MDH

|

IDT

|

ES

|

IPR

|

Admin

You are required to read and agree to the below before accessing a full-text version of an article in the IDE article repository.

The full-text document you are about to access is subject to national and international copyright laws. In most cases (but not necessarily all) the consequence is that personal use is allowed given that the copyright owner is duly acknowledged and respected. All other use (typically) require an explicit permission (often in writing) by the copyright owner.

For the reports in this repository we specifically note that

the use of articles under IEEE copyright is governed by the IEEE copyright policy (available at http://www.ieee.org/web/publications/rights/copyrightpolicy.html)

the use of articles under ACM copyright is governed by the ACM copyright policy (available at http://www.acm.org/pubs/copyright_policy/)

technical reports and other articles issued by M‰lardalen University is free for personal use. For other use, the explicit consent of the authors is required

in other cases, please contact the copyright owner for detailed information

By accepting I agree to acknowledge and respect the rights of the copyright owner of the document I am about to access.

If you are in doubt, feel free to contact webmaster@ide.mdh.se

Evaluation of an OPC UA-based Access Control Enforcement Architecture

Authors:

Björn Leander, Aida Causevic, Tomas Lindström , Hans Hansson

Publication Type:

Conference/Workshop Paper

Venue:

28th European Symposium on Research in Computer Security

Abstract

Dynamic access control in industrial systems is becoming a concern of greater importance as a consequence of the increasingly flexible manufacturing systems developed within the Industry 4.0 paradigm. With the shift from control system security design based on implicit trust toward a zero-trust approach, fine grained access control is a fundamental requirement. In this article, we look at an access control enforcement architecture and authorization protocol outlined as part of the Open Process Communication Unified Automation (OPC UA) protocol that can allow sufficiently dynamic and fine-grained access control. We present an implementation, and evaluates a set of important quality metrics related to this implementation, as guidelines and considerations for introduction of this protocol in industrial settings. Two approaches for optimization of the authorization protocol are presented and evaluated, which more than halves the average connection establishment time compared to the initial approach.

Bibtex

@inproceedings{Leander6746, author = {Bj{\"o}rn Leander and Aida Causevic and Tomas Lindstr{\"o}m and Hans Hansson}, title = {Evaluation of an OPC UA-based Access Control Enforcement Architecture}, month = {September}, year = {2024}, booktitle = {28th European Symposium on Research in Computer Security}, url = {http://www.ipr.mdu.se/publications/6746-} }

We are using cookies to give you the best experience on our site. Cookies are files stored in your browser and are used by most websites to help personalise your web experience.

By continuing to use our website without changing the settings, you are agreeing to our use of cookies.

close

Mälardalen University

|

Box 325, 631 05 Eskilstuna

|

Box 883, 721 23 Västerås

|

+46-21-10 13 00, +46-16-15 36 00