Please use this identifier to cite or link to this item:
https://doi.org/10.15480/882.4635
Publisher DOI: | 10.1007/978-3-031-18326-3_31 | Title: | Development process for information security concepts in IIoT-based manufacturing | Language: | English | Authors: | Koch, Julian ![]() Eggers, Kolja Rath, Jan-Erik ![]() Schüppstuhl, Thorsten ![]() |
Keywords: | Threat modelling; IIoT; STRIDE; Cyber-physical systems; Information security; Industry 4.0 · DFD | Issue Date: | Jun-2022 | Publisher: | Springer | Source: | Flexible Automation and Intelligent Manufacturing: The Human-Data-Technology Nexus; Proceedings of FAIM 2022: 316-331 (2023) | Abstract (english): | Digital technologies are increasingly utilized by manufacturers to make processes more transparent, efficient and networked. Novel utilization elicits the challenge of preventing deployed information technology from compromising processual security. The digital enabling of formerly analog operation technology, the extensive use of information technology connectivity like MQTT, TCP/IP, Wi-Fi, and the deployment of IoT edge computing platforms create an application scenario for the Industrial Internet of Things (IIoT), which also introduces the associated vulnerabilities, which have been extensively exploited in the past. This paper introduces a development process for information security concepts designed for production scenarios based on the IIoT. This concept is then applied using an illustrative use case from aircraft production. The main contents of the development process include: Formulation of reasonable assumptions, system modelling, threat analysis including risk assessment, recommendation of countermeasures, reassessment after incorporating countermeasures. Specifically, a Data Flow Diagram as the model is developed, and a “risk first” variation of the STRIDE methodology is applied to identify threats and prioritize them. The aforementioned state-of-the-art methodologies are adjusted to our cyber-physical use case in the IIoT. The resulting concept aims to enable manufacturing processes to be digitized as sought. The adjustments to the methodologies are independent from our use case and may be suitable to a broad field of scenarios in the IIoT. |
Conference: | 31st International Conference on Flexible Automation and Intelligent Manufacturing, FAIM 2022 | URI: | http://hdl.handle.net/11420/13753 | DOI: | 10.15480/882.4635 | ISBN: | 978-3-031-18326-3 978-3-031-18325-6 978-3-031-18327-0 |
Institute: | Flugzeug-Produktionstechnik M-23 | Document Type: | Chapter/Article (Proceedings) | Peer Reviewed: | Yes | License: | ![]() |
Appears in Collections: | Publications with fulltext |
Files in This Item:
File | Description | Size | Format | |
---|---|---|---|---|
978-3-031-18326-3_31.pdf | 330,18 kB | Adobe PDF | View/Open![]() |
Page view(s)
86
checked on Mar 15, 2023
Download(s)
33
checked on Mar 15, 2023
Google ScholarTM
Check
Note about this record
Cite this record
Export
This item is licensed under a Creative Commons License