On lightweight security enforcement in cyber-physical systems

Yanjiang Yang; Jiqiang Lu; Kim-Kwang Raymond Choo; Joseph K. Liu

doi:10.1007/978-3-319-29078-2_6

On lightweight security enforcement in cyber-physical systems

Yanjiang Yang, Jiqiang Lu, Kim-Kwang Raymond Choo, Joseph K. Liu

Research output: Chapter in Book/Report/Conference proceeding › Chapter (Book) › Research › peer-review

17 Citations (Scopus)

Abstract

Cyber-physical systems (CPS) are a key component in industrial control systems (ICS), which are widely used in the critical infrastructure sectors. The increasing reliance on CPS, however, affords exploitative opportunities for malicious actors targeting our critical infrastructure. The real-time requirement of control systems, coupled with the deployment of resource-constrained field devices, complicate efforts to secure our critical infrastructure. A key technical limitation for security solutions is that they should be lightweight. While lightweight cryptography is useful to some extent, enforcement of asymmetric key cryptographic primitives in control systems is known to be problematic. In this paper, we suggest investigating the enforcement of lightweight security solutions in ICS from a different perspective. Rather than focusing on designing lightweight (individual) cryptographic primitives, we propose taking a whole-of-system approach to (1) achieve system/collective lightweightness, (2) outsource expensive computations from resource-constrained field devices to neighboring devices and equipments that have more computational capacity, and (3) selectively protect critical data (partial/selective protection of Data of Interest).

Original language	English
Title of host publication	Lightweight Cryptography for Security and Privacy
Subtitle of host publication	4th International Workshop, LightSec 2015, Bochum, Germany, September 10–11, 2015, Revised Selected Papers
Editors	Tim Güneysu, Amir Moradi, Gregor Leander
Place of Publication	Switzerland
Publisher	Springer
Pages	97-112
Number of pages	16
ISBN (Electronic)	9783319290782
ISBN (Print)	9783319290775
DOIs	https://doi.org/10.1007/978-3-319-29078-2_6
Publication status	Published - 2016

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer
Volume	9542
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Access to Document

10.1007/978-3-319-29078-2_6

Cite this

Yang, Y., Lu, J., Choo, K.-K. R., & Liu, J. K. (2016). On lightweight security enforcement in cyber-physical systems. In T. Güneysu, A. Moradi, & G. Leander (Eds.), Lightweight Cryptography for Security and Privacy: 4th International Workshop, LightSec 2015, Bochum, Germany, September 10–11, 2015, Revised Selected Papers (pp. 97-112). (Lecture Notes in Computer Science ; Vol. 9542). Springer. https://doi.org/10.1007/978-3-319-29078-2_6

Yang, Yanjiang ; Lu, Jiqiang ; Choo, Kim-Kwang Raymond et al. / On lightweight security enforcement in cyber-physical systems. Lightweight Cryptography for Security and Privacy: 4th International Workshop, LightSec 2015, Bochum, Germany, September 10–11, 2015, Revised Selected Papers. editor / Tim Güneysu ; Amir Moradi ; Gregor Leander. Switzerland : Springer, 2016. pp. 97-112 (Lecture Notes in Computer Science ).

@inbook{bd650150cdb04f02b68d3d48df0c8d03,

title = "On lightweight security enforcement in cyber-physical systems",

abstract = "Cyber-physical systems (CPS) are a key component in industrial control systems (ICS), which are widely used in the critical infrastructure sectors. The increasing reliance on CPS, however, affords exploitative opportunities for malicious actors targeting our critical infrastructure. The real-time requirement of control systems, coupled with the deployment of resource-constrained field devices, complicate efforts to secure our critical infrastructure. A key technical limitation for security solutions is that they should be lightweight. While lightweight cryptography is useful to some extent, enforcement of asymmetric key cryptographic primitives in control systems is known to be problematic. In this paper, we suggest investigating the enforcement of lightweight security solutions in ICS from a different perspective. Rather than focusing on designing lightweight (individual) cryptographic primitives, we propose taking a whole-of-system approach to (1) achieve system/collective lightweightness, (2) outsource expensive computations from resource-constrained field devices to neighboring devices and equipments that have more computational capacity, and (3) selectively protect critical data (partial/selective protection of Data of Interest).",

author = "Yanjiang Yang and Jiqiang Lu and Choo, {Kim-Kwang Raymond} and Liu, {Joseph K.}",

