DMODBUS: Blockchain for Network Identity Validation in Modbus Connections

Authors

Keywords:

Blockchain, Industry 4.0, Industrial Internet of Things, Cybersecurity.

Abstract

The Fourth Industrial Revolution, driven by the convergence of Information Technology (IT) and Operational Technology (OT), has accelerated industrial innovation while exposing legacy systems to modern cyber threats. Widely adopted protocols, such as Modbus/TCP, lack native security mecha nisms and remain inherently vulnerable to exploitation. This study proposes and validates DModbus, an adaptive security layer that enhances Modbus communications by integrating blockchain technology. The architecture introduces a non-invasive gateway that utilizes a permissioned Proof of Authority (PoA) blockchain as a distributed and immutable ledger for device identities, enabling robust authentication during communication. The proposal was validated through a Proof of Concept (TRL 3) simulating a Man-in-the-Middle (MitM) attack via Address Resolution Protocol (ARP) spoofing in a Modbus TCP/IP envi ronment. The experimental results demonstrate that DModbus detects identity spoofing attempts in real time. Performance analysis quantifies the inherent trade-off: an average latency overhead of 91.3% relative to the unprotected baseline. This overhead suggests suitability for non-critical real-time applica tions, such as supervisory control and data acquisition (SCADA) systems, rather than high-speed actuators, given the significant gains in security and resilience—particularly when contrasted with the severe and unpredictable degradation observed during active attacks. The main contributions are: (i) a model for securing Industry of Things (IIoT) devices using blockchain; (ii) a quantitative assessment of Proof-of-Authority (PoA)-based overhead in OT networks; and (iii) validation of decentralized identity management as a viable security layer for industrial communications.

Downloads

Download data is not yet available.

Author Biographies

Paulo Henrique Mariano, Federal University of Ouro Preto - UFOP

Paulo Mariano is a Master's student researcher at the Federal University of Ouro Preto (UFOP) and a Software Engineer at FIEMG. As an author of scientific publications in the field, his research focuses on industrial network security (OT/ICS), specifically on developing solutions based on permissioned blockchains. He holds postgraduate specializations in Cyber Security (from FIAP) and Software Engineering (from PUC Minas).

Devanir Caetano Filho, FIEMG

Devanir Caetano Filho is a Postgraduate student in Smart Factory at SENAI-SP College and a Control
and Automation Engineer. He works as a Technology Analyst III at the FIEMG System and Technical
Leader of the SENAI Center 4.0 team in Automation and Systems Integration for Industry 4.0 projects.
He is also a Professor in postgraduate programs at SENAI-MG College. He has experience in industrial automation, instrumentation, process control, and IT–OT integration. Specialist in industrial networks, IoT, and MES/ERP/PIMS systems.

Carlos Frederico Cavalcanti, Federal University of Ouro Preto

Carlos Frederico Cavalcanti is a Professor of Computer Systems, leading the activities of the Networks Research Group in the Computer Science Department at the Federal University of Ouro Preto (UFOP). Hold a Beng in Electrical and Electronic from the Pontificia Catholic University of Minas Gerais (PUC-MG), MSc in Computer Science from the State University of Campinas (UNICAMP) and PhD degree in Computer Science from the Department of Computer Science at Federal University of Minas Gerais (UFMG) all in Brazil. Work on subjects as embedded system, operating systems and networking. Visiting researcher at Networks Research Group in the Centre for Communication Systems Research at the University of Surrey (UniS) working on the TEQUILA European project. Research interests include IP quality of service, traffic engineering, network dimensioning, performance evaluation, pricing, middleware and embedded networking technology.

Ricardo Augusto Rabelo Oliveira, Federal University of Ouro Preto - UFOP

Ricardo Augusto Rabelo de Oliveira received his Ph.D. degree in Computer Science from the Federal
University of Minas Gerais in 2008. Nowadays, he is an Associate Professor in the Computing Department at the Federal University of Ouro Preto. Has experience in Computer Science, acting on the following subjects: Wavelets, Neural Networks, 5G, VANT, and Wearables.

