EFFRA Innovation Portal

Structured Wiki

ICT performance characteristics Kanban

To expand the headers use the

button.

Expand the full list

Security for information and infrastructure related to digital systems

Cybersecurity Standards for digital manufacturing Description

This is a collection of Industrial CyberSecurity Standards and de-facto standards relevant for organizations designing, developing, selecting, installing and operating digital manufacturing platforms. The selection was made on the basis of expert advisory and selections by researchers in their assessment of relevant State of the Art. Next to the standards, readers should also consider the works ongoing in standardisation efforts.

De Facto industrial CyberSecurity standard developments

Cloud Security Alliance (CSA) Description

Cloud Security Alliance (CSA) – Consensus Assessment Initiative Questionnaire (CAIQ) Description

An industry-accepted way to document what security controls exist in IaaS, PaaS, and SaaS services, providing security control transparency. It provides a set of Yes/No questions a cloud consumer and cloud auditor may wish to ask of a cloud provider to ascertain their compliance to the Cloud Controls Matrix (CCM).

It helps cloud service providers and their customers to gauge the security posture and determine if their cloud services are suitably secure. In addition to improving the clarity and accuracy, it also supports better auditability of the CCM controls.

https://cloudsecurityalliance.org/artifacts/consensus-assessments-initiative-questionnaire-v3-1/

IIC – SMM

Industrial Internet Consortium (IIC) – Industrial Internet Security Framework (IISF) Description

The Industrial Internet Security Framework (IISF) is a cross-industry-focused security framework comprising expert vision, experience and security best practices. It reflects thousands of hours of knowledge and experiences from security experts, collected, researched and evaluated for the benefit of all IIoT system deployments.
It builds on the ‘Industrial Internet of Things Reference Architecture’ (IIRA), that lays out the most important architecture components, how they fit together and how they influence each other. Each of these components must be made secure, as must the key system characteristics that bind them together into a trustworthy system.

It reviews security assessment for organizations, architectures and technologies. It outlines how to evaluate attacks as part of a risk analysis and highlights the many factors that should be considered, ranging from the endpoints and communications to management systems and the supply chains of the elements comprising the system. Different roles are identified that should be considered in conjunction with the key characteristics, including, owner/operator, system integrator/builder and equipment vendor. Each role offers different risk management perspectives that affect the decisions regarding security and privacy.

https://www.iiconsortium.org/IISF.htm
https://www.iiconsortium.org/pdf/IIC_PUB_G4_V1.00_PB-3.pdf

Namur, WG 4.18 Automation Security Description

NAMUR, the "User Association of Automation Technology in Process Industries", is an international association of user companies (established in 1949) and represents their interests concerning automation technology. NAMUR numbers over 150 member companies. The achievement of added value through automation engineering is at the forefront in all NAMUR member company activities. NAMUR conducts a frank and fair dialogue with manufacturers.

NAMUR’s Automation Security working group 4.18 addresses issues including the following topics in the context of its experience exchange, its concept developments, formulation of requirements to be met by automation solutions and its involvement in national and international standardisation.

Relevant recommendations and worksheets

NA 163 Security Risk Assessment of SIS (Safety Instrumented Systems)
NA 169 Automation Security Management in the Process Industry. NA 169 describes the steps to systematically build a Cyber Security Management System (CSMS) for automation systems in the process industry in order to ensure the correct operation of the functional safety devices, to protect critical data and to ensure the availability and reliability of the plants

See Namur website WG 4.18 pages

OMG – Eclipse Foundation Description

OPC-UA Description

Open Web Application Security Project® Foundation (OWASP) Description

Platform I4.0 WG Sicherheit, RAMI Security model developments Description

See https://www.plattform-i40.de/PI40/Redaktion/EN/Standardartikel/working-group-03.html

Asociated content:

Associated Metamodel Asset Administration Shell for Security
Access control for Industrie 4.0 components for application by manufacturers, operators and integrators
Specification - Details of the Asset Administration Shell - Part 1
Artificial Intelligence (AI) in Security Aspects of Industrie 4.0
Cybersecurity Regulatory Framework in Germany/EU and USA (GER/ENG/CHN)Industrie 4.0 Security Guidelines

Access control for Industrie 4.0 components for application by manufacturers, operators and integrators

