Lightweight Group Authentication Mechanism for Industrial Control System Terminals

Aiming at the current lack of certification ability in domestic industrial control system, we propose a lightweight group authentication mechanism for industrial control terminal; the mechanism combines the group authentication method of uncertificated signature and traditional information security. The proposed scheme improves the identity authentication technology in traditional information security and realizes simultaneous authentication of multiple PLCs in the multi-machine collaboration scenario of the industrial control system. The structure of the reliable PLC device based on the scheme adopts the embedded processor and the security processing unit. In this scheme, the PCIE protocol is used to transmit data, instead of the traditional network interface data transmission. It can certificateless signature group authentication mechanism. The PCIE protocol security processing unit ensures that network data are not compromised and that data security is guaranteed to the greatest extent. The verification shows that the proposed lightweight group authentication mechanism reduces the computational complexity and communication overhead of the authentication process. It can solve the problem of limited computing power of the terminal in the control system.