Closed Restricted Network PKI Certificate Authority for Facility-related Control Systems

Abstract

Public Key Infrastructure (PKI) security is not possible in air-gapped networks isolated from PKI servers, and as air-gapped systems and networks increase in size and complexity, additional protections are necessary to secure them. Not only is end-to-end, device-to-device authentication needed, but also the means to encrypt the open communication protocols control systems commonly use. The objective of this Proof-of-Concept project is to demonstrate a repeatable, quick-to-deploy, and automated Certificate Authority (CA)solution to bring enhanced security of PKI capabilities to Closed Restricted Network (CRN) control systems, such as those commonly used for DoD Control Systems, that will provide: (1) Resiliency of Facility-related Control System (FRCS) networks through stronger Confidentiality, Integrity, and Availability (CIA) of files and connections, (2) Compliance of cybersecurity requirements for control systems, and (3) Applicability beyond FRCS.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Dec 01, 2021
Accession Number
AD1202888

Entities

People

  • Aura L. Keating
  • Peter Curtiss
  • Ryan Mckinley

Tags

Communities of Interest

  • Cyber
  • Energy and Power Technologies

DTIC Thesaurus Topics

  • Authentication
  • Computer Access Control
  • Computer Network Security
  • Computer Programming
  • Computer Programs
  • Computers
  • Control Systems
  • Cryptography
  • Cybersecurity
  • Department Of Defense
  • Graphical User Interface
  • Human-Machine Interfaces
  • Information Systems
  • Infrastructure
  • Instructions
  • Network Protocols
  • Operating Systems
  • Scada
  • Security
  • User Interface

Fields of Study

  • Computer science

Readers

  • Computer Networking
  • Cybersecurity.

Technology Areas

  • Cyber