Metamodel Asset Administration Shell for Security Description

The overall concept is the use of the Admnistrative Asset Shell (AAS). It is requesting access to an object. In the context of an AAS an object typically is a submodel or a property or any other submodel element connected to the asset. The implemented access control mechanism of the AAS evaluates the access permission rules (2a) that include constraints that need to be fulfilled w.r.t. the subject attributes (2b), the object attributes and the environment conditions (2d). The focus is on access control. An object in the context of ABAC corresponds typically to a submodel or to a submodel element. The object attributes again are modelled as submodel elements. Subject Attributes need to be accessed either via an external policy information point or they are defined as properties within a special submodel of the AAS. A typical subject attribute is its role. The role is the only subject attribute defined in case of role based access control. Optionally, environment conditions can be defined. In role based access control no environment conditions are defined. Environment conditions can be expressed via formula constraints. To be able to do so the values needed should be defined as property or reference to data within a submodel of the AAS.

https://www.plattform-i40.de/PI40/Redaktion/EN/Downloads/Publikation/Details-of-the-Asset-Administration-Shell-Part1.html

ROS – SROS Description

European industrial CyberSecurity standards

CEN/CLC/JTC 13 : Cybersecurity and Data Protection Description

Development of standards for cybersecurity and data protection covering all aspects of the evolving information society including but not limited to: - Management systems, frameworks, methodologies - Data protection and privacy - Services and products evaluation standards suitable for security assessment for large companies and small and medium enterprises (SMEs) - Competence requirements for cybersecurity and data protection - Security requirements, services, techniques and guidelines for ICT systems, services, networks and devices, including smart objects and distributed computing devices Included in the scope is the identification and possible adoption of documents already published or under development by ISO/IEC JTC 1and other SDOs and international bodies such as ISO, IEC, ITU-T, and industrial fora. Where not being developed by other SDO's, the development of cybersecurity and data protection CEN/CENELEC publications for safeguarding information such as organizational frameworks, management systems, techniques, guidelines, and products and services, including those in support of the EU Digital Single Market.

https://www.cen.eu/work/Sectors/Digital_society/Pages/Cybersecurity.aspx

https://www.cenelec.eu/dyn/www/f?p=104:7:123858409050001::::FSP_ORG_ID,FSP_LANG_ID:2307986,25

CLC/TC 65X : Industrial-process measurement, control and automation Description

Its scope is to contribute, support and coordinate the preparation of international standards for systems and elements used for industrial process measurement, control and automation at CENELEC level. To coordinate standardisation activities which affect integration of components and functions into such systems including safety and security aspects. This CENELEC work of standardisation is to be carried out for equipment and systems and closely coordinated with IEC TC65 and its subcommittees with the objective of avoiding any duplication of work while honouring standing agreements between CENELEC and IEC.

https://www.cenelec.eu/dyn/www/f?p=104:7:0::::FSP_ORG_ID:1257871

https://www.cenelec.eu/aboutcenelec/whatwedo/technologysectors/DigitalSociety-topics.html

ENISA Good Practices for Security of Internet of Things in the context of Smart Manufacturing

ENISA Industrial CybersSecurity developments & CyberAct Certification Description

ETSI EN 303 645 - CYBER - Cyber Security for Consumer Internet of Things: Baseline Requirements Description

While oriented in the first place to consumer devices, ETSI EN 303 645, a standard for cybersecurity in the Internet of Things is relevant for manufacturing considerations. The standard establishes a security baseline for internet-connected consumer products and provides a basis for future IoT certification schemes. Based on the ETSI specification TS 103 645, EN 303 645 went through National Standards Organization comments and voting, engaging even more stakeholders in its development and ultimately strengthening the resulting standard. The EN is a result of collaboration and expertise from industry, academics and government.

ETSI EN 303 645 specifies 13 provisions for the security of Internet-connected consumer devices and their associated services. IoT products in scope include connected children’s toys and baby monitors, connected safety-relevant products such as smoke detectors and door locks, smart cameras, TVs and speakers, wearable health trackers, connected home automation and alarm systems, connected appliances (e.g. washing machines, fridges) and smart home assistants. The EN also includes 5 specific data protection provisions for consumer IoT.

https://www.etsi.org/deliver/etsi_en/303600_303699/303645/02.01.01_60/en_303645v020101p.pdf

ETSI SAREF M2M to SAREF4INMA developments

ETSI M2M Description

Helps to produce the specifications to enable users to build platforms by which devices and services can be connected, regardless of the underlying technology used.

https://www.etsi.org/committee/smartm2m

ETSI SAREF Description

The Smart Applications REFerence (SAREF) ontology is a shared model of consensus that facilitates the matching of existing assets in the smart applications domain. SAREF provides building blocks that allow separation and recombination of different parts of the ontology depending on specific needs.

https://www.etsi.org/technologies/smart-appliances
https://saref.etsi.org/

ETSI TS 103 410-5 SAREF4INMA Description

SAREF4INMA, an extension of SAREF that was created for the industry and manufacturing domain. SAREF4INMA was created to be aligned with related initiatives in the smart industry and manufacturing domain in terms of modelling and standardization, such as the Reference Architecture Model for Industry 4.0 (RAMI), which combines several standards used by the various national initiatives in Europe that support digitalization in manufacturing.

