IT Security in Industrie 4.0

Similar documents
Secure Cloud Computing

Cloud Security Prof. Dr. Michael Waidner Fraunhofer SIT CASED. Fraunhofer SIT. Fraunhofer-Gesellschaft 2011

Industrie 4.0 What can the UK learn from Germany s manufacturing strategy? 4 February 2014

Industry 4.0 Challenges and Opportunities

Sustainable Technology Transfer: The German Way

Smart Data Innovation Lab (SDIL)

Cloud-Security: Show-Stopper or Enabling Technology?

EIT ICT Labs MASTER SCHOOL. Specialisations

Smart Factory Innovation Forum

The problem of cloud data governance

Dassault Systèmes in Germany Partner for Industry 4.0

APPLIED AND INTEGRATED SECURITY

The Internet of Things in Smart Buildings 2014 to 2020

Enterprise Application Enablement for the Internet of Things

Industrie 4.0 and Digital Transformation in NRW: Challenges, Opportunities and Potential for Cooperation Seoul,

DATA, THE GATE TO A SMART ENERGY SYSTEM - views from the electricity industry

EFFECTS+ Clustering of Trust and Security Research Projects, Identifying Results, Impact and Future Research Roadmap Topics

Leveraging Big Data Value Towards a Data-driven Europe with joint PPP efforts

Standardizing the Internet of Things; Boiling the Ocean

ICT Enabling the Future of Smart Energy. Competence Center IT4Energy Dr. Thomas Luckenbach Dr. Armin Wolf

Multi-Agent Systems. Expert Forum Agents within the context of Industry 4.0. Industry 4.0 Machine Learning. Energy and Smart Grids.

Trust areas: a security paradigm for the Future Internet

IT Security Quo Vadis?

A Roadmap for Future Architectures and Services for Manufacturing. Carsten Rückriegel Road4FAME-EU-Consultation Meeting Brussels, May, 22 nd 2015

Cloud Security Introduction and Overview

Security and Cloud Computing

Global CRM Software Market with Focus on Cloud Applications ( ) April 2016

What is Industrie 4.0 and how will it create the new growth?

Innovation value pools for Utilities or Advanced Information and Communications (ICT) Technology in Energy

Security Challenges in the Cloud

"Increasing demand for intelligent cities and IoT devices is expected to drive the Internet of Things (IoT) in smart cities market"

Security and Compliance in Clouds: Challenges and Solutions

Smart Grids initiative. Electrical Engineering Institute of Renewable Energies Dipl.-Wirtsch.-Ing. Alexander von Scheven 1

Internet of Things The EU research agenda Information Day. Thibaut KLEINER European Commission - DG CONNECT Head of Unit E1: Network Technologies

The Bosch IoT Suite

Including Threat Actor Capability and Motivation in Risk Assessment for Smart Grids

Information Security for the Rest of Us

Strategic Analysis of the Global Automotive Market for IT Mobility Platforms

ICANWK402A Install and configure virtual machines for sustainable ICT

COCIR* position on the certification of Healthcare IT product interoperability

Secure Cloud Computing

We are one of Germany's leading universities of technology

Opportunities in the German Software Market

IT Governance: The benefits of an Information Security Management System

Germany s Digital Agenda and the Role of Standardization

Steve Apps Senior Manager Accenture South Africa

Industry 4.0 the German vision for advanced manufacturing

Convergence to Re Shape the Physical Security Industry

PICTURE Project Final Event. 21 May 2014 Minsk, Belarus

Seminar: Security Metrics in Cloud Computing ( se)

What is Industrie 4.0

CHANCES AND RISKS FOR SECURITY IN MULTICORE PROCESSORS

Cloud Romtelecom

Challenges in Delivering Large-scale Services over Cloud Environments

Dr. Markus Braendle, Head of Cyber Security, ABB Group 10 Steps on the Road to a Successful Cyber Security Program Asia Pacific ICS Security SUMMIT

The Growth of the European Cybersecurity Market and of a EU Cybersecurity Industry

INCO-TRUST. INCO-TRUST: to set up a co-operation framework based on mutual interests & capabilities! Canada US S. Korea Japan.

Integration of Industry 4.0 in Education Programs of German Universities of Applied Science. Prof. Dr.-Ing. Rainer Würslin

Industrie 4.0. The Aachen Approach

Hans Bos Microsoft Nederland.

IoT in Production. Dr. Verena Majuntke, Bosch Software Innovations. Bosch Software Innovations

Building the Clean Energy Super Highway

smart grids forum Intelligent power grids: How to build in Safety and Security Conference March 21 22, 2013 in Munich, Germany

Cybersecurity education for the next generation Emerging best practices

Cyber Security Trends Market trends from leading security analysts and consultants at TÜV Rheinland, OpenSky, and OpenSky UK

How To Make A Profit From Semiconductors

Unleashing the Potential of Cloud Computing in Europe - What is it and what does it mean for me?

