DATA EXCHANGE TECHNOLOGY BASED ON THE HANDSHAKE PROTOCOL FOR INDUSTRIAL AUTOMATION SYSTEM

In this paper, the technology of secure data exchange based on the handshake Protocol for industrial automation systems is considered. The threats of client-server applications, on the basis of which it was concluded that the need to use and further implementation of a secure communication channel, for the implementation of secure data exchange. In the process of work, the existing methods of integration and automation of the process at industrial enterprises are analyzed. According to the results of the comparative analysis, as the integration of client and server was chosen Wordpress using plug-ins an online store WooCommerce and 1C. Were considered direct analogues of the handshake Protocol, highlighting the advantages and disadvantages of using in this application, we compare each method, as a secure communication channel has been selected the handshake Protocol, as it showed more benefits than listed counterparts. The handshake Protocol used an asymmetric RSA encryption system. The server generated a pair of keys, the public key was at the client, the private - at the server, the client identification was carried out by the public key and the control phrase, which was originally agreed by the exchange participants. If at any stage of identification the data did not match or an attempt was made to invade third parties in the information exchange, the client did not receive any data from the server. Finally, the schemes of the handshake Protocol, RSA cryptosystems and the General scheme of the implemented application are presented. This development has shown effective use and has been implemented in the enterprise for the production of furniture products.

системы промышленной автоматизации, протокол рукопожатия, безопасность клиент-серверных приложений, industrial automation, handshake protocol, client-server applications security

1. ГОСТ Р 53114-2008 Защита информации. Обеспечение информационной безопасности в организации. Основные термины и определения. М., 2008.

2. Астафьев А.В., Шардин Т.О., Волков Д.А. Свидетельство РФ на программу на ЭВМ 2017 №2017617564 от 07.07.2017 «Программа аутентификации объекта информационного взаимодействия на основе протокола рукопожатия для защиты данных в системах промышленной автоматизации».

3. Астафьев А.В., Шардин Т.О., Волков Д.А. Свидетельство РФ на программу на ЭВМ 2017 №2017661972 от 25.10.2017 «Программа идентификации объекта информационного взаимодействия на основе протокола рукопожатия для защиты данных в системах промышленной автоматизации».

4. Молдовян А.А., Молдовян Д.Н., Левина А.Б. Протоколы аутентификации с нулевым разглашением секрета.: СПб.: Университет ИТМО, 2016. 55 с.

5. Водолазский В. Коммерческие системы шифрования: основные алгоритмы и их реализация. Часть 1 // Монитор. 1992. N 6-7. C. 14 - 19.

6. Воеводин В.В. [и др.]. Параллельные вычисления. СПб.: БХВ-Петербург, 2002. 608 c.

7. Jonsson J., Kaliski Jr., B.S.: On the Security of RSA Encryption in TLS. In: Yung, M. (ed.) CRYPTO 2002. LNCS, vol. 2442, pp. 127-142. Springer, Heidelberg (2002).

8. Brandon Rhodes, John Goerzen, TLS/SSL, Foundations of Python Network Programming, pp. 93-114.

9. Andrew Clark, HTTP Session Security, Encyclopedia of Cryptography and Security, pp. 567-569.

10. Wiener, M.: Cryptanalysis of Short RSA Secret Exponents. IEEE Transactions on Information Theory 36(3), pp. 553-558 (1990).