These initiatives include, but are not limited to, the platform Industrie 4.0 in Germany, the Smart Industry initiative in the Netherlands, Industria 4.0 in Italy, the 'Industrie du future initiative' in France and more.

It extends SAREF with 24 classes (in addition to a number of classes directly reused from the SAREF ontology and the SAREF4BLDG extension), 20 object properties (in addition to a number of object properties reused from the SAREF ontology and the SAREF4BLDG extension) and 11 data type properties. SAREF4INMA focuses on extending SAREF for the industry and manufacturing domain to solve the lack of interoperability between various types of production equipment that produce items in a factory and, once outside the factory, between different organizations in the value chain to uniquely track back the produced items to the corresponding production equipment, batches, material and precise time in which they were manufactured.

https://saref.etsi.org/saref4inma/

https://www.etsi.org/deliver/etsi_ts/103400_103499/10341005/01.01.02_60/ts_10341005v010102p.pdf

North American Industrial CyberSecurity Standards

NIST 800.82 Description

This document provides guidance on how to secure Industrial Control Systems (ICS), including Supervisory Control and Data Acquisition (SCADA) systems, Distributed Control Systems (DCS), and other control system configurations such as Programmable Logic Controllers (PLC), while addressing their unique performance, reliability, and safety requirements. The document provides an overview of ICS and typical system topologies, identifies typical threats and vulnerabilities to these systems, and provides recommended security countermeasures to mitigate the associated risks.

ICS cybersecurity programs should always be part of broader ICS safety and reliability programs at both industrial sites and enterprise cybersecurity programs, because cybersecurity is essential to the safe and reliable operation of modern industrial processes. Threats to control systems can come from numerous sources, including hostile governments, terrorist groups, disgruntled employees, malicious intruders, complexities, accidents, and natural disasters as well as malicious or accidental actions by insiders. ICS security objectives typically follow the priority of availability and integrity, followed by confidentiality.

https://csrc.nist.gov/publications/detail/sp/800-82/rev-2/final

NIST CyberSecurity Framework (Framework for Improving Critical Infrastructure Cybersecurity) Description

The Framework focuses on using business drivers to guide cybersecurity activities and considering cybersecurity risks as part of the organization’s risk management processes. The Framework consists of three parts: the Framework Core, the Implementation Tiers, and the Framework Profiles. The Framework Core is a set of cybersecurity activities, outcomes, and informative references that are common across sectors and critical infrastructure. Elements of the Core provide detailed guidance for developing individual organizational Profiles. Through use of Profiles, the Framework will help an organization to align and prioritize its cybersecurity activities with its business/mission requirements, risk tolerances, and resources. The Tiers provide a mechanism for organizations to view and understand the characteristics of their approach to managing cybersecurity risk, which will help in prioritizing and achieving cybersecurity objectives.

While this document was developed to improve cybersecurity risk management in critical infrastructure, the Framework can be used by organizations in any sector or community. The Framework enables organizations – regardless of size, degree of cybersecurity risk, or cybersecurity sophistication – to apply the principles and best practices of risk management to improving security and resilience.

The Framework provides a common organizing structure for multiple approaches to cybersecurity by assembling standards, guidelines, and practices that are working effectively today.

https://www.nist.gov/cyberframework

NISTIR 8183 - Cybersecurity Framework Version 1.1 Manufacturing Profile Description

The Cybersecurity Framework (CSF) Version 1.1 implementation details developed for the manufacturing environment. The “Manufacturing Profile” of the CSF can be used as a roadmap for reducing cybersecurity risk for manufacturers that is aligned with manufacturing sector goals and industry best practices. This Manufacturing Profile provides a voluntary, risk-based approach for managing cybersecurity activities and reducing cyber risk to manufacturing systems. The Manufacturing Profile is meant to enhance but not replace current cybersecurity standards and industry guidelines that the manufacturer is embracing.

https://csrc.nist.gov/publications/detail/nistir/8183/rev-1/final

NISTIR 8259 - Foundational Cybersecurity Activities for IoT Device Manufacturers Description

