EFFRA Innovation Portal

Added value and impact View Kanban

Manufacturing the products of the future View Kanban

Complex structures, geometries and scale

Resource efficient, sustainable products

Flexibility in manufacturing means the ability to deal with slightly or greatly mixed parts, to allow variation in parts assembly and variations in process sequence, change the production volume and change the design of certain product being manufactured.

(from https://en.wikipedia.org/wiki/Flexible_manufacturing_system )

Lead time Description

A lead time is the latency between the initiation and execution of a process. For example, the lead time between the placement of an order and delivery of a new car from a manufacturer (from https://en.wikipedia.org/wiki/Lead_time)

Product quality - Quality assurance Description

In business, engineering, and manufacturing, quality has a pragmatic interpretation as the non-inferiority or superiority of something; it's also defined as being suitable for its intended purpose (fitness for purpose) while satisfying customer expectations. (from https://en.wikipedia.org/wiki/Quality_(business))

Quality assurance (QA) is a way of preventing mistakes and defects in manufactured products and avoiding problems when delivering solutions or services to customers; which ISO 9000 defines as "part of quality management focused on providing confidence that quality requirements will be fulfilled". This defect prevention in quality assurance differs subtly from defect detection and rejection in quality control, and has been referred to as a shift left as it focuses on quality earlier in the process i.e. to the left of a linear process diagram reading left to right. (from https://en.wikipedia.org/wiki/Quality_control)

Supply chain and value network efficiency Description

Over the next decade, for a wide range of complex products, the holistic optimization of performance will push towards new multi-material and multi-functional solutions. This will result in a change in the manufacturing paradigm by introducing new methods and process technologies within the factory in order to ensure both the required quality and sufficiently high productivity to guarantee cost-efficient manufacturing. Economic sustainability will require a re-design of products and production processes respecting the manufacturing conditions and strengths of Europe. In turn this will imply maximising manufacturing efficiency by implementing, where adequate, automated, complex and precise manufacturing steps, which can be supported by advanced technologies and knowledge available in Europe. From the perspective of mass production, economic viability is also of fundamental importance. Solutions like the adoption of lighter and higher resistant materials such as titanium, carbon composite remain critical from a cost perspective, while material availability and new regulations concerning End of Life (EoL) already constitute significant challenges for Industry. To achieve solutions which are truly viable, the ratio of cost to performance must be reduced to improve global competitiveness. The assessment of manufacturing related cost and investment factors will be strategic for the selection and optimization of innovative product/process/system solutions. New appropriate cost modelling techniques are needed to evaluate the future cost of products manufactured either by existing or new technologies, considering future scenarios where market needs, production volumes and technology maturation cause the continuous evolution of product/process/system solutions. These challenges must be faced along the entire supply chain involving OEMs, components suppliers and SMEs due to the typical supply chain of a complex product.

Productivity Description

Productivity describes various measures of the efficiency of production. A productivity measure is expressed as the ratio of output to inputs used in a production process, i.e. output per unit of input. Productivity is a crucial factor in production performance of firms and nations. (from https://en.wikipedia.org/wiki/Productivity)

Process reliability - dependability Description

In systems engineering, dependability is a measure of a system's availability, reliability, and its maintainability, and maintenance support performance, and, in some cases, other characteristics such as durability, safety and security. In software engineering, dependability is the ability to provide services that can defensibly be trusted within a time-period. This may also encompass mechanisms designed to increase and maintain the dependability of a system or software. (from https://en.wikipedia.org/wiki/Dependability)

Business development - Access to new markets Description

Business development entails tasks and processes to develop and implement growth opportunities within and between organizations. It is a subset of the fields of business, commerce and organizational theory. Business development is the creation of long-term value for an organization from customers, markets, and relationships. (from https://en.wikipedia.org/wiki/Business_development)

Social sustainability View Kanban

Skills, training, new job profiles

Increasing human achievements in manufacturing systems

Occupational safety and health Description

Occupational safety and health (OSH), also commonly referred to as occupational health and safety (OHS), occupational health or workplace health and safety (WHS), is a multidisciplinary field concerned with the safety, health, and welfare of people at work. (from https://en.wikipedia.org/wiki/Occupational_safety_and_health)

Environmental sustainability View Kanban

Reducing the consumption of energy, while increasing the usage of renewable energy View Kanban Description

Reduction of energy consumption (in %)

Reducing the consumption of water and other process resources. View Kanban Description

Reduction of water consumption (in %)

Reducing emissions in manufacturing processes View Kanban

Reduction of CO2 emissions (in %)

Material efficiency View Kanban Description

Material efficiency is a description or metric which expresses the degree in which raw materials are consumed, incorporated, or wasted, as compared to previous measures in construction / manufacturing projects or physical processes. Making a usable item out of thinner stock than a prior version increases the material efficiency of the manufacturing process. (from https://en.wikipedia.org/wiki/Material_efficiency)

Reduction of material consumption (in %)

Waste minimisation View Kanban Description

Waste minimisation is a set of processes and practices intended to reduce the amount of waste produced. By reducing or eliminating the generation of harmful and persistent wastes, waste minimisation supports efforts to promote a more sustainable society. Waste minimisation involves redesigning products and processes and/or changing societal patterns of consumption and production. (from https://en.wikipedia.org/wiki/Waste_minimisation)

Reduction of waste (in %)

Towards circular ecomomy View Kanban

Co-evolution of products-processes-production systems Description

Innovative re-use of equipment

Technologies and enablers View Kanban

Advanced manufacturing processes View Kanban Description

The efficiency and sustainability of both the manufacturing of actual and future products is still very much determined by the processes that shape and assemble the components of these products. Innovative products and advanced materials (including nano-materials) are emerging but are not yet developing to their full advantage since robust manufacturing methods to deliver these products and materials are not developed for large scale. Research is needed to ensure that novel manufacturing processes can efficiently exploit the potential of novel products for a wide range of applications.