year = "2016",

doi = "10.1007/978-3-319-29078-2_6",

language = "English",

isbn = "9783319290775",

series = "Lecture Notes in Computer Science ",

publisher = "Springer",

pages = "97--112",

editor = "G{\"u}neysu, {Tim } and Moradi, {Amir } and Leander, {Gregor }",

booktitle = "Lightweight Cryptography for Security and Privacy",

address = "Switzerland",

}

Yang, Y, Lu, J, Choo, K-KR & Liu, JK 2016, On lightweight security enforcement in cyber-physical systems. in T Güneysu, A Moradi & G Leander (eds), Lightweight Cryptography for Security and Privacy: 4th International Workshop, LightSec 2015, Bochum, Germany, September 10–11, 2015, Revised Selected Papers. Lecture Notes in Computer Science , vol. 9542, Springer, Switzerland, pp. 97-112. https://doi.org/10.1007/978-3-319-29078-2_6

On lightweight security enforcement in cyber-physical systems. / Yang, Yanjiang; Lu, Jiqiang; Choo, Kim-Kwang Raymond et al.
Lightweight Cryptography for Security and Privacy: 4th International Workshop, LightSec 2015, Bochum, Germany, September 10–11, 2015, Revised Selected Papers. ed. / Tim Güneysu; Amir Moradi; Gregor Leander. Switzerland: Springer, 2016. p. 97-112 (Lecture Notes in Computer Science ; Vol. 9542).

Research output: Chapter in Book/Report/Conference proceeding › Chapter (Book) › Research › peer-review

TY - CHAP

T1 - On lightweight security enforcement in cyber-physical systems

AU - Yang, Yanjiang

AU - Lu, Jiqiang

AU - Choo, Kim-Kwang Raymond

AU - Liu, Joseph K.

PY - 2016

Y1 - 2016

N2 - Cyber-physical systems (CPS) are a key component in industrial control systems (ICS), which are widely used in the critical infrastructure sectors. The increasing reliance on CPS, however, affords exploitative opportunities for malicious actors targeting our critical infrastructure. The real-time requirement of control systems, coupled with the deployment of resource-constrained field devices, complicate efforts to secure our critical infrastructure. A key technical limitation for security solutions is that they should be lightweight. While lightweight cryptography is useful to some extent, enforcement of asymmetric key cryptographic primitives in control systems is known to be problematic. In this paper, we suggest investigating the enforcement of lightweight security solutions in ICS from a different perspective. Rather than focusing on designing lightweight (individual) cryptographic primitives, we propose taking a whole-of-system approach to (1) achieve system/collective lightweightness, (2) outsource expensive computations from resource-constrained field devices to neighboring devices and equipments that have more computational capacity, and (3) selectively protect critical data (partial/selective protection of Data of Interest).

AB - Cyber-physical systems (CPS) are a key component in industrial control systems (ICS), which are widely used in the critical infrastructure sectors. The increasing reliance on CPS, however, affords exploitative opportunities for malicious actors targeting our critical infrastructure. The real-time requirement of control systems, coupled with the deployment of resource-constrained field devices, complicate efforts to secure our critical infrastructure. A key technical limitation for security solutions is that they should be lightweight. While lightweight cryptography is useful to some extent, enforcement of asymmetric key cryptographic primitives in control systems is known to be problematic. In this paper, we suggest investigating the enforcement of lightweight security solutions in ICS from a different perspective. Rather than focusing on designing lightweight (individual) cryptographic primitives, we propose taking a whole-of-system approach to (1) achieve system/collective lightweightness, (2) outsource expensive computations from resource-constrained field devices to neighboring devices and equipments that have more computational capacity, and (3) selectively protect critical data (partial/selective protection of Data of Interest).

UR - http://www.scopus.com/inward/record.url?scp=84958035718&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-29078-2_6

DO - 10.1007/978-3-319-29078-2_6

M3 - Chapter (Book)

AN - SCOPUS:84958035718

SN - 9783319290775

T3 - Lecture Notes in Computer Science

SP - 97

EP - 112

BT - Lightweight Cryptography for Security and Privacy

A2 - Güneysu, Tim

A2 - Moradi, Amir

A2 - Leander, Gregor

PB - Springer

CY - Switzerland

ER -

Yang Y, Lu J, Choo KKR, Liu JK. On lightweight security enforcement in cyber-physical systems. In Güneysu T, Moradi A, Leander G, editors, Lightweight Cryptography for Security and Privacy: 4th International Workshop, LightSec 2015, Bochum, Germany, September 10–11, 2015, Revised Selected Papers. Switzerland: Springer. 2016. p. 97-112. (Lecture Notes in Computer Science ). doi: 10.1007/978-3-319-29078-2_6

On lightweight security enforcement in cyber-physical systems

Abstract

Publication series

Access to Document

Other files and links

Cite this