A CC Approach to Windmill Control Systems

Shekoufeh Khodaverdi, Vikas Vohra

AbstractThis M.SC. thesis project evolves around Distributed Monitoring and Control (DMC) systems. The popularity of such systems has increased rapidly over the past decades, since it has become more and more necessary to control large systems of devices in a convenient and secure way.

The concrete case of a DMC system, that the thesis works through, is based on windmills. The access to the Windmill DMC System is provided by a web-based interface and all communication between entities in the system (web clients, web server, and windmills) is done over the Internet.

This thesis outlines a secure design proposal for systems of this kind, by analysing and defining the security requirements for such systems. The approach taken in order to do so is based on the Common Criteria for Information Technology Security Evaluation (CC). A CC Protection Profile (PP) is developed for a general Windmill DMC System. This PP is then used as basis for development of a Security Target (ST) document for a more specific Windmill DMC System.

Finally, a design proposal is given in form of an Implementation Representation that illustrates the applicability of the ST for a concrete Windmill DMC System.
KeywordsCommon Criteria, Protection Profile, Security Target, Distributed Monitoring and Control System (DMC system), Implementation Representation, Security, Windmills.
TypeMaster's thesis [Academic thesis]
Year2007
PublisherInformatics and Mathematical Modelling, Technical University of Denmark, DTU
AddressRichard Petersens Plads, Building 321, DK-2800 Kgs. Lyngby
SeriesIMM-Thesis-2007-13
NoteSupervised by professor Robin Sharp, IMM, DTU.
Electronic version(s)[pdf]
BibTeX data [bibtex]
IMM Group(s)Computer Science & Engineering