Additive manufacturing

Innovative physical, chemical and physicochemical processes

Photonics-based materials processing technologies

Shaping technology for difficult to shape materials Description

Replication, Equipment for flexible scalable prod/Assembly , Coatings

Methods for handling of parts, metrology and inspection Description

Integration of non-conventional technologies and conventional technologies Description

Integration of non-conventional technologies (e.g. laser, ultrasonic) towards the development of new multifunctional manufacturing processes (including in process concept: inspection, thermal treatment, stress relieving, machining, joining

High productivity and “self assembly” technologies development of conventional (joining, forming, machining) and new micro/nano-manufacturing processes

Flexible Sheet-to-Sheet (S2S) and Roll-to-Roll (R2R) Description

Recycling processes

Mechatronics View Kanban Description

Mechatronics, which is also called mechatronic engineering, is a multidisciplinary branch of engineering that focuses on the engineering of both electrical and mechanical systems, and also includes a combination of robotics, electronics, computer, telecommunications, systems, control, and product engineering. (From https://en.wikipedia.org/wiki/Mechatronics)

Control technologies Description

https://en.wikipedia.org/wiki/Control_system

Control technologies will be further exploiting the increasing computational power and intelligence in order to come forward to the demands of increased speed and precision in manufacturing. Advanced control strategies will allow the use of lighter actuators and structural elements for obtaining very rigid and accurate solutions, replacing slower and more energy-intensive approaches. Learning controllers adapt the behaviour of systems to changing environments or system degradation, taking into account constraints and considering alternatives, hereby relying on robust industrial real-time communication technologies, system modelling approaches and distributed intelligence architectures.

Condition and performance monitoring Description

Continuous monitoring of the condition and performance of the manufacturing system on component and machine level, enables sustainable and competive manufacturing, also by introducing autonomous diagnosis capabilities and context-awareness. Detecting, measuring and monitoring the variables, events and situations will increase the performance and reliability of manufacturing systems. This involves advanced metrology, calibration and sensing, signal processing and model-based virtual sensing for a wide range of applications, e.g. event pattern detection, diagnostics, anomaly detection, prognostics and predictive maintenance.

Intelligent machinery components, actuators and end-effectors Description

Intelligent components enable the deployment of safe, energy-efficient, accurate and flexible or reconfigurable products and production systems. This includes the introduction of smart actuators and the use of advanced end-effectors composed of passive and active materials. Energy technologies are gaining importance, such as (super)capacitors, pneumatic storage devices, batteries and energy harvesting technologies.

Energy technologies

Advanced materials in manufacturing systems View Kanban Description

Production equipment does not yet take full advantage of the benefits that new and advanced materials offer, and factories of the future will need more advanced equipment to meet the requirements for energy efficiency and environmental targets and to meet new demands for a connected world. The future will therefore see modern, lightweight, long-lasting/flexible and smart equipment able to produce current and future products for existing and new markets. There will be a step change in the construction of such equipment, leading to a sustainable manufacturing base able to deliver high added value products and customised production. Increased smartness in the manufacturing equipment also enables a systems approach with machines able to learn from each other and impacting on the human-machine interface.

Smart and functional materials Description

Smarter equipment and manufacturing systems with self-diagnosis (temperature, vibrations, noise) and embedded sensing, memory or active architecture, with functional materials allowing them to adjust work processes and operations to variances in structure, shape and material composition (right first time manufacture).. Capture of machine data through this inherent ‘smartness’ for communication between machines (for M2M), at factory level and through supply chains for a systems approach to manufacturing and meeting customer demand. New equipment components taking advantage of new designs and advanced materials (e.g. gears and transmissions providing longer lifetime of equipment, active surfaces that can embed and release lubricant when needed (higher pressures or temperatures))

Information and communication technologies View Kanban

Digital manufacturing platforms Description

IoT - Internet of Things Description

The Internet of Things (IoT) is a system of interrelated computing devices, mechanical and digital machines, objects, animals or people that are provided with unique identifiers (UIDs) and the ability to transfer data over a network without requiring human-to-human or human-to-computer interaction. (from https://en.wikipedia.org/wiki/Internet_of_things)

Human Machine Interfaces View Kanban

Augmented reality Description

Virtual reality Description

Advanced and ubiquitous human machine interaction Description

Advanced machine interaction with humans through ubiquity of mobile devices will enable users to receive relevant production and enterprise-specific information regardless of their geographical location and tailored to the context and the skills/responsibilities they own. Interactions with ICT infrastructures and equipment will be natural language-like

Data visualisation Description

Data analytics, processing and AI View Kanban

Data acquisition Description

Data acquisition is the process of sampling signals that measure real world physical conditions and converting the resulting samples into digital numeric values that can be manipulated by a computer. Data acquisition systems, abbreviated by the acronyms DAS or DAQ, typically convert analog waveforms into digital values for processing. The components of data acquisition systems include:

Sensors, to convert physical parameters to electrical signals.
Signal conditioning circuitry, to convert sensor signals into a form that can be converted to digital values.
Analog-to-digital converters, to convert conditioned sensor signals to digital values.

