SECS/GEMsec: A mechanism for detection and prevention of cyber-attacks on SECS/GEM communications in industry 4.0 landscape

Shams Ul Arfeen Laghari and Selvakumar Manickam and Ayman Khallel Al-ani and Shafiq Ul Rehman and Shankar Karuppayah (2021) SECS/GEMsec: A mechanism for detection and prevention of cyber-attacks on SECS/GEM communications in industry 4.0 landscape. IEEE Access, 9. pp. 154380-154394. ISSN 2169-3536

	Text SECS GEMsec, A Mechanism for Detection and Prevention of Cyber Attacks on SECS GEM Communications in Industry 4.0 Landscape.ABSTRACT.pdf Download (59kB)
	Text SECS GEMsec, A Mechanism for Detection and Prevention of Cyber Attacks on SECS GEM Communications in Industry 4.0 Landscape.pdf Restricted to Registered users only Download (2MB) \| Request a copy

URL: https://ieeexplore.ieee.org/document/9612213

Abstract

Industry 4.0 as a driving force is making huge strides, particularly in the manufacturing sector, where all integral components involved in the production processes are getting digitally interconnected. Fused with improved automation and robotics, machine learning, artificial intelligence, big data, cloud computing, and the Internet of Things (IoT), this open network interconnectivity makes industrial systems increasingly vulnerable to cyber-attacks. While the impacts and intentions of cyber-attacks vary, they always have a detrimental effect on manufacturers, including financial losses, supply chain disruption, loss of reputation and competitiveness, and theft of corporate secrets. Semiconductor Equipment Communication Standard/Generic Equipment Model (SECS/GEM) is a legacy Machine-to-Machine (M2M) communication protocol used profoundly in the semiconductor and other manufacturing industries. It is mainly designed to be utilized in a controlled and regulated factory environment separated from external networks. Industry 4.0 has revolutionized the manufacturing industry and has brought SECS/GEM back to the limelight as it lacks security safeguards to protect against cyber-attacks. This paper proposes a digital signature-based security mechanism that offers authentication, integrity, and protection against cyber-attacks. The proposed mechanism is compared with the industry-standard SECS/GEM implementation in terms of processing time, payload overhead, and resilience against cyber-attacks. The results indicate that SECS/GEMsec effectively prevented untrusted entities from establishing communication links with legit industrial equipment while maintaining message integrity by discarding forged messages. Additionally, it protected SECS/GEM communications against Denial-of-Service (DoS) attacks, Replay attacks, and False-Data-Injection-Attack (FDIA) attacks.

Item Type:	Article
Keyword:	Cybersecurity , DoS-attack , IIoT , Industry 4.0 , M2M , Machine-to-machine communications , SECS/GEM
Subjects:	H Social Sciences > HD Industries. Land use. Labor > HD28-9999 Industries. Land use. Labor > HD28-70 Management. Industrial management T Technology > T Technology (General) > T1-995 Technology (General) > T10.5-11.9 Communication of technical information
Department:	FACULTY > Faculty of Computing and Informatics
Depositing User:	DG MASNIAH AHMAD -
Date Deposited:	19 Jul 2022 12:05
Last Modified:	19 Jul 2022 12:05
URI:	https://eprints.ums.edu.my/id/eprint/33363

Actions (login required)

View Item