@inproceedings{BuehlerWalzSikora2021,
  author    = {Heiko B{\"u}hler and Andreas Walz and Axel Sikora},
  title     = {A Mechanism for Seamless Cryptographic Rekeying in Real-Time Communication Systems},
  series = {2021 17th IEEE International Conference on Factory Communication Systems (WFCS)},
  publisher = {IEEE},
  isbn      = {978-1-66542-478-3 online},
  doi       = {10.1109/WFCS46889.2021.9483613},
  pages     = {53 -- 58},
  year      = {2021},
  abstract  = {Cryptographic protection of messages requires frequent updates of the symmetric cipher key used for encryption and decryption, respectively. Protocols of legacy IT security, like TLS, SSH, or MACsec implement rekeying under the assumption that, first, application data exchange is allowed to stall occasionally and, second, dedicated control messages to orchestrate the process can be exchanged. In real-time automation applications, the first is generally prohibitive, while the second may induce problematic traffic patterns on the network. We present a novel seamless rekeying approach, which can be embedded into cyclic application data exchanges. Although, being agnostic to the underlying real-time communication system, we developed a demonstrator emulating the widespread industrial Ethernet system PROFINET IO and successfully use this rekeying mechanism.},
  language  = {en}
}