TY  - CHAP
U1  - Konferenzveröffentlichung
A1  - Bühler, Heiko
A1  - Walz, Andreas
A1  - Sikora, Axel
T1  - A Mechanism for Seamless Cryptographic Rekeying in Real-Time Communication Systems
T2  - 2021 17th IEEE International Conference on Factory Communication Systems (WFCS)
N2  - Cryptographic protection of messages requires frequent updates of the symmetric cipher key used for encryption and decryption, respectively. Protocols of legacy IT security, like TLS, SSH, or MACsec implement rekeying under the assumption that, first, application data exchange is allowed to stall occasionally and, second, dedicated control messages to orchestrate the process can be exchanged. In real-time automation applications, the first is generally prohibitive, while the second may induce problematic traffic patterns on the network. We present a novel seamless rekeying approach, which can be embedded into cyclic application data exchanges. Although, being agnostic to the underlying real-time communication system, we developed a demonstrator emulating the widespread industrial Ethernet system PROFINET IO and successfully use this rekeying mechanism.
KW  - industrial communication
KW  - security
KW  - rekeying
KW  - industrial Ethernet
KW  - PROFINET IO
Y1  - 2021
SN  - 978-1-66542-478-3 online
SB  - 978-1-66542-478-3 online
SN  - 978-1-66542-479-0 Print
SB  - 978-1-66542-479-0 Print
U6  - https://doi.org/10.1109/WFCS46889.2021.9483613
DO  - https://doi.org/10.1109/WFCS46889.2021.9483613
SP  - 53
EP  - 58
S1  - 6
PB  - IEEE
ER  -