{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,26]],"date-time":"2025-09-26T00:20:36Z","timestamp":1758846036510,"version":"3.44.0"},"publisher-location":"New York, NY, USA","reference-count":50,"publisher":"ACM","content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2025,8,25]]},"DOI":"10.1145\/3709017.3737708","type":"proceedings-article","created":{"date-parts":[[2025,7,15]],"date-time":"2025-07-15T16:18:38Z","timestamp":1752596318000},"page":"19-30","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["AuthPLC: Authenticating PLC Communication Using ST-based Extended Cryptographic Library"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-5934-0267","authenticated-orcid":false,"given":"Yaxi","family":"Yang","sequence":"first","affiliation":[{"name":"Singapore University of Technology and Design, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3977-1502","authenticated-orcid":false,"given":"Ivan","family":"Christian","sequence":"additional","affiliation":[{"name":"ST Engineering, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1596-6890","authenticated-orcid":false,"given":"Zeyu","family":"Yang","sequence":"additional","affiliation":[{"name":"Singapore University of Technology and Design, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0001-8535-7847","authenticated-orcid":false,"given":"Jiaqi","family":"Yang","sequence":"additional","affiliation":[{"name":"Shenzhen Farben Information Technology Co., Ltd., Shenzhen, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4617-1297","authenticated-orcid":false,"given":"Huibin","family":"Wang","sequence":"additional","affiliation":[{"name":"Singapore University of Technology and Design, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8610-9936","authenticated-orcid":false,"given":"Zheng","family":"Yang","sequence":"additional","affiliation":[{"name":"Southwest University, Chongqing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0594-0432","authenticated-orcid":false,"given":"Jianying","family":"Zhou","sequence":"additional","affiliation":[{"name":"Singapore University of Technology and Design, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2025,8,25]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"2022. open source PLC software. https:\/\/autonomylogic.com\/. Accessed: 05-10-2022."},{"volume-title":"And Segment Forecasts, 2025","year":"2030","key":"e_1_3_2_1_2_1","unstructured":"2024. Industrial Automation And Control Systems Market Size, Share & Trends Analysis Report By Component (Industrial Robots, Control Valves), By Control System (DCS, PLC, SCADA), By End-use, By Region, And Segment Forecasts, 2025 - 2030. https:\/\/www.grandviewresearch.com\/industry-analysis\/industrial-automation-market."},{"key":"e_1_3_2_1_3_1","volume-title":"Investigating the Security of OpenPLC: Vulnerabilities, Attacks, and Mitigation Solutions","author":"Alsabbagh Wael","year":"2024","unstructured":"Wael Alsabbagh, Chaerin Kim, and Peter Langend\u00f6rfer. 2024. Investigating the Security of OpenPLC: Vulnerabilities, Attacks, and Mitigation Solutions. IEEE Access (2024)."},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/3174776.3174777"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/ETFA.2006.355195"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2021.3081741"},{"key":"e_1_3_2_1_7_1","unstructured":"Rockwell Automation. 2024. Logix 5000 Controllers General Instructions. https:\/\/literature.rockwellautomation.com\/idc\/groups\/literature\/documents\/rm\/1756-rm003_-en-p.pdf. Accessed: 01-09-2024."},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1109\/SPW53761.2021.00058"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"crossref","unstructured":"Elaine Barker Lily Chen Sharon Keller Allen Roginsky Apostol Vassilev and Richard Davis. 