Data acquisition applications are usually controlled by software programs developed using various general purpose programming languages
So, as a summary, Data acquisition is in itself a vast group of protocols, technologies, sensors, hardware and software…

(from https://en.wikipedia.org/wiki/Data_acquisition)

Data storage View Kanban Description

Data storage is the recording (storing) of information (data) in a storage medium. DNA and RNA, handwriting, phonographic recording, magnetic tape, and optical discs are all examples of storage media. (from https://en.wikipedia.org/wiki/Database)

ICT solutions for next generation data storage and information mining

Relational databases Description

Non-relational database (NoSQL) Description

Data processing View Kanban Description

Cloud computing, edge computing View Kanban

Cloud computing Description

https://en.wikipedia.org/wiki/Cloud_computing

Cloud computing can be deployed as private cloud, public cloud, hybrid cloud

Digital Manufacturing Platforms can be ran into IaaS, PaaS or SaaS.
Considerations need to be made to security measures in the cloud (kubernetes, container security), identity & access, or carefully considering the security measures by the respective cloud services providers.

Edge computing Description

Data analytics

Data modelling Description

Cognitive and artificial intelligence (AI) technologies - machine learning View Kanban Description

In computer science, artificial intelligence (AI), sometimes called machine intelligence, is intelligence demonstrated by machines, in contrast to the natural intelligence displayed by humans and animals. Computer science defines AI research as the study of "intelligent agents": any device that perceives its environment and takes actions that maximize its chance of successfully achieving its goals. Colloquially, the term "artificial intelligence" is used to describe machines that mimic "cognitive" functions that humans associate with other human minds, such as "learning" and "problem solving" (from https://en.wikipedia.org/wiki/Artificial_intelligence)

Fuzzy logic Description

Fuzzy logic is a form of many-valued logic in which the truth values of variables may be any real number between 0 and 1 inclusive. It is employed to handle the concept of partial truth, where the truth value may range between completely true and completely false (from https://en.wikipedia.org/wiki/Fuzzy_logic)

Neural networks Description

Artificial neural networks (ANN) or connectionist systems are computing systems vaguely inspired by the biological neural networks and astrocytes that constitute animal brains. The neural network itself is not an algorithm, but rather a framework for many different machine learning algorithms to work together and process complex data inputs.[4] Such systems "learn" to perform tasks by considering examples, generally without being programmed with any task-specific rules. (from https://en.wikipedia.org/wiki/Artificial_neural_network)

Genetic algorithms Description

In computer science and operations research, a genetic algorithm (GA) is a metaheuristic inspired by the process of natural selection that belongs to the larger class of evolutionary algorithms (EA). Genetic algorithms are commonly used to generate high-quality solutions to optimization and search problems by relying on bio-inspired operators such as mutation, crossover and selection. (https://en.wikipedia.org/wiki/Genetic_algorithm)

Heuristics Description

A heuristic function, also called simply a heuristic, is a function that ranks alternatives in search algorithms at each branching step based on available information to decide which branch to follow. (from https://en.wikipedia.org/wiki/Heuristic_(computer_science))

System modelling, simulation and forecasting Description

Simulation (often referred to as digital twins) is the imitation of the operation of a real-world process or system. The act of simulating something first requires that a model be developed; this model represents the key characteristics, behaviors and functions of the selected physical or abstract system or process. The model represents the system itself, whereas the simulation represents the operation of the system over time. (from https://en.wikipedia.org/wiki/Simulation)

Programming Frameworks – Software Development Kits (SDKs) View Kanban

FIWARE View Kanban Description

Smart Industry Context Information Management and Persistence View Kanban

The Orion Context Broker Generic Enabler Description

The Orion Context Broker Generic Enabler is the core and mandatory component of any “Powered by FIWARE” platform or solution. It enables to manage context information in a highly decentralized and large-scale manner. It provides the FIWARE NGSIv2 API which is a simple yet powerful Restful API enabling to perform updates, queries or subscribe to changes on context information.

The STH Comet Generic Enabler Description

The Cygnus Generic Enabler Description

The Cygnus Generic Enabler brings the means for managing the history of context that is created as a stream of data which can be injected into multiple data sinks, including some popular databases like PostgreSQL, MySQL, MongoDB or AWS DynamoDB as well as BigData platforms like Hadoop, Storm, Spark or Flink.

