Flexible multicast authentication for time-triggered embedded control network applications

Security for wired embedded networks is becoming a greater concern as connectivity to the outside world increases. Protocols used in these networks omit support for authenticating messages to prevent masquerade and replay attacks. The unique constraints of embedded control systems make incorporating...

Full description

Saved in:
Bibliographic Details
Published in2009 IEEE/IFIP International Conference on Dependable Systems & Networks pp. 165 - 174
Main Authors Szilagyi, C., Koopman, P.
Format Conference Proceeding
LanguageEnglish
Published IEEE 01.06.2009
Subjects
Communication system traffic control
Computer crime
Control systems
Costs
Cryptography
Data security
Embedded system
Message authentication
Protocols
Time division multiple access
Online AccessGet full text
ISBN1424444225
9781424444229
ISSN1530-0889
DOI10.1109/DSN.2009.5270342

Cover

More Information
Summary:Security for wired embedded networks is becoming a greater concern as connectivity to the outside world increases. Protocols used in these networks omit support for authenticating messages to prevent masquerade and replay attacks. The unique constraints of embedded control systems make incorporating existing multicast authentication schemes impractical. Our approach provides multicast authentication for time-triggered applications by validating truncated message authentication codes (MACs) across multiple packets. We extend this approach to tolerate occasional invalid MACs, analyze our approach through simulated attacks, and give an upper bound on the probability of successful attack. This approach allows a tradeoff among per-packet authentication cost, application level latency, tolerance to invalid MACs, and probability of induced failure, while satisfying typical embedded system constraints.
ISBN:1424444225
9781424444229
ISSN:1530-0889
DOI:10.1109/DSN.2009.5270342