2017. Recommendation for pair-wise key-establishment schemes using discrete logarithm cryptography. Technical Report. National Institute of Standards and Technology.","DOI":"10.6028\/NIST.SP.800-56Ar3"},{"key":"e_1_3_2_1_10_1","volume-title":"Cybersecurity for industrial control systems: A survey. computers & security 89","author":"Bhamare Deval","year":"2020","unstructured":"Deval Bhamare, Maede Zolanvari, Aiman Erbad, Raj Jain, Khaled Khan, and Nader Meskin. 2020. Cybersecurity for industrial control systems: A survey. computers & security 89 (2020), 101677."},{"key":"e_1_3_2_1_11_1","volume-title":"Black Hat USA 2019","author":"Biham Eli","year":"2019","unstructured":"Eli Biham, Sara Bitan, Aviad Carmel, Alon Dankner, Uriel Malin, and Avishai Wool. 2019. Rogue7: Rogue engineering-station attacks on s7 simatic plcs. Black Hat USA 2019 (2019)."},{"key":"e_1_3_2_1_12_1","volume-title":"SEC 1: elliptic curve cryptography. Released Standard Version 1","author":"Brown D","year":"2009","unstructured":"D Brown. 2009. Standards for efficient cryptography, SEC 1: elliptic curve cryptography. Released Standard Version 1 (2009)."},{"key":"e_1_3_2_1_13_1","volume-title":"Sec 1: Elliptic curve cryptography. Certicom Research 2","author":"Brown Daniel RL","year":"2009","unstructured":"Daniel RL Brown. 2009. Sec 1: Elliptic curve cryptography. Certicom Research 2 (2009)."},{"key":"e_1_3_2_1_14_1","volume-title":"Recommended elliptic curve domain parameters. Standards Efficient Cryptogr","author":"Brown Daniel RL","year":"2010","unstructured":"Daniel RL Brown. 2010. Recommended elliptic curve domain parameters. Standards Efficient Cryptogr. Group Ver 1 (2010)."},{"key":"e_1_3_2_1_15_1","volume-title":"Corey Hildebrandt, and Rob Caldwell.","author":"Brubaker Nathan","year":"2022","unstructured":"Nathan Brubaker, Keith Lunden, Ken Proska, Muhammad Umair, Daniel Kapellmann Zafra, Corey Hildebrandt, and Rob Caldwell. 2022. INCONTROLLER: New State-Sponsored Cyber Attack Tools Target Multiple Industrial Control Systems. https:\/\/cloud.google.com\/blog\/topics\/threat-intelligence\/incontroller-state-sponsored-ics-tool. Accessed: 13-04-2022."},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.3233\/JCS-181139"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSF49147.2020.00028"},{"key":"e_1_3_2_1_18_1","volume-title":"A Decade After Stuxnet: How Siemens S7 is Still an Attacker's Heaven. Blackhat Europe","author":"Finck Colin","year":"2023","unstructured":"Colin Finck and Tom Dohrmann. 2023. A Decade After Stuxnet: How Siemens S7 is Still an Attacker's Heaven. Blackhat Europe (2023)."},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/3462633.3483979"},{"volume-title":"Encyclopedia of Cryptography, Security and Privacy","author":"Hankerson Darrel","key":"e_1_3_2_1_20_1","unstructured":"Darrel Hankerson and Alfred Menezes. 2021. Elliptic curve cryptography. In Encyclopedia of Cryptography, Security and Privacy. Springer, 1--2."},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1109\/TWC.2023.3257028"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.21467\/ajgr.2.1.37-45"},{"key":"e_1_3_2_1_23_1","volume-title":"NIST: Digital signature standard (dss) federal information processing standards publication (fips) 186--5. https:\/\/nvlpubs.nist.gov\/nistpubs\/FIPS\/NIST.FIPS.186-5.pdf. Accessed: 03-02-2023.","author":"Federal","year":"2023","unstructured":"Federal information processing standards publication. 2023. NIST: Digital signature standard (dss) federal information processing standards publication (fips) 186--5. https:\/\/nvlpubs.nist.gov\/nistpubs\/FIPS\/NIST.FIPS.186-5.pdf. Accessed: 03-02-2023."