Smart Industry NGSI Agents Framework to Real World View Kanban

The IDAS Generic Enabler

The Fast RTPS Incubated Generic Enabler

The OpenMTC Incubated Generic Enabler

Smart Industry Information Processing View Kanban

The Wirecloud Generic Enabler

The Knowage Generic Enabler

The Kurento Generic Enabler

The Cosmos Generic Enabler

The FogFlow Incubated Generic Enabler

The AEON Incubated Generic Enabler

The Domibus Incubated Generic Enabler

PROTON

PERSEO

CEPHEUS

XML3D

Augmented Reality (FIWARE)

Quantum Leap

Smart Industry Context Data/API Management, Publication and Monetization View Kanban

The CKAN extensions Generic Enabler

The Keyrock Identity Management Generic Enabler

The Wilma proxy Generic Enabler

The AuthZForce PDP/PAP Generic Enabler

The Biz Framework Generic Enabler

Programming Languages

Operating systems

Architecture View Kanban

Collaborative and decentralized application architectures and development tools

Manufacturing strategies View Kanban

From Product/Services Systems (product centric approach) to Services through Product (solution oriented approach) Description

The “servitization wave” of manufacturing has already spread out to the advanced countries and many leading high-capital investment sectors (e.g. aerospace and automotive) are already competing in the international markets providing to their customers a composition of services for product operation (e.g. maintenance, reliability, upgrades), and end-of-life use (e.g. re-manufacturing, recycling, disposal). Especially SMEs are trying to compete in the international markets with their niche solutions, adding innovative services to their value propositions. Such innovative business models are based on a dynamic network of companies, continuously moving and changing in order to afford more and more complex compositions of services. In such a context, there is a strong need to create distributed, adaptive, and interoperable virtual enterprise environments supporting these undergoing processes. In order to do so, new tools must be provided for enabling and fostering the dynamic composition of enterprise networks. In particular, SMEs call for tools and instruments which follow them in their continuously re-shaping process, enabling collaboration and communication among the different actors of the product-service value chains. New IPR methods are also needed.

From delocalisation to Globalisation 2.0 Description

The rise of the transport cost, the need for higher efficiency and productivity, the customer demand for greener product, the higher instability of raw material and energy prices and the shortening of the lead-time production will push for a more critical assessment of the delocalisation strategy towards low cost countries. Service-led personalised products will require a new paradigm for western countries re-industrialisation (Globalisation 2.0), moving back manufacturing of selected products.

Innovation Description

Finally, innovation should become a business model in itself and a continuously run business process (the factory innovation): increasing the competitiveness through the design of a new product requires the development of a company strategy where product and process innovation is seen as a permanent, widely distributed, multi level, social oriented and user centric activity. Collaboration among companies of different sectors to exploit multi-disciplinary cross fertilisation is also envisaged. New tools, methodology and approaches for the user experience intelligence (i.e. social networks, crowd sourcing, social science methods, qualitative and quantitative, to generate insights, models and demonstrations, etc.) need to be addressed and explored.

From User-centric design to user well-being design Description

According to the new paradigm of sustainability, the importance of the user is increasing. The user is at the same time a customer, a citizen and a worker. The well-being of the user could therefore become a winning strategy both for B2B as well as B2C companies. More detailed modelling behaviour can help the development of innovative solutions, aiming at user comfort, safety, performance, style; this requires new competitive focus for the development of these innovative solutions and new business models to support a quick and dynamic response to market changes.

Virtualisation and digitalisation of the interrelation between manufacturing and new business models Description

As products are today virtually designed and tested before being engineered for production, new business models need also to have tools to support the company to design and test them before they are implemented through products, services and manufacturing processes. The complexity of these tools is higher than that of tools for product development, due the need for holistic modelling of product and processes.

Skills - Knowledge-workers Description

The European Factories of the Future are expected to provide global manufacturing competitiveness, but also to create a large amount of work opportunities for the European population. Future factory workers are therefore key resources for industrial competitiveness as well as important consumers. However, as previously stated, the changing demographics and high skill requirements faced by European industry pose new challenges. Workers with high knowledge and skills (“knowledge workers”) will be scarce resources. Research efforts within Horizon 2020 must address ways to increase the number of people available for, and interested in, manufacturing tasks. This includes the following important aspects of the human resources: - New technology-based approaches to accommodate age-related limitations, through ICT and automation - New technical, educational, and organisational ways to increase the attractiveness of factory work to the young potential workforce, the existing workforce, the potential immigrant workforce, and the older workforce - New approaches to skill- and competence development, as well as skill and knowledge management, to increase competitiveness and be part of the global knowledge society - New ways to organise and compensate factory knowledge workers - New factory human-centric work-environments based on safety and comfort - Ways to integrate future factory work in global and local societal agendas and social patterns

Digitalisation pathways View Kanban

Autonomous Smart Factories View Kanban

General purpose software View Kanban

Spreadsheet/texteditor ERP

Spreadsheet/texteditor MOM

Manual data acquisition

Dedicated software in silos View Kanban

Dedicated ERP software implemented

Dedicated MOM Software Implemented

Data acquisition/monitoring/analysis (SCADA) implemented but isolated

Connected IT and OT View Kanban

ERP-MOM systems connected

MOM-SCADA systems connected

IoT enabled SCADA, MOM-MES, ERP (…) connectivity

Humans actively connected

Off-line optimisation View Kanban

Off-line Digital Manufacturing Process Optimisation on factory level

Off-line Digital Manufacturing Process Optimisation on machine level

Platform enabled optimisation Description

Digital platforms will be successful if they provide a clear value proposition to the user groups involved. In general, digital platforms offer added-value basd upon three main mechanisms:

Reduction of transaction costs
Network effects
Use of data integration for new services (mainly optimisation) and business models

Based upon these mechanisms, added-value can be created in a variety of perspectives (see for instance here)

.

