewalls, network security, network policy, SAT/SMT, firewall rule based analysis
Authors
RYŠAVÝ, O.; RÁB, J.; ŠVÉDA, M.
RIV year
2013
Released
8. 9. 2013
Publisher
IEEE Computer Society
Location
Krakow
ISBN
978-1-4673-4471-5
Book
Proceedings of the Federated Conference on Computer Science and Information Systems
Pages from
1435
Pages to
1440
Pages count
6
URL
https://www.fit.vut.cz/research/publication/10382/
BibTex
@inproceedings{BUT103524, author="Ondřej {Ryšavý} and Jaroslav {Ráb} and Miroslav {Švéda}", title="Improving security in SCADA systems through firewall policy analysis", booktitle="Proceedings of the Federated Conference on Computer Science and Information Systems", year="2013", pages="1435--1440", publisher="IEEE Computer Society", address="Krakow", isbn="978-1-4673-4471-5", url="https://www.fit.vut.cz/research/publication/10382/" }