References

J. W. Veile, D. Kiel, J. M. Müller, and K.-I. Voigt, “Lessons learned from industry 4.0 implementation in the german manufacturing industry,” Journal of Manufacturing Technology Management, vol. 31,

no. 5, pp. 977–997, 2020. doi: 10.1108/JMTM-08-2018-0270. [Online]. Available: https://doi.org/10.1108/JMTM-08-2018-0270

R. Langner, “Stuxnet: Dissecting a cyberwarfare weapon,” IEEE Security & Privacy, vol. 9, no. 3, pp. 49–51, 2011. doi: 10.1109/MSP.2011.67. [Online]. Available: https://doi.org/10.1109/MSP.2011.67

I. Cindri´c, M. Jurˇcevi´c, and T. Hadjina, “Mapping of industrial iot to iec 62443 standards,” Sensors, vol. 25, no. 3, p. 728, 2025. doi: 10.3390/s25030728. [Online]. Available: https://doi.org/10.3390/s25030728

J. Martin and C. Whelan, “Ransomware through the lens of state crime: Conceptualizing ransomware groups as cyber proxies, pirates, and privateers,” State Crime Journal, vol. 12, no. 1, pp.

–28, 2023. doi: 10.13169/statecrime.12.1.0004. [Online]. Available: https://doi.org/10.13169/statecrime.12.1.0004

A. Lemay, J. Calvet, F. Menet, and J. M. Fernandez, “Survey of publicly available reports on advanced persistent threat actors,” Computers & Security, vol. 72, pp. 26–59, 2018. doi: 10.1016/j.cose.2017.08.005. [Online]. Available: https://doi.org/10.1016/j.cose.2017.08.005

T. J. Holt, J. D. Freilich, and S. M. Chermak, “Exploring the subculture of ideologically motivated cyber-attackers,” Journal of Contemporary Criminal Justice, vol. 33, no. 3, pp. 212-233, 2017. doi: 10.1177/1043986217699100. [Online]. Available:

https://doi.org/10.1177/1043986217699100

A. Moneva and R. Leukfeldt, “Insider threats among dutch smes: Nature and extent of incidents, and cyber security measures,” Journal of Criminology, vol. 56, no. 4, pp. 416–440, 2023. doi:

1177/26338076231161842. [Online]. Available: https://doi.org/10.1177/26338076231161842

M. Bhole, T. Sauter, and W. Kastner, “Enhancing industrial cybersecurity: Insights from analyzing threat groups and strategies in operational technology environments,” IEEE Open Journal of

the Industrial Electronics Society, vol. 6, pp. 145–157, 2025. doi:10.1109/OJIES.2025.3527585. [Online]. Available: https://doi.org/10.1109/OJIES.2025.3527585

M. Geiger, J. Bauer, M. Masuch, and J. Franke, “An analysis of black energy 3, crashoverride, and trisis, three malware approaches targeting operational technology systems,” in 2020 25th IEEE International Conference on Emerging Technologies and Factory Automation (ETFA),

vol. 1, 2020. doi: 10.1109/ETFA46521.2020.9212128 pp. 1537–1543.

[Online]. Available: https://doi.org/10.1109/etfa46521.2020.9212128

L. L. Dhirani, E. Armstrong, and T. Newe, “Industrial iot, cyber threats, and standards landscape: Evaluation and roadmap,” Sensors, vol. 21,no. 11, p. 3901, 2021. doi: 10.3390/s21113901. [Online]. Available:https://doi.org/10.3390/s21113901

Y. Xu, J. Yang, Z. Zhou, X. Shi, J. Wang, and J. Zhang, “Extending defense-in-depth to multi-domain networks,” in Proceedings of the 2024 8th International Conference on Electronic Information Technology and Computer Engineering (EITCE). New York, NY, USA: ACM,

doi: 10.1145/3711129.3711254 pp. 1–5. [Online]. Available: https://doi.org/10.1145/3711129.3711254

T. Lins and R. A. R. Oliveira, “Cyber-physical production systems retrofitting in context of industry 4.0,” Computers & Industrial Engineering, vol. 139, p. 106193, 2020. doi: 10.1016/j.cie.2019.106193.

[Online]. Available: https://doi.org/10.1016/j.cie.2019.106193

S. Figueroa, J. Añorga, and S. Arrizabalaga, “A role-based access control model in modbus scada systems. a centralized model approach,” Sensors, vol. 19, no. 20, p. 4455, 2019. doi: 10.3390/s19204455.

[Online]. Available: https://doi.org/10.3390/s19204455

F. Katuli´c, D. Sumina, S. Groš, and I. Erceg, “Protecting modbus/tcp based industrial automation and control systems using message authentication codes,” IEEE Access, vol. 11, pp. 47007–47023,

doi: 10.1109/ACCESS.2023.3275443. [Online]. Available: https://doi.org/10.1109/ACCESS.2023.3275443

Y. Chen, X. Lian, D. Yu, S. Lv, S. Hao, and Y. Ma, “Exploring shodan from the perspective of industrial control systems,” IEEE Access, vol. 8, pp. 75359–75369, 2020. doi: 10.1109/ACCESS.2020.2988691.