Internet of Things markets

Online Security, Traffic Data and IP Addresses. Review of the Regulatory Framework for Electronic Communications

Article 29 Working Party Issues Opinion on Cloud Computing

Smart Meters Executive Paper

On the Way to Industrie 4.0 The Digital Enterprise Siemens AG 2015 siemens.com

H2020 "Secure Societies" Work Programme Digital Security 2015

Cloud Storage Security

Data Security: Fight Insider Threats & Protect Your Sensitive Data

Energy-Efficient ICT Services using Cloud Computing, Virtualisation and Software as a Service

Smart grid cyber security certification

Brief: GE Positions Itself As A Digital Industrial Leader

T-SYSTEMS Cloud STORY

Transcription:

IT Security in Industrie 4.0 Prof. Dr. Michael Waidner TU Darmstadt & Fraunhofer Institute for Secure Information Technology? AUTONOMIK Innovation Days Berlin, June 17-18, 2014

1. What is Industrial IT Security? 2. Research Agenda for Security in Industrie 4.0 3. We need European Coordination, Standards, Players 2

Industrie 4.0: The 4th Industrial (R)evolution Security in Industrie 4.0 = Security in Cloud, Big Data, CPS, ICS,... Cloud Big Data Cyber-Physical Systems Industrial Control Systems Source: DFKI 2011, FU / acatech, Berlin 2012. 3

Survey Across German Industry and Academia (2013) Security is Perceived as Major Barrier for Industrie 4.0 Doubts over IT security Lack of standards Demand for highly qualified people Insufficient ICT infrastructure High investment costs Source (in German) : VDE-Trendreport 2013, Befragung Unternehmen und Hochschulen 4

Priorities of Industrial IT Security 1. Loss of Integrity Sabotage Unnoticed reduction in quality of product Unnoticed increase in resource consumption Use of counterfeit components / services 2. Loss of Availability Shutdown in an unsafe state Loss of productivity 3. Loss of Accountability Inability to produce legally required evidence Inability to determine and attribute problems 4. Loss of Confidentiality Industrial espionage Product piracy Violation of employee / client privacy 5

Examples 6

Recommendations, Standards, Surveys NIST SPUB 800-82 Draft VDMA: Survey NIST SPUB 800-160 Draft Fraunhofer SIT: BSI: ICS Security Kompendium VDI 2128 IEC 62443 7

Evolution of Industrial IT Security Follows (slowly) the overall development of IT security State of the Art IT, ca. 1964 State of the Art IT, ca. 2014 Security for Industrial IT Today Security for Industrie 4.0 Hacking cyber-physical systems No air gap, everything connected Core services are outsourced Shared ownership of machines Loss of perimeter control Functions and data move to cloud Need for trusted identities and trustworthy infrastructure Security by Design to cope with complexity Big Data causes confidentiality problems 8

1. What is Industrial IT Security? 2. Research Agenda for Security in Industrie 4.0 3. We need European Coordination, Standards, Players 9

Topics for a Research Agenda Security by Design for Systems & Integration Stategies for Transition and Introduction of Industrie 4.0 Security Trustworthy ICT Infrastructures and Secure Identities IP Protection, Anti Piracy & Accountability / Provenance Usability and Security & Privacy Define Liability, Privacy, Data Protection in Industrie 4.0 Sicherheit und Industrie 4.0 Source (in German): Sicherheit und Industrie 4.0, Fraunhofer SIT, Darmstadt 2014 10

1. What is Industrial IT Security? 2. Research Agenda for Security in Industrie 4.0 3. We need European Coordination, Standards, Players 11

Consortia in Germany, EU and USA Unclear level of coordination and cooperation 2014: Founding members: AT&T, Cisco, GE, IBM, Intel. Ca 50 members in total, incl. Bosch. 2013: BITKOM, VDMA, ZVEI + ABB, Bosch, Festo, HP, IBM, Infineon, Phoenix Contact, SAP, Siemens, Telekom, ThyssenKrupp, Trumpf, Volkswagen, Wittenstein +... 2009: Research cluster 12

Opportunities for Coordination and Cooperation Standards, processes and tools for Security by Design, test criteria and labs,... Beyond IEC/ISA 62443 Cross-organizational trust is key for federation and integration Trusted identities and identity management Trusted platforms and remote attestation capabilities Trusted core networks and trusted integration Cross-organizational smart security monitoring Cross-border trust, security, security monitoring EU-level vendors need EU-level security standards Including security and crypto standards for government use Increase European participation in intl. security / crypto standards Create incentives for improving security and privacy 13

Prof. Dr. Michael Waidner michael.waidner@sit.fraunhofer.de Fraunhofer Institute for Secure Information Technology (SIT) Institute Director Rheinstrasse 75 64295 Darmstadt, Germany www.sit.fraunhofer.de Technische Universität Darmstadt Dept. Computer Science, Chair Security in Information Technology IT (SIT) Director of CASED & EC SPRIDE Mornewegstrasse 30 64289 Darmstadt, Germany www.sit.tu-darmstadt.de 14

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information