Control de acceso remoto a redes industriales
- Díaz-Cacho Medina, Miguel 1
- Chaves Méndes, Andre 2
- Pereira, A. 1
-
1
Universidade de Vigo
info
-
2
Instituto Politécnico de Bragança
info
- Ramón Costa Castelló (coord.)
- Manuel Gil Ortega (coord.)
- Óscar Reinoso García (coord.)
- Luis Enrique Montano Gella (coord.)
- Carlos Vilas Fernández (coord.)
- Elisabet Estévez Estévez (coord.)
- Eduardo Rocón de Lima (coord.)
- David Muñoz de la Peña Sequedo (coord.)
- José Manuel Andújar Márquez (coord.)
- Luis Payá Castelló (coord.)
- Alejandro Mosteo Chagoyen (coord.)
- Raúl Marín Prades (coord.)
- Vanesa Loureiro-Vázquez (coord.)
- Pedro Jesús Cabrera Santana (coord.)
Publisher: Servizo de Publicacións ; Universidade da Coruña
ISBN: 9788497498609
Year of publication: 2023
Pages: 795-800
Congress: Jornadas de Automática (44. 2023. Zaragoza)
Type: Conference paper
Abstract
Remote access to industrial networks is one of the contributions that Industry 4.0 has popularized by enabling integration of TCP/IP technologies in OT networks and, therefore, to make industrial networks reachable using the public Internet. Remote maintenance is one of the great beneficiaries of this functionality. However, this access increases the security risks because a new and important vulnerability is opened by the possibility of remote access from any computer connected to the Internet. In order to fficiently manage these remote accesses, this paper proposes the use of the industrial telemetry protocol MQTT in the exchange of access control commands between the involved devices. This allows an opportunistic access modality that quantitatively reduces the security levels required by the IEC62443 standard by up to four. The proposal includes a topology based on three elements, the Anchor, the UNet and the Nauta and on three di erent services offered in Open-Source format; the port-redirection service, the access service and the access control service.