Dnp3 - Update Keys Overview; Dnp3 - Update Key Entry - Applied Systems Engineering ASE2000 User Manual

Communication test set

Hide thumbs Also See for ASE2000:

User manual (27 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

Table of Contents

26.5.3. DNP3 – Update Keys Overview

Central to DNP3 Secure Authentication is the concept of a pre-shared key called the Update

Key. The Update Key is used to encrypt dynamically created and exchanged Session Keys.

Session Keys are temporary in that new Session Keys are created and exchanged under various

circumstances dictated by the DNP3 Secure Authentication Specification. The specification does

not define a mechanism for the creation and exchange of the Update Key.

The Update Key is the key that must be guarded carefully; knowledge of this key gives you

complete access to DNP3 Secure Authentication. Each organization has procedures and policies

regarding the creation of exchange the Update Keys.

A menu for Update key information entry is accessed by selecting the Manage Update Keys

option from the DNP3 SAv2 or SAv5 sub-tab menu.

The specification defines three types of Update Keys, identified by a non-zero User ID. Only one

key need be entered to use Secure Authentication, but this key must be the same as used by the

device to which the ASE2000 communicates. The three types, identified by User ID, are:

Master Key – is a single update key used that can be used for all communication and is entered

in the Update Key field with a User ID of one (1).

RTU Key – is a key used for communication to a given RTU. The RTU Key is entered in the

Update Key field with a User ID of two (2).

User Key – is a separate key assigned to a given user (master station). On entry, both the User

ID and associated Key must be provided. A User Key has a User ID of three (3) or higher.

26.5.4. DNP3 – Update Key Entry

The keys themselves are binary, but are displayed in ASCII using a Base64 format, the standard

format for key display. As the name implies this is a base 64 representation of the key value.

• A production update key generated from a external source (not the ASE2000) is best entered

using normal copy and paste operations

• A test update key can be generated by selecting the Key target from the DNP3 Key Entry

menu. This allows testing of the Secure Authentication functions without the need to acquire

a key through normal company procedures. The test key must also be provided to the device

being tested. Obviously, a test key should not be used in a production environment.

ASE2000 V2 Communication Test Set User Manual

170

Table of Contents

Show Quick Links

Quick Links:
Physical Connection to Communication Circuit

Hide quick links:

Table of Contents

Need help?

Do you have a question about the ASE2000 and is the answer not in the manual?

Dnp3 - Update Keys Overview; Dnp3 - Update Key Entry - Applied Systems Engineering ASE2000 User Manual

Hide quick links:

Need help?

Questions and answers

Related Products for Applied Systems Engineering ASE2000

Dnp3 - Update Keys Overview; Dnp3 - Update Key Entry - Applied Systems Engineering ASE2000 User Manual

Hide quick links:

Need help?

Questions and answers

Related Manuals for Applied Systems Engineering ASE2000

Related Products for Applied Systems Engineering ASE2000

Table of Contents