Realtime optimisation View Kanban

Autonomous /online/realtime Manufacturing Process Optimisation on factory level

Autonomous /online/realtime Manufacturing Process Optimisation on machine level

Hyperconnected Factories View Kanban

General purpose software View Kanban

Spreadsheet and text editor based SCM, CRM Description

Spreadsheet/texteditor ERP

Administrative transactions digitalised

Dedicated software in silos View Kanban

ERP implemented Description

SCM implemented Description

Basic internal connectivity View Kanban

ERP and SCM connected

Dedicated IT connection to some supply chain partners View Kanban

SCM - MES - ERP Software connected to SCM - MES - ERP software of suppliers or customers

Forecasting of required capabilities Description

High level planning using dedicated digital connections

Dynamic IT connections to new supply chain partners View Kanban

Common digital platform used for tenders and bidding Description

Visibility of work in progress

Dynamic detailed scheduling and rescheduling

Collaborative Product-Service Factories View Kanban

Product, no Service View Kanban Description

Use of CAD systems

Use of PDM systems Description

Product and disjoint Service View Kanban Description

PLM Systems (integrating CAD and PDM) Description

Use of CRM Systems Description

Service-enabled Product Design View Kanban Description

Voice of suppliers Customers / Users

Service orient. Product Design (integration of PLM and CRM)

Product-Service Innovation View Kanban Description

Closed loop PSS Design (Connected to users data)

Service Innovation and new Business Models

Product-Service Symbiotic Evolution View Kanban Description

Digital Platforms for next generation PS Systems lifecycle management

Cybersecurity View Kanban Description

Security level 1 View Kanban

Physical and logical password

Malware (including Ransomware, APT, Virus, ...) protection Description

Malware is a broad term that describes a computer program (software) that was intentionally developed to cause damage to a computer system, mainly with the intention in financial gains - but more frequently to cause business interruptions, being held hostage or to simply steal information.

For over two decades malwares have existed, specifically written to exploit vulnerabilities in computer systems, that can be used for personal gains. It is a form of cybercrime to use them, to break into someone else system. In most countries in the world, it is not a crime to develop malware - only to exploit it against someone else.

Malwares exist in many different forms. What used to be viruses, that were sent generally via email in the past, have transformed into specifically engineered pieces of software for specific purposes - the most infamous one today being Stuxnet. For viruses, security software and firewalls have been equipped to detect them and quarantaine them before they can even be seen by the destination email address. But through phising attacks (emails with a malicious hyperlink - URL) or man in the middle attacks (website that have been compromised and redirect traffic) users are still being exposed to malware.

Malware can also enter by means of USB-sticks, pieces of software that don't belong on an industrial control systems or manufacturing system (games, apps, ...) which can sometimes contain malware of pieces of them.

Ransomware is a form of malware that typically starts encrypting data, once it has been activated. To decrypt a ransom has to be paid. Ransomware can be avoided by 1) frequently upgrading the underlying software to avoid exploitation of vulnerabilities, 2) isolating the industrial systems from office and other types of systems, 3) restricting access to the systems by means of physical and logical limitations.

APTs (Advanced Persistent Threats) usually are a combination of multiple attacks and threats, intended towards a specific target. APT's will combine the detection of vulnerabilities with the exploitation of malware and ransomware. APT's are typically being coordinated by nation state actors or organized crime.

Digital Manufacturing Platforms should be concerned about the abuse of their platforms by malicious users, and should prevent by all means available man in the middle attacks or similar attacks where redirects of the platform end up on the download of malwares. By running the Digital Manufacturing Platforms in the cloud, additional security measures can be put in place specifically monitoring the activities of specific containers for unexpected calls or actions. Manufacturing companies should further give notice to the continuous protection of end point devices and active monitoring of network traffic on top of the detection of malicious activities.

Logging and monitoring, machine learning and AI - Cybersecurity Controls Description

The process of recording activities happening on an IT system, including OT systems operated via IT. Monitoring and logging typically occurs on network level, where packages are being sent over TCP/IP (internet protocol) and captured at the edges, in the controlling entities (routers and gateways) or as an in-line device (such as a firewall, ids or ips). Network traffic typically records origin and destination IP address, the type of application, and contents. Some of the traffic could have been encrypted.

Network traffic can be captured via a monitoring port on network devices. This results in the recording of all events that have been instructed to be logged. During the monitoring phase, this near real time data can be evaluated and analyzed. On the basis of the traffic patterns can be detected that allow the understanding of how applications (such as ransomware) arrives inside the organization or on how confidential data might leave the organization.

Logging also happens on the device level, allowing to identify the activities taking place on the device (types of applications being used and identities of people accessing the devices). This allows to identify a user with a certain transaction, or allows better for the detection of data manipulation or data theft to take place. With Machine Learning techniques some behavioral actions on a network will be detected prior to the malicious action of theft or abuse taking place. On the basis of patterns and pattern recognition, actions and events which are being used by criminals can be detected and indicating that an incident is taking place.

