A Mechanism for Seamless Cryptographic Rekeying in Real-Time Communication Systems
- Cryptographic protection of messages requires frequent updates of the symmetric cipher key used for encryption and decryption, respectively. Protocols of legacy IT security, like TLS, SSH, or MACsec implement rekeying under the assumption that, first, application data exchange is allowed to stall occasionally and, second, dedicated control messages to orchestrate the process can be exchanged. InCryptographic protection of messages requires frequent updates of the symmetric cipher key used for encryption and decryption, respectively. Protocols of legacy IT security, like TLS, SSH, or MACsec implement rekeying under the assumption that, first, application data exchange is allowed to stall occasionally and, second, dedicated control messages to orchestrate the process can be exchanged. In real-time automation applications, the first is generally prohibitive, while the second may induce problematic traffic patterns on the network. We present a novel seamless rekeying approach, which can be embedded into cyclic application data exchanges. Although, being agnostic to the underlying real-time communication system, we developed a demonstrator emulating the widespread industrial Ethernet system PROFINET IO and successfully use this rekeying mechanism.…
Document Type: | Conference Proceeding |
---|---|
Conference Type: | Konferenzartikel |
Zitierlink: | https://opus.hs-offenburg.de/5362 | Bibliografische Angaben |
Title (English): | A Mechanism for Seamless Cryptographic Rekeying in Real-Time Communication Systems |
Conference: | 17th IEEE International Workshop on Factory Communication Systems 2021 (WFCS 2021) : Communication in Automation, 9-11 June 2021, Linz, Austria |
Author: | Heiko Bühler, Andreas WalzORCiD, Axel SikoraStaff MemberORCiDGND |
Year of Publication: | 2021 |
Publisher: | IEEE |
Page Number: | 6 |
First Page: | 53 |
Last Page: | 58 |
Parent Title (English): | 2021 17th IEEE International Conference on Factory Communication Systems (WFCS) |
ISBN: | 978-1-66542-478-3 online |
ISBN: | 978-1-66542-479-0 Print |
DOI: | https://doi.org/10.1109/WFCS46889.2021.9483613 |
Language: | English | Inhaltliche Informationen |
Institutes: | Forschung / ivESK - Institut für verlässliche Embedded Systems und Kommunikationselektronik |
Fakultät Elektrotechnik, Medizintechnik und Informatik (EMI) (ab 04/2019) | |
Institutes: | Bibliografie |
DDC classes: | 600 Technik, Medizin, angewandte Wissenschaften |
Tag: | PROFINET IO; industrial Ethernet; industrial communication; rekeying; security | Formale Angaben |
Open Access: | Closed Access |
Licence (German): | Urheberrechtlich geschützt |