Please use this identifier to cite or link to this item:
Publisher DOI: 10.1007/978-3-031-18326-3_31
Title: Development process for information security concepts in IIoT-based manufacturing
Language: English
Authors: Koch, Julian  
Eggers, Kolja 
Rath, Jan-Erik  
Schüppstuhl, Thorsten  
Keywords: Threat modelling; IIoT; STRIDE; Cyber-physical systems; Information security; Industry 4.0 · DFD
Issue Date: Jun-2022
Publisher: Springer
Source: Flexible Automation and Intelligent Manufacturing: The Human-Data-Technology Nexus; Proceedings of FAIM 2022: 316-331 (2023)
Abstract (english): 
Digital technologies are increasingly utilized by manufacturers to make processes more transparent, efficient and networked. Novel utilization elicits the challenge of preventing deployed information technology from compromising processual security. The digital enabling of formerly analog operation technology, the extensive use of information technology connectivity like MQTT, TCP/IP, Wi-Fi, and the deployment of IoT edge computing platforms create an application scenario for the Industrial Internet of Things (IIoT), which also introduces the associated vulnerabilities, which have been extensively exploited in the past. This paper introduces a development process for information security concepts designed for production scenarios based on the IIoT. This concept is then applied using an illustrative use case from aircraft production. The main contents of the development process include: Formulation of reasonable assumptions, system modelling, threat analysis including risk assessment, recommendation of countermeasures, reassessment after incorporating countermeasures. Specifically, a Data Flow Diagram as the model is developed, and a “risk first” variation of the STRIDE methodology is applied to identify threats and prioritize them. The aforementioned state-of-the-art methodologies are adjusted to our cyber-physical use case in the IIoT. The resulting concept aims to enable manufacturing processes to be digitized as sought. The adjustments to the methodologies are independent from our use case and may be suitable to a broad field of scenarios in the IIoT.
Conference: 31st International Conference on Flexible Automation and Intelligent Manufacturing, FAIM 2022 
DOI: 10.15480/882.4635
ISBN: 978-3-031-18326-3
Institute: Flugzeug-Produktionstechnik M-23 
Document Type: Chapter/Article (Proceedings)
Peer Reviewed: Yes
License: CC BY 4.0 (Attribution) CC BY 4.0 (Attribution)
Appears in Collections:Publications with fulltext

Files in This Item:
File Description SizeFormat
978-3-031-18326-3_31.pdf330,18 kBAdobe PDFView/Open
Show full item record

Page view(s)

checked on Mar 15, 2023


checked on Mar 15, 2023

Google ScholarTM


Note about this record

Cite this record


This item is licensed under a Creative Commons License Creative Commons