By utilising similar data from the outside, incidents happening in other locations, in other factories and companies can be recorded and similar patterns (signatures) can be signaled amongst trusted partners. This allows for preventative instructions inside the intrusion prevention systems, which will be able to block IP addresses, block users and applications.

Finally the monitoring and logging is important for forensics. Once an incident has happened, the recorded sessions allow to understand what exactly happened, collect evidence and use as a means for future preventive actions.

In Digital Manufacturing Platforms a logging facitlity should be enabled allowing to record the manipulations and transactions that have happened inside the platform itself, and recording the access and identity of the persons who have been controlling the platform itself.

(Systemic) Penetration Testing Description

Penetration Testing (Pentesting) is a term used by Cybersecurity practitioners to describe the process of diligently assessing potential vulnerabilities in the information security infrastructure, including in the case of Manufacturing and Industrial environments also operational technology infrastructures. It typically uses a series of tools to automate the process, but will make use of the expert experiences focusing on known tricks and vulnerabilities. The goal for the pentester is to detect and report the leaks, but not to exploit them. It is also refered to as ethical hacking, in the perspective of not intentionally manipulating equipment, data, stealing data or leaving exploitable software behind. Pentesting is the ultimate means to demonstrate both the capabilities of the security infrastructure, as it is the way to identify the shortcomings upfront. A pentesting report will allow security managers to support their activities by indicating risks, threats, vulnerabilities and indicating the needs for a risk management process. Companies with a higher level of maturity will organize a systemic approach, allowing for pentesting to take place periodically, or following specific changes happening inside the infrastructure. This can also take place in the form of contests, having for instance red teams (the attackers) playing against the defenders (blue team); both utilizing their experiences of pentesting. With a Responsible Disclosure, organizatoins and individuals can call upon the community of ethical hackers (white hats) to help identifying vulnerabilities. These will be reported sometimes in return for a small bonus. Large hacking contests can be organized to test complete platforms. When vulnerabilities are found in technologies, including Platforms which are being sold, they are being reported as CVE's after a grace period of the reporting for about 3 to 6 months. For Digital Manufacturing Platforms pentesting should also take place in the platform itself, by performing software testing and testing the Platform being put into an operational environment, as it uses web and internet technologies making it susceptible for exploitation.

Security level 2 View Kanban

Transmission data protection

Password policy

Physical security

Multi-factor authentication

Security level 3 View Kanban

Security training and awareness

Peronnel vetting procedures

User account management

Token management

Security level 4 View Kanban

Privileged account control

Database integrity

Software integrity

Back Office data flow security

Intrusion detection

Security level 5 View Kanban

Digital platform environment segregation

CyberSecurity incident response capability - CSIRT Description

Cyber incident reponse capability is referred to as the means of an organization to cope with a cyber incident. Usually organized in a dedicated CSIRT (CyberSecurity Incident Response Team) or a CERT (Cyber Emergency Response Team) has developed a procedure for dealing with incidents (leakages, break-ins, attacks, ...) being detected in the organization and taking the necessary measures to mitigate, prevent and respond. This dedicated team should be empowered to be in control to prevent additional loss, and to fight an attack as it happens. That means that they are required to have a good understanding of the infrastructure and have the necessary means to deflect, increase security, limit access and ensure forensic means to collect during an incident. They should be in direct response and interaction with the crisis management team. During normal operations they will support the organization Security Operations (SOC) Team onsite or remote in coping with day to day alarms, investigating their threat levels and managing with the investigation of minor incidents.

More information on th organization of CSIRTS can be find with various sources such as : https://resources.sei.cmu.edu/asset_files/Handbook/2003_002_001_14102.pdf

A dedicated organization is working with different developments and challenges of the CSIRT and CERT teams moving forwards, called FIRST https://www.first.org/

User session integrity

Critical activity outsourcing

Transaction controls

Significant innovations and lessons learned View Kanban

Significant innovations and achievements

Significance of the results for SMEs

Specific use case requirements

Lessons learned

Standards, standardisation and regulation View Kanban

Standards View Kanban

Semantic web standards View Kanban Description

Web Ontology Language (OWL) Description

IEC 61499 Description

The international standard IEC 61499, addressing the topic of function blocks for industrial process measurement and control systems, was initially published in 2005. The specification of IEC 61499 defines a generic model for distributed control systems and is based on the IEC 61131 standard. (see https://en.wikipedia.org/wiki/IEC_61499 and IEC 61499 - International Electrotechnical Commission.

IEC 61131 Description

IEC 20922 (MQTT) Description

OPC-UA Description

IEEE 802.1 TSN Description

IEEE 802.15.4 Description

GS1 standards Description

OAGIS Description

UBL - Universal Business Language Description

Universal Business Language (UBL) is an open library of standard electronic XML business documents for procurement and transportation such as purchase orders, invoices, transport logistics and waybills. UBL was developed by an OASIS Technical Committee with participation from a variety of industry data standards organizations. Version 2.1 was approved as an OASIS Standard in November 2013 and an ISO Standard (ISO/IEC 19845:2015) in December 2015

(From https://en.wikipedia.org/wiki/Universal_Business_Language)

IPC-CFX Description

OGC SensorThings API Description

SensorThings API is an Open Geospatial Consortium (OGC) standard providing an open and unified framework to interconnect IoT sensing devices, data, and applications over the Web. It is an open standard addressing the syntactic interoperability and semantic interoperability of the Internet of Things. It complements the existing IoT networking protocols such CoAP, MQTT, HTTP, 6LowPAN. While the above-mentioned IoT networking protocols are addressing the ability for different IoT systems to exchange information, OGC SensorThings API is addressing the ability for different IoT systems to use and understand the exchanged information. As an OGC standard, SensorThings API also allows easy integration into existing Spatial Data Infrastructures or Geographic Information Systems.