[Online]. Available: https://doi.org/10.1109/ACCESS.2020.2988691

Z. Zhang, L. Huang, R. Tang, T. Peng, L. Guo, and X. Xiang, “Industrial blockchain of things: A solution for trustless industrial data sharing and beyond,” in 2020 IEEE 16th International

Conference on Automation Science and Engineering (CASE), 2020. doi:10.1109/CASE48305.2020.9216817 pp. 1187–1192. [Online].Available: https://doi.org/10.1109/CASE48305.2020.9216817

S. M. Alrubei, E. Ball, and J. Rigelsford, “Securing iot-blockchain applications through honesty-based distributed proof of authority consensus algorithm,” in 2021 International Conference on Cyber

Situational Awareness, Data Analytics and Assessment (CyberSA), 2021. doi: 10.1109/CyberSA52016.2021.9478257 pp. 1–7. [Online].

Available: https://doi.org/10.1109/CyberSA52016.2021.9478257

B. Kitchenham, P. Brereton, D. Budgen, M. Turner, J. Bailey, and S. Linkman, “Systematic literature reviews in software engineering a systematic literature review,” Information and Software Technology,

vol. 51, no. 1, pp. 7–15, 2009. doi: 10.1016/j.infsof.2008.09.009.

[Online]. Available: https://doi.org/10.1016/j.infsof.2008.09.009

P. Mariano, C. Garrocho, C. Cavalcanti, and R. Oliveira, “Blockchain applied to security in industrial internet of things devices,” in Proceedings of the 26th International Conference on Enterprise

Information Systems- Volume 1: ICEIS, INSTICC. SciTePress, 2024.

doi: 10.5220/0012692500003690 pp. 345–353. [Online]. Available:

https://doi.org/10.5220/0012692500003690

L. Rosa, M. Freitas, S. Mazo, E. Monteiro, T. Cruz, and P. Simões, “A comprehensive security analysis of a scada protocol: From osint to mitigation,” IEEE Access, vol. 7, pp. 42156

, 2019. doi: 10.1109/ACCESS.2019.2906926. [Online]. Available:

https://doi.org/10.1109/ACCESS.2019.2906926

T. M. Fernández-Caramés and P. Fraga-Lamas, “A review on the application of blockchain to the next generation of cybersecure industry 4.0 smart factories,” IEEE Access, vol. 7, pp. 45201

, 2019. doi: 10.1109/ACCESS.2019.2908780. [Online]. Available: https://doi.org/10.1109/ACCESS.2019.2908780

A. J. Cabrera-Gutiérrez, E. Castillo, A. Escobar-Molero, J. A. Álvarez-Bermejo, D. P. Morales, and L. Parrilla, “Integration of hardware security modules and permissioned blockchain in industrial iot networks,” IEEE Access, vol. 10, pp. 114331–114345,

doi: 10.1109/ACCESS.2022.3217815. [Online]. Available: https:

//doi.org/10.1109/ACCESS.2022.3217815

R. Alajlan, N. Alhumam, and M. Frikha, “Cybersecurity for blockchain-based iot systems: A review,” Applied Sciences, vol. 13, no. 13, p. 7432, 2023. doi: 10.3390/app13137432. [Online]. Available:

https://doi.org/10.3390/app13137432

W. Diffie and M. Hellman, “New directions in cryptography,” IEEE Transactions on Information Theory, vol. 22, no. 6, pp.644–654, 1976. doi: 10.1109/TIT.1976.1055638. [Online]. Available:

https://doi.org/10.1109/TIT.1976.1055638

L. Lamport, R. Shostak, and M. Pease, “The byzantine generals problem,” ACM Transactions on Programming Languages and Systems, vol. 4, no. 3, pp. 382–401, 1982. doi: 10.1145/357172.357176. [Online]. Available: https://doi.org/10.1145/357172.357176

R. Villamar, P. Proaño, A. Cuenca Sánchez, J. Tipan, R. Pillajo, and A. Quito Carrión, “An open-source web-based approach to industrial supervision and data acquisition in the context of

industry 4.0,” Engineering Proceedings, vol. 115, no. 1, p. 23, 2025. doi: 10.3390/engproc2025115023. [Online]. Available: https://doi.org/10.3390/engproc2025115023

Published

2026-07-14

How to Cite

Mariano, P. H., Caetano Filho, D. ., Cavalcanti, C. F. ., & Rabelo Oliveira, R. A. . (2026). DMODBUS: Blockchain for Network Identity Validation in Modbus Connections. IEEE Latin America Transactions, 24(9), 957–966. Retrieved from https://latamt.ieeer9.org/index.php/transactions/article/view/10703