Volltext-Downloads (blau) und Frontdoor-Views (grau)

A Mechanism for Seamless Cryptographic Rekeying in Real-Time Communication Systems

  • Cryptographic protection of messages requires frequent updates of the symmetric cipher key used for encryption and decryption, respectively. Protocols of legacy IT security, like TLS, SSH, or MACsec implement rekeying under the assumption that, first, application data exchange is allowed to stall occasionally and, second, dedicated control messages to orchestrate the process can be exchanged. InCryptographic protection of messages requires frequent updates of the symmetric cipher key used for encryption and decryption, respectively. Protocols of legacy IT security, like TLS, SSH, or MACsec implement rekeying under the assumption that, first, application data exchange is allowed to stall occasionally and, second, dedicated control messages to orchestrate the process can be exchanged. In real-time automation applications, the first is generally prohibitive, while the second may induce problematic traffic patterns on the network. We present a novel seamless rekeying approach, which can be embedded into cyclic application data exchanges. Although, being agnostic to the underlying real-time communication system, we developed a demonstrator emulating the widespread industrial Ethernet system PROFINET IO and successfully use this rekeying mechanism.show moreshow less

Export metadata

Additional Services

Share in Twitter Search Google Scholar

Statistics

frontdoor_oas
Metadaten
Author:Heiko Bühler, Andreas WalzORCiD, Axel SikoraORCiDGND
Publisher:IEEE
Year of Publication:2021
Page Number:6
ISBN:978-1-66542-478-3 online
ISBN:978-1-66542-479-0 Print
Language:English
Tag:PROFINET IO; industrial Ethernet; industrial communication; rekeying; security
DDC classes:600 Technik, Medizin, angewandte Wissenschaften
Parent Title (English):17th IEEE Conference on Factory Communication Systems (WFCS), 9-11 June 2021 Linz, Austria
First Page:53
Last Page:58
Document Type:Conference Proceeding
Institutes:Bibliografie
Open Access:Zugriffsbeschränkt
Release Date:2022/01/14
Licence (German):License LogoUrheberrechtlich geschützt
DOI:https://doi.org/10.1109/WFCS46889.2021.9483613