Internet of Things (IoT) devices often lack device cybersecurity capabilities their customers organizations and individuals—can use to help mitigate their cybersecurity risks. Manufacturers can help their customers by improving how securable the IoT devices they make are by providing necessary cybersecurity functionality and by providing customers with the cybersecurity-related information they need. This publication describes recommended activities related to cybersecurity that manufacturers should consider performing before their IoT devices are sold to customers. These foundational cybersecurity activities can help manufacturers lessen the cybersecurity-related efforts needed by customers, which in turn can reduce the prevalence and severity of IoT device compromises and the attacks performed using compromised devices

https://csrc.nist.gov/publications/detail/nistir/8259/final

International Industrial CyberSecurity standards Description

The following is a collection of Industrial CyberSecurity Standards and de-facto standards relevant for organizations designing, developing, selecting, installing and operating digital manufacturing platforms. The selection was made on the basis of expert advisory and selections by researchers in their assessment of relevant State of the Art. Next to the standards, readers should also consider the works ongoing in standardization efforts

CIS Controls – ICS Description

The CIS Controls™ are a prioritized set of actions that collectively form a defense-in-depth set of best practices that mitigate the most common attacks against systems and networks. The CIS Controls are developed by a community of IT experts who apply their first-hand experience as cyber defenders to create these globally accepted security best practices. The experts who develop the CIS Controls come from a wide range of sectors including, retail, manufacturing, healthcare, education, government, defense, and others. So, while the CIS Controls address the general practices that most organizations should take to secure their systems, some operational environments may present unique requirements not addressed by the CIS Controls.

The guidance on how to apply the security best practices found in CIS Controls. For each top-level CIS Control, there is a brief discussion of how to interpret and apply the CIS Control in such environments, along with any unique considerations or differences from common IT environments. The applicability or not of specific Sub-Controls is addressed and additional steps needed in ICS environments are explained.

https://www.cisecurity.org/white-papers/cis-controls-implementation-guide-for-industrial-control-systems/

IEC 62443 series - Security for industrial automation and control systems - ISA 99 Description

Publisher: ANSI, IEC, ISA - License: ANSI, IEC, ISA

See also:

https://www.iec.ch/cybersecurity/?ref=extfooter
https://www.isa.org/standards-and-publications/isa-standards/isa-standards-committees/isa99 (Including a diagram depicting the status of the various work products in the ISA/IEC 62443 series of IACS standards and technical report)
in German: https://www.dke.de/de/arbeitsfelder/industry/iec-62443-cybersecurity-industrieautomatisierung

The ISA/IEC 62443 standard specifies security capabilities for (industrial) control system components. Developed by the ISA99 committee and adopted by the International Electrotechnical Commission (IEC), provides a framework to address and mitigate security vulnerabilities in industrial automation and control systems (IACSs). it is based upon the input and knowledge of IACS security experts from across the globe to develop consensus standards that are applicable to all industry sectors and critical infrastructure. Central is the application of IACS security zones and conduits (isolation & segmentation), which were introduced in 62443-1-1,

ISA-62443-4-2, Security for Industrial Automation and Control Systems: Technical Security Requirements for IACS Components, provides the cybersecurity technical requirements for components that make up an IACS, specifically the embedded devices, network components, host components, and software applications.

Based on the IACS system security requirements of ISA/IEC 62443‑3-3, System Security Requirements and Security Levels, 4-2 specifies security capabilities that enable a component to mitigate threats for a given security level without the assistance of compensating countermeasures.

ISA/IEC 62443-4-1, Product Security Development Life-Cycle Requirements, specifies process requirements for the secure development of products used in an IACS and defines a secure development life cycle for developing and maintaining secure products. The life cycle includes security requirements definition, secure design, secure implementation (including coding guidelines), verification and validation, defect management, patch management, and product end of life.

ISA/IEC 62443-3-2, Security Risk Assessment, System Partitioning and Security Levels, is based on the understanding that IACS security is a matter of risk management. 3-2 will define a set of engineering measures to guide organizations through the process of assessing the risk of a particular IACS and identifying and applying security countermeasures to reduce that risk to tolerable levels.

By aligning the identified target security level with the required security level capabilities 3‑3, System Security Requirements and Security Levels it takes the earlier 1-1 standard a step further. 2-3, Patch Management in the IACS Environment addresses the installation of patches, also called software updates, software upgrades, firmware upgrades, service packs, hot fixes, basic input/output system updates, and other digital electronic program updates that resolve bug fixes, operability, reliability, and cybersecurity vulnerabilities. It covers many of the problems and industry concerns associated with IACS patch management for asset owners and IACS product suppliers. It also describes the effects poor patch management can have on the reliability and operability of an IACS.