(from https://en.wikipedia.org/wiki/SensorThings_API)

Standardisation View Kanban

Standardisation via European Standardisation Organisations View Kanban

Registered work item leading to EN (European Norm), TS (Technical Specification), TR (Technical Report)

Registered work item leading to CEN-CENELEC Workshop Agreement) or ETSI GSs (Group Specifications)

Standardisation via International Standardisation Organisations (ISO, IEC, ITU-T)

Standardisation via other Standards Developing Organisations (SDO) (eg. W3C, IEEE, ASTM, etc..)

Compliance to Rules and regulations Description

In general, compliance means conforming to a rule, such as a specification, policy, standard or law. Regulatory compliance describes the goal that organizations aspire to achieve in their efforts to ensure that they are aware of and take steps to comply with relevant laws, policies, and regulations. (from https://en.wikipedia.org/wiki/Regulatory_compliance)

ICT performance characteristics View Kanban

Data communication and interoperability View Kanban

Integration with legacy systems

Platform level interoperability View Kanban

AAA - Access, Authorisation and Authentication Description

Authorisation is the process of allowing an entity (humans, systems or devices) to access information systems or facilities where information and processing capabilities are being stored. More practical in an industrial setting for Digital Manufacturing Platforms, an authorized person can get access to an operational machine in order to update it, or investigate its contents. Unauthorized access could be someone who has been able to access the network from the outside, performing actions that have not been authorized and cannot be justified.

Authentication is a means to assess the authorization rules of an entity by means of a set of instruments. In the case of Digital Manufacturing Platforms it would be the instruments like user name and password, and in addition a second factor such as a physical token or a mobile phone that can authenticate the person accessing the platform. The physical token connects the person to something he has, the password to something he knows.

A third A in the AAA-architecture is related to Access. Once authorized, and authenticated, access can be granted to the location, system, application, and / or information. Access control levels can thus be set up on different layers. These can be physical (access to the country, to the plant, to the building, the room and the environment where the system is located), and logical (using authentication technologies). In Digital Manufacturing Platforms this means the systems could be accessible only on premise, in the factory or for instance in the (private or public) cloud. As a result different access mechanisms needs to be considered, depending on the risk and intended security levels and controls.

https://en.wikipedia.org/wiki/AAA_(computer_security) ; https://en.wikipedia.org/wiki/Authorization

User Acccess and Rights Management

Motivating Scenario / Use-Case

Application level interoperability View Kanban

Web-services / Composability

Modular Design and Deployment Approaches

Open APIs and Communication Protocols View Kanban

Wireless communication protocols

Integration level interoperability View Kanban Description

Semantic/information interoperability

Data/object model interoperability - Data exchange formats - APIs

Connectivity & network interoperability – communication protocols

APIs and Integration Protocols Description

API's (and REST API's) need to be carefully protected through mechanisms limiting access on the basis of identity and authorizing and authenticating through managed and controlled mechanisms. Usually certificates and IP-addresses are being used to restrict access to API's, but a more granular approach is advisable from a Security Architecture perspective. Other architectures being used as Integratio Protocols in Digital Manufacturing Platforms are JSON (for its near real time capabilities) and MQ (message bus architectures). The letter being less secure, since it provides a continuous stream of information which is being sent to a destination.

Cybersecurity View Kanban Description

Risks addressed by security

Risk or security assessment

Trustworthy Systems in Platform Lifetime

A Security Architecture for Digital Manufacturing Platforms Description

A Security Architecture is a conceptual design that addresses various aspects of security in a system and resulting application, set of applications and components that make up the system. It is being used to support the design, development, implementation and operation of these systems, which can include Manufacturing Platforms. For Digital Manufacturing Platforms it addresses necessities and potential risks identified following potential scenario's or within a specific environment. It tries to present a comprehensive perspective of various security concepts on the conceived OT and IT architecture which includes networks, systems and equipment connected to these networks, the communication protocols and operating systems being used, the application development and operational process and recommends the use of security measures using security controls. Having a Security Architecture also helps both the design and integration process, supports identification of incidents and the security monitoring, speeds up discussions with partners for a level play field and best practices and is generally reproducible. Digital Manufacturing Platforms tend to try to bridge operational systems with information technology, such as the use of analytics, data collection and distribution and visualization that can lead to automated actions by these systems on the basis of unattended and unsupervised decisions and control implementations. To avoid physical harm, collateral damage other safety or cybersecurity issues, having a Security Architecture supporting the Digital Manufacturing Platforms should allow developers and companies at least to consider the various aspects and challenges of security in an organized and comprehensible manner. Architectures can follow standards such as IEC62443, ISO27k or NIST800.16, or any alternative scheme, but that needs to complete towards the digital and operational platforms.

