Hardware-Based Isolation Technique to Guarantee Availability of Security Controls in a Gateway for Industrial Networks

Hojin Choi, Hyuk Kwon, Junghee Lee, Yonghee Lee, Kijoong Kim

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Citation (Scopus)

Abstract

Protocols such as DNP and Modbus are widely used in many industrial networks, and security controls are often employed in a protocol gateway placed in-between public and trusted networks. In this paper, an architecture is proposed to protect the security controls running in a hardware-isolated space by providing an isolation environment to the protocol stack and security controls via TrustZone, even if the protocol stack is compromised. In addition, we evaluate whether our proposed architecture can protect against attack scenarios such as manipulation commands, information leakage, and fuzzing attacks, and we compare the performance of the gateway with and without TrustZone.

Original languageEnglish
Title of host publication2023 International Conference on Electronics, Information, and Communication, ICEIC 2023
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9798350320213
DOIs
Publication statusPublished - 2023
Event2023 International Conference on Electronics, Information, and Communication, ICEIC 2023 - Singapore, Singapore
Duration: 2023 Feb 52023 Feb 8

Publication series

Name2023 International Conference on Electronics, Information, and Communication, ICEIC 2023

Conference

Conference2023 International Conference on Electronics, Information, and Communication, ICEIC 2023
Country/TerritorySingapore
CitySingapore
Period23/2/523/2/8

Bibliographical note

Publisher Copyright:
© 2023 IEEE.

Keywords

  • Availability
  • Industrial Network
  • Smart Grid
  • TrustZone

ASJC Scopus subject areas

  • Artificial Intelligence
  • Computer Networks and Communications
  • Computer Science Applications
  • Information Systems
  • Electrical and Electronic Engineering
  • Control and Optimization

Fingerprint

Dive into the research topics of 'Hardware-Based Isolation Technique to Guarantee Availability of Security Controls in a Gateway for Industrial Networks'. Together they form a unique fingerprint.

Cite this