IEEE 1686-2013 - IEEE Standard for Intelligent Electronic Devices Cyber Security Capabilities Description

ISO 27000 - Information Security Management Description

ISO 27000 (or ISO27k) refers to a standard and a series of international standards (27001, 27002, ...) set up by the ISO (International Standards Organization) on information security management series (ISMS). The standard was initiated around 2005 and revised multiple times (2016, 2018) with the support of the different ISO member states representatives, people with an information security background and profession.

The standard describes a norm to which organizations can organize themselves in order to properly manage information and information security. It sets out a series policies, defines the setup of a system to control and manage the policies. Today the standard is being referred to by many compliancy requirement regulations and setups such as the Network and Information Security Directive by the European Commission and the European Member States.

The ISO 27000 series have been divised into multiple sub-standards

27001 : This is the specification for an information security management system (an ISMS) which replaced the old BS7799-2 standard
27002 : This is the 27000 series standard number of what was originally the ISO 17799 standard (which itself was formerly known as BS7799-1)
27003 : guidance for the implementation of an ISMS (IS Management System)
27004 : measurement and metrics
27005 : methodology independent ISO standard
27006 : accreditation of organizations offering ISMS certification.
27007 : ISMS auditing
27032 : CyberSecurity
27033 : Network Security

(* 27013 : Manufacturing)

The objective of the 27001 standard itself is to "provide requirements for establishing, implementing, maintaining and continuously improving an Information Security Management System (ISMS)". Regarding its adoption, this should be a strategic decision. Further, "The design and implementation of an organization's information security management system is influenced by the organization's needs and objectives, security requirements, the organizational processes used and the size and structure of the organization". The original standard was more oriented towards planning and organizing, the later versions more towards measuring and evaluating. 27002 is about controls and control mechanisms.

Organizations can have their ISMS's or their ISO process certified, which can be needed for compliance reasons.

https://www.iso.org/standard/73906.html

https://standards.iso.org/ittf/PubliclyAvailableStandards/c073906_ISO_IEC_27000_2018_E.zip (public download)

ISO/IEC TS 27100 - Information technology -- Cybersecurity -- Overview and concepts Description

ISO/IEC 27000:2018 - Information technology -Security techniques -Information security management systems -Overview and vocabulary Description

ISO/IEC 27001:2013 - Information technology -Security techniques -Information security management systems -Requirements Description

ISO/IEC 27002:2013 - Information technology -Security techniques -Code of practice for information security controls Description

ISO/IEC 27005:2018 - Information technology -Security techniques -Information security risk management Description

ISO/IEC 27009:2020 - Information technology -Security techniques -Sector-specific application of ISO/IEC 27001 -Requirements Description

ISO/IEC 27017:2015 - Information technology — Security techniques — Code of practice for information security controls based on ISO/IEC 27002 for cloud services Description

DIN SPEC 27070:2020 - Requirements and reference architecture of a security gateway for the exchange of industry data and services Description

ISO/IEC 27019:2017 - Information technology — Security techniques — Information security controls for the energy utility industry Description

ISO/IEC 27001 (ISMS) - Information Security Management (ISMS) Description

ISO/IEC 27019 - Information technology — Security techniques — Information security controls for the energy utility industry Description

See https://www.iso.org/standard/43759.html

Provides guidance based on ISO/IEC 27002:2013 applied to process control systems used by the energy utility industry for controlling and monitoring the production or generation, transmission, storage and distribution of electric power, gas, oil and heat, and for the control of associated supporting processes.

It includes:

central and distributed process control, monitoring and automation technology as well as information systems used for their operation, such as programming and parameterization devices;
digital controllers and automation components such as control and field devices or Programmable Logic Controllers (PLCs), including digital sensor and actuator elements;
all further supporting information systems used in the process control domain, e.g. for supplementary data visualization tasks and for controlling, monitoring, data archiving, historian logging, reporting and documentation purposes;
communication technology used in the process control domain, e.g. networks, telemetry, telecontrol applications and remote control technology;
Advanced Metering Infrastructure (AMI) components, e.g. smart meters;
measurement devices, e.g. for emission values; - digital protection and safety systems, e.g. protection relays, safety PLCs, emergency governor mechanisms;
energy management systems, e.g. of Distributed Energy Resources (DER), electric charging infrastructures,
all software, firmware and applications installed on above-mentioned systems, e.g. DMS (Distribution Management System) applications or OMS (Outage Management System); - any premises housing the above-mentioned equipment and systems;
remote maintenance systems for above-mentioned systems.