Specific security standard(s) addressed and impact on implementation

Used guidelines and specific frameworks for security and/or privacy by design

Security mechanisms and technologies View Kanban

Distributed ledger technology Description

Real-time communication capability

Services

Safety

Privacy

Scalability

Data communication infrastructure

Resilience

Business model aspects View Kanban

Business model aspects of digital platform deployment View Kanban Description

Here the term “business models” is used in a wide sense, complementing the technological and organisation aspects of digital platforms.

One proven tool for analysing and shaping business model is the “Business Model Canvas”. When trying to apply this tool to platforms, it appears that some elements apply to platform-based business models (e.g. the “value proposition”) and that tools as the ”canvas” can provide a first inspiration.

However, for digital platforms the traditional business models view in the narrow sense falls short of describing the business and relationship aspects of platforms. In particular, the strict “partner” and “customer”- view has to be replaced by an ecosystem-perspective. In addition, this ecosystem can be highly dynamic, which means that platforms can move into new user groups, change their features and might have the typical effects. Another difference is the central role of data for platforms, meaning that data governance is one of the essential elements of the value proposition of platforms.

Business ecosystem View Kanban Description

By definition, by bringing together actors from different sides, platforms are defined by their stakeholders. There are core stakeholders (target customers, core suppliers, value chain partners), but it should not be forgotten that there are also actors with an indirect or external interest in the activities in the platform (competitors, existing customers not addressed through the platform). A platform also defines the relationship with and the channels with the different user groups.

Target clients Description

Interaction with other (commercial) digital platforms Description

Other eco-system aspects Description

Other eco-system aspects can be:

What are the value chain implications?
Is the network open or closed? Is there an intention to expand?
Is it a vertical, sectorial platform or a cross-cutting, horizontal platform?
How are the relationships defined?

Service model View Kanban Description

In order to be sustainable, the value proposition must be mirrored by a revenue stream, which is orchestrated by the platform. This value streams can be direct (pay-per-use, subscription, sales etc.), but could also be indirect (increasing price of products, increasing market share).

Platform as a Service (PaaS) Description

Platform as a Service (PaaS) or application platform as a Service (aPaaS) or platform base service is a category of cloud computing services that provides a platform allowing customers to develop, run, and manage applications without the complexity of building and maintaining the infrastructure typically associated with developing and launching an app. (from https://en.wikipedia.org/wiki/Platform_as_a_service)

Software as a Service (SaaS) Description

Software as a service (SaaS /sæs/) is a software licensing and delivery model in which software is licensed on a subscription basis and is centrally hosted. It is sometimes referred to as "on-demand software". (from https://en.wikipedia.org/wiki/Software_as_a_service)

Infrastructure as a Service (IaaS) Description

Payment modalities View Kanban

Pay per use - Pay per duration of use Description

Pay per saved unit of X - pay per added value Description

Data ownership - data governance Description

At the core of all potential industrial use case scenarios of platforms are data. When formerly isolated data are shared, suddenly a new set of factors arises, both in terms of new external factors, but also in terms of business/microeconomic implications. Therefore, at the core of every digital platform must be a legally, organizationally and commercially viable concept for data sharing/trading/exchange.
When shaping this model, the following questions must be answered:

What is the legal arrangement for data “ownership”? Can users classify their data, is staggered approach possible (closed, traded or open data)? What are legal means that the platform uses to ensure the confidentiality of data ? (Trade Secrets, data base directive)
Transparency: Can users monitor/control the sharing of data with third parties? Are there “expiration dates” for data use?
Is the legal setting a fixed standards (“general conditions”) or is it a flexible, individual approach? Are model contracts available?
Are there sectorial regulatory requirements concerning data?
How far is portability and change of platform possible?
Who is responsible in the case of breaches of confidentiality?
How is fairness/ a level playing field between the platform and smaller players ensured ?

Added Value from user perspective View Kanban Description

Digital platforms will be successful if they provide a clear value proposition to the user groups involved. In general, digital platforms offer added-value basd upon three main mechanisms:

Reduction of transaction costs
Network effects
Use of data integration for new services (mainly optimisation) and business models

Based upon these mechanisms, added-value can be created in a variety of perspectives, such as the process perspective (what process or activity is optimised?) or the KPI perspective (what KPI is the focus of the optimisation). This added value enables the financing of the digital processes through e.g.increased price margins, market shares or reduced costs.

Business requirements

Data Liability

Software ownership View Kanban

Proprietary software Description

Proprietary software is non-free computer software for which the software's publisher or another person retains intellectual property rights—usually copyright of the source code, but sometimes patent rights. (from https://en.wikipedia.org/wiki/Proprietary_software)

Open source Description

Open-source software (OSS) is a type of computer software whose source code is released under a license in which the copyright holder grants users the rights to study, change, and distribute the software to anyone and for any purpose. Open-source software may be developed in a collaborative public manner. According to scientists who studied it, open-source software is a prominent example of open collaboration. (from https://en.wikipedia.org/wiki/Open-source_software)

Infrastructure ownership Description

In the same way that software can be developed and commercialized using different business models according to the software ownership, digital platforms could be developed and commercialized using different business models according to the infrastructure ownership. Different infrastructure ownerships can be identified in this chapter and also their business models (like renting, pay per use…)

Structured Wiki

Show all