Key management is critical to secure operation. Distributed control systems, such as Supervisory Control and Data Acquisition (SCADA) systems, have unique operational requirements that make conventional key management solutions less effective and burdensome. In this paper a novel Kerberos based framework for automated, disruption-tolerant key management for control system environments is presented. Experimental tests and their results are presented to quantify expected performance overhead of this approach. In addition, Zeek sensor analytics are presented to monitor the health and security of the key management framework operation.
Revised: January 29, 2020 |
Published: December 2, 2019
Citation
Edgar T.W., A. Ashok, G.E. Seppala, E.Y. Choi, K.M. Arthur-Durett, M. Engels, and R. Gentz, et al. 2019.An Automated, Disruption-Tolerant Device Authentication and Key Management Framework for Critical Systems.Journal of Information Warfare 18, no. 4 (Special Edition):85-124.PNNL-SA-149901.