ISO/IEC 27019:2017 does not apply to the process control domain of nuclear facilities. This domain is covered by IEC 62645. ISO/IEC 27019:2017 also includes a requirement to adapt the risk assessment and treatment processes described in ISO/IEC 27001:2013 to the energy utility industry-sector?specific guidance provided in this document.

ISO/IEC 6523-1:1998 - Information technology -Structure for the identification of organisations and organisation parts -Part 1: Identification of organisation identification schemes Description

ISO/IEC 27701:2019 - extension to privacy information management requirements and guidelines Description

ISO/IEC 30147 - Information technology -Internet of things -Methodology for trustworthiness of IoT system/service Description

ISO/IEC 30149 - Internet of things (IoT) -Trustworthiness framework Description

ISO/TR 23245 - Blockchain and distributed ledger technologies — Security risks, threats and vulnerabilities Description

ISO/IEC NP 24392 - Information technology -- Security techniques --Security reference model for Industrial Internet Platform (IIP) Description

ISO/TR 23244:2020 - Blockchain and distributed ledger technologies — Privacy and personally identifiable information protection considerations Description

ISO/IEC TR 24028:2020 - Information technology - Artificial intelligence - Overview of trustworthiness in artificial intelligence Description

ISO/IEC TR 24029 - Information technology -- Artificial Intelligence (AI) -- Assessment of the robustness of neural networks Description

ISO/IEC TR 30164:2020 - Internet of things (IoT) -Edge Computing Description

ISO/IEC 15408 : Information Technology – Security Techniques – Evaluation Criteria for IT Security Description

These requirements establish a standard way of expressing the assurance requirements for Targets of Evaluation (TOEs). This part of ISO/IEC 15408 catalogues the set of assurance components, families and classes. This part of ISO/IEC 15408 also defines evaluation criteria for PPs (Protection Profile) and STs (Security Target) and presents evaluation assurance levels that define the predefined ISO/IEC 15408 scale for rating assurance for TOEs, which is called the Evaluation Assurance Levels (EALs). The audience for this part of ISO/IEC 15408 includes consumers, developers, and evaluators of secure IT products. Developers, who respond to actual or perceived consumer security requirements in constructing a TOE, reference this part of ISO/IEC 15408 when interpreting statements of assurance requirements and
determining assurance approaches of TOEs.

https://www.iso.org/standard/50341.html
https://standards.iso.org/ittf/PubliclyAvailableStandards/c050341_ISO_IEC_15408-1_2009.zip (public download)

ISO/IEC TS 33052:2016 - Information technology -Process reference model (PRM) for information security management Description

Show more

New approaches to Cybersecurity for Industrial Systems, best practices and considerations

Reference Integrity Manifest – RIM, & RIMM

Software Bill of Materials – SBOM

Vulnerability databases & Responsible Disclosure - IOC/CVE - ATT&CK

Manufacturing industry de-facto CyberSecurity developments

EEMUA

WIB

International De-Facto CyberSecurity Standards

A Security Architecture for Digital Manufacturing Platforms Description

A Security Architecture is a conceptual design that addresses various aspects of security in a system and resulting application, set of applications and components that make up the system. It is being used to support the design, development, implementation and operation of these systems, which can include Manufacturing Platforms. For Digital Manufacturing Platforms it addresses necessities and potential risks identified following potential scenario's or within a specific environment. It tries to present a comprehensive perspective of various security concepts on the conceived OT and IT architecture which includes networks, systems and equipment connected to these networks, the communication protocols and operating systems being used, the application development and operational process and recommends the use of security measures using security controls. Having a Security Architecture also helps both the design and integration process, supports identification of incidents and the security monitoring, speeds up discussions with partners for a level play field and best practices and is generally reproducible. Digital Manufacturing Platforms tend to try to bridge operational systems with information technology, such as the use of analytics, data collection and distribution and visualization that can lead to automated actions by these systems on the basis of unattended and unsupervised decisions and control implementations. To avoid physical harm, collateral damage other safety or cybersecurity issues, having a Security Architecture supporting the Digital Manufacturing Platforms should allow developers and companies at least to consider the various aspects and challenges of security in an organized and comprehensible manner. Architectures can follow standards such as IEC62443, ISO27k or NIST800.16, or any alternative scheme, but that needs to complete towards the digital and operational platforms.