},{"key":"e_1_3_2_1_24_1","unstructured":"ISO. 2018. ISO\/IEC 14888-3: 2018 IT security techniques-Digital signatures with appendix-part 3: discrete logarithm based mechanisms."},{"volume-title":"An interdisciplinary approach to modern network security","author":"Kantheti Sneha Chowdary","key":"e_1_3_2_1_25_1","unstructured":"Sneha Chowdary Kantheti and Ravi Manne. 2022. Performance and evaluation of firewalls and security. In An interdisciplinary approach to modern network security. CRC Press, 69--87."},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1109\/CDC.2015.7403296"},{"key":"e_1_3_2_1_27_1","volume-title":"Performance Comparison of ECDH and ECDSA. In 2021 2nd International Conference on Electronics, Communications and Information Technology (CECIT). IEEE, 825--829","author":"Koppl Martin","year":"2021","unstructured":"Martin Koppl, Dmytro Siroshtan, Milos Orgon, Stefan Pocarovsky, Antonin Bohacik, Karel Kuchar, and Eva Holasova. 2021. Performance Comparison of ECDH and ECDSA. In 2021 2nd International Conference on Electronics, Communications and Information Technology (CECIT). IEEE, 825--829."},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1109\/TII.2017.2773666"},{"key":"e_1_3_2_1_29_1","volume-title":"IEEE Control Systems Magazine","author":"Lian Feng-Li","year":"2001","unstructured":"Feng-Li Lian, James R Moyne, and Dawn M Tilbury. 2001. Ethernet, ControlNet, and DeviceNet. IEEE Control Systems Magazine (2001)."},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1109\/PIERS-FALL.2017.8293258"},{"key":"e_1_3_2_1_31_1","volume-title":"SoK: Security of Programmable Logic Controllers. arXiv preprint arXiv:2403.00280","author":"L\u00f3pez-Morales Efr\u00e9n","year":"2024","unstructured":"Efr\u00e9n L\u00f3pez-Morales, Ulysse Planta, Carlos Rubio-Medrano, Ali Abbasi, and Alvaro A Cardenas. 2024. SoK: Security of Programmable Logic Controllers. arXiv preprint arXiv:2403.00280 (2024)."},{"key":"e_1_3_2_1_32_1","unstructured":"Wayback Machine. 2015. DeviceNet Technology Overview. https:\/\/web.archive.org\/web\/20150924054827\/http:\/\/www.odva.org\/Home\/ODVATECHNOLOGIES\/DeviceNet\/DeviceNetTechnologyOverview\/tabid\/72\/Default.aspx. Accessed: 24-09-2015."},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-73074-3_15"},{"key":"e_1_3_2_1_34_1","volume-title":"Paul C Van Oorschot, and Scott A Vanstone","author":"Menezes Alfred J","year":"2018","unstructured":"Alfred J Menezes, Paul C Van Oorschot, and Scott A Vanstone. 2018. Handbook of applied cryptography. CRC press."},{"key":"e_1_3_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.1109\/TAC.2020.2992445"},{"key":"e_1_3_2_1_36_1","volume-title":"https:\/\/sourceforge.net\/projects\/snap7\/files\/. [Online","author":"Nardella Davide","year":"2023","unstructured":"Davide Nardella. 2020. 32\/64 bit multi-platform Ethernet S7 PLC communication suite. https:\/\/sourceforge.net\/projects\/snap7\/files\/. [Online; Accessed October 2023]."},{"key":"e_1_3_2_1_37_1","unstructured":"The Times of Israel. 2023. Iran cyberattack on Israel's water supply could have sickened hundreds - report. https:\/\/www.timesofisrael.com\/iran-cyberattack-on-israels-water-supply-could-have-sickened-hundreds-report\/. Accessed: 01-06-2020."},{"key":"e_1_3_2_1_38_1","volume-title":"pycomm3: A Python Ethernet\/IP library for communicating with Allen-Bradley PLCs. https:\/\/github.com\/ottowayi\/pycomm3. [Online","author":"Ottoway Ian","year":"2024","unstructured":"Ian Ottoway. 2023. pycomm3: A Python Ethernet\/IP library for communicating with Allen-Bradley PLCs. https:\/\/github.com\/ottowayi\/pycomm3. [Online; Accessed October 2024]."