Risk or security assessment

Risks addressed by security

Security mechanisms and technologies

Distributed ledger technology Description

Specific security standard(s) addressed and impact on implementation

Trustworthy Systems in Platform Lifetime

Used guidelines and specific frameworks for security and/or privacy by design

Interoperability (ICT) Description

In the context of information technology, interoperability refers to the ability of different systems and devices to exhange information. See also https://en.wikipedia.org/wiki/Interoperability

Collaborative and decentralized application architectures and development tools

General interoperability framework

Application level interoperability

Modular Design and Deployment Approaches

Open APIs and Communication Protocols

Wireless communication protocols

Web-services / Composability

Integration level interoperability Description

APIs and Integration Protocols Description

API's (and REST API's) need to be carefully protected through mechanisms limiting access on the basis of identity and authorizing and authenticating through managed and controlled mechanisms. Usually certificates and IP-addresses are being used to restrict access to API's, but a more granular approach is advisable from a Security Architecture perspective. Other architectures being used as Integratio Protocols in Digital Manufacturing Platforms are JSON (for its near real time capabilities) and MQ (message bus architectures). The letter being less secure, since it provides a continuous stream of information which is being sent to a destination.

Connectivity & network interoperability – communication protocols

Data/object model interoperability - Data exchange formats - APIs

Semantic/information interoperability

Platform level interoperability

AAA - Access, Authorisation and Authentication Description

Authorisation is the process of allowing an entity (humans, systems or devices) to access information systems or facilities where information and processing capabilities are being stored. More practical in an industrial setting for Digital Manufacturing Platforms, an authorized person can get access to an operational machine in order to update it, or investigate its contents. Unauthorized access could be someone who has been able to access the network from the outside, performing actions that have not been authorized and cannot be justified.

Authentication is a means to assess the authorization rules of an entity by means of a set of instruments. In the case of Digital Manufacturing Platforms it would be the instruments like user name and password, and in addition a second factor such as a physical token or a mobile phone that can authenticate the person accessing the platform. The physical token connects the person to something he has, the password to something he knows.

A third A in the AAA-architecture is related to Access. Once authorized, and authenticated, access can be granted to the location, system, application, and / or information. Access control levels can thus be set up on different layers. These can be physical (access to the country, to the plant, to the building, the room and the environment where the system is located), and logical (using authentication technologies). In Digital Manufacturing Platforms this means the systems could be accessible only on premise, in the factory or for instance in the (private or public) cloud. As a result different access mechanisms needs to be considered, depending on the risk and intended security levels and controls.

https://en.wikipedia.org/wiki/AAA_(computer_security) ; https://en.wikipedia.org/wiki/Authorization

Motivating Scenario / Use-Case

User Acccess and Rights Management

Industrial Reference ICT Architectures

Industrial Internet Reference Archtectures (IIRA) Description

First published in 2015 and best known as the IIRA, this standards-based architectural template and methodology enables Industrial Internet of Things (IIoT) system architects to design their own systems based on a common framework and concepts. (See https://www.iiconsortium.org/IIRA.htm and in particular https://hub.iiconsortium.org/iira)

Reference Architectural Model Industrie 4.0 (RAMI 4.0) Description

RAMI 4.0 Vertical Axis and associated standards Description

The items and descriptions are sourced from:

ISO/IEC/TR 63306-1 Ed.1.0 - Smart Manufacturing Standards Map (SM2) - Part 1 : Framework
Federal Ministry of Economic Affairs and Energy -Alignment Report for Reference Architectural Model for Industrie 4.0 / Intelligent Manufacturing System Architecture. Sino-German Industrie 4.0 / Intelligent Manufacturing. Standardisation Sub-Working Group

Business Layer (RAMI 4.0) View children

The business layer focuses on standards that represent business objectives and the resulting overall processes regarding the exchanged information at the lower layers. The layer addresses regulatory and market perspectives, business models, business cases and products, business processes and regulations influencing business models.

B2MML - Business To Manufacturing Markup Language Description

DIN SPEC 13266:2020-04 - Guideline for the development of deep learning image recognition systems Description

DIN SPEC 92001-1:2019-04 - Artificial Intelligence -Life Cycle Processes and Quality Requirements -Part 1: Quality Metamodel Description

DIN SPEC 92001-2 - Artificial Intelligence - Life Cycle Processes and Quality Requirements - Part 2: Robustness Description

EN 61310 sreies - Safety of machinery - Indication, marking and actuation Description

EN 9100 - General quality management requirements for aviation Description

IEC /TR 62837:2013 - Energy efficiency through automation systems Description

IEC 62559-2:2015 - Use case methodology - Part 2: Definition of the templates for use cases, actor list and requirements list Description

IEC 62890:2020 - Industrial-process measurement, control and automation - Life-cycle-management for systems and components Description