},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.5555\/645371.651327"},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICCITechnology.2013.6579516"},{"key":"e_1_3_2_1_41_1","unstructured":"Schneider-electric. 2020. Modicon MC80 Programmable Logic Controller (PLC). https:\/\/download.schneider-electric.com\/files?p_Doc_Ref=EIO0000002071&p_enDocType=User+guide&p_File_Name=EIO0000002071.02.pdf. Accessed: 01-06-2020."},{"volume-title":"CompactLogix, and Studio 5000\/RSLogix 5000","author":"Scott Austin","key":"e_1_3_2_1_42_1","unstructured":"Austin Scott. 2020. Learning RSLogix 5000 Programming: Build robust PLC solutions with ControlLogix, CompactLogix, and Studio 5000\/RSLogix 5000. Packt Publishing Ltd."},{"key":"e_1_3_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.diin.2017.06.012"},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1145\/3176258.3176319"},{"key":"e_1_3_2_1_45_1","unstructured":"Siemens. 2023. SIMATIC STEP 7 Basic\/Professional V19 and SIMATIC WinCC V19. https:\/\/support.industry.siemens.com\/cs\/attachments\/109826862\/STEP7_WinCC_Engineering_V19_enUS.pdf. Accessed: 01-11-2023."},{"key":"e_1_3_2_1_46_1","doi-asserted-by":"crossref","unstructured":"Keith Stouffer Joseph Falco and Karen Scarfone. 2011. Guide to Industrial Control Systems (ICS) Security - Supervisory Control and Data Acquisition (SCADA) systems Distributed Control Systems (DCS) and other control system configurations such as Programmable Logic Controllers (PLC). https:\/\/www.nist.gov\/publications\/guide-industrial-control-systems-ics-security-supervisory-control-and-data-acquisition. Accessed: 04-12-2024.","DOI":"10.6028\/NIST.SP.800.82"},{"key":"e_1_3_2_1_47_1","unstructured":"Symantec DeepSight Adversary Intelligence Team. 2023. Seedworm: Group Compromises Government Agencies Oil & Gas NGOs Telecoms and IT Firms. https:\/\/symantec-enterprise-blogs.security.com\/threat-intelligence\/seedworm-espionage-group. Accessed: 11-12-2015."},{"key":"e_1_3_2_1_48_1","doi-asserted-by":"publisher","DOI":"10.1109\/TCNS.2023.3280460"},{"volume-title":"IEC 61131-3: Programming industrial automation systems","author":"Tiegelkamp Michael","key":"e_1_3_2_1_49_1","unstructured":"Michael Tiegelkamp and Karl-Heinz John. 2010. IEC 61131-3: Programming industrial automation systems. Vol. 166. Springer."},{"key":"e_1_3_2_1_50_1","volume-title":"PLCrypto: A symmetric cryptographic library for programmable logic controllers. IACR Transactions on Symmetric Cryptology","author":"Yang Zheng","year":"2021","unstructured":"Zheng Yang, Zhiting Bao, Chenglu Jin, Zhe Liu, and Jianying Zhou. 2021. PLCrypto: A symmetric cryptographic library for programmable logic controllers. IACR Transactions on Symmetric Cryptology (2021), 170--217."}],"event":{"name":"ASIA CCS '25: ACM Asia Conference on Computer and Communications Security","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"location":"Hanoi Vietnam","acronym":"ASIA CCS '25"},"container-title":["Proceedings of the 11th ACM Cyber-Physical System Security Workshop"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3709017.3737708","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,9,25]],"date-time":"2025-09-25T16:20:31Z","timestamp":1758817231000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3709017.3737708"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,8,25]]},"references-count":50,"alternative-id":["10.1145\/3709017.3737708","10.1145\/3709017"],"URL":"https:\/\/doi.org\/10.1145\/3709017.3737708","relation":{},"subject":[],"published":{"date-parts":[[2025,8,25]]},"assertion":[{"value":"2025-08-25","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}