IEC 63278-1 ED1 - Asset administration shell (AAS) for industrial applications -Part 1:Administration shell structure Description

IEC TS 62832-1:2016 - Industrial-process measurement, control and automation - Digital factory framework - Part 1: General principles Description

ISO 18828-3:2017 - Industrial automation systems and integration — Standardized procedures for production systems engineering — Part 3: Information flows in production planning processes Description

ISO 21632:2018 - Graphic technology — Determination of the energy consumption of digital printing devices including transitional and related modes Description

ISO 23570-1:2005 - Industrial automation systems and integration — Distributed installation in industrial applications — Part 1: Sensors and actuators Description

Show more

Function Layer (RAMI 4.0) View children

The function layer includes standards that cumulate common functions derived from applications, systems and components. Remote access and horizontal integration take place within the layer to ensures the integrity of the information and conditions in the process and the integration of the technical level.

Apache Kafka - Apache Kafka Description

B11.0 - 2020 - Safety of Machinery Description

B11.Tr10—202x - Functional Safety of Artificial Intelligence for Machinery Applications Description

CWA 17492:2020 - Predictive control and maintenance of data intensive industrial processes (MONSOON) Description

EN 16646:2014 - Maintenance -Maintenance within physical asset management Description

EN 17007:2017 - Maintenance process and associated indicators Description

EN 61069 series - Industrial-process measurement, control and automation - Evaluation of system properties for the purpose of system assessment Description

EN 61310 sreies - Safety of machinery - Indication, marking and actuation Description

EN 62745:2017 - Safety of machinery - Requirements for cableless control systems of machinery (IEC 62745:2017) Description

IEC /TR 62837:2013 - Energy efficiency through automation systems Description

IEC 61131 series - Programmable controllers - ALL PARTS Description

IEC 61499 series - Function blocks Description

IEC 61800 series - Adjustable speed electrical power drive systems Description

IEC 61804 series - Function blocks (FB) for process control and electronic device description language (EDDL) Description

Show more

IEC 62443 series - Security for industrial automation and control systems - ISA 99 Description

Publisher: ANSI, IEC, ISA - License: ANSI, IEC, ISA

See also:

https://www.iec.ch/cybersecurity/?ref=extfooter
https://www.isa.org/standards-and-publications/isa-standards/isa-standards-committees/isa99 (Including a diagram depicting the status of the various work products in the ISA/IEC 62443 series of IACS standards and technical report)
in German: https://www.dke.de/de/arbeitsfelder/industry/iec-62443-cybersecurity-industrieautomatisierung

Information Layer (RAMI 4.0) View children

The information layer focuses on standards that regulate information flows, information objects and data models being used by components, services and their functions to exchange information. A common semantic base is the key requirement to ensure consistent integration of different data and achieve interoperability between components at this layer.

Apache Kafka - Apache Kafka Description

B2MML - Business To Manufacturing Markup Language Description

DCAT - Data Catalog Vocabulary (DCAT) - Version 2 Description

DIN SPEC 16592:2016 - Combining OPC Unified Architecture and Automation Markup Language. Description

DIN SPEC 2343:2020-09 - Transmission of language-based data between artificial intelligences - Specification of parameters and formats Description

DIN SPEC 91406:2019-12 - Automatic identification of physical objects and information on physical objects in IT systems, particularly IoT systems Description

eCl@ss - eCl@ss Description

EN 10219-1:2006 - Cold Formed Welded structural Hollow Sections of non-alloy and fine grain steels -Part 1: Technical delivery conditions Description

EN 10305-3:2016 - Steel Tubes for precision applications -Technical delivery conditions -Part 3: Welded cold sized tubes Description

EN 10305-5:2016 - Steel tubes for precision applications -Technical delivery conditions -Part 5: Welded cold sized square and rectangular tubes Description

IEC /TR 62837:2013 - Energy efficiency through automation systems Description

IEC 61131 series - Programmable controllers - ALL PARTS Description

IEC 61158 series - Industrial communication networks - Fieldbus specifications Description

IEC 61360-1:2017 - Standard data element types with associated classification scheme - Part 1: Definitions - Principles and methods Description

Show more

IEC 62443 series - Security for industrial automation and control systems - ISA 99 Description

Publisher: ANSI, IEC, ISA - License: ANSI, IEC, ISA

See also:

https://www.iec.ch/cybersecurity/?ref=extfooter
https://www.isa.org/standards-and-publications/isa-standards/isa-standards-committees/isa99 (Including a diagram depicting the status of the various work products in the ISA/IEC 62443 series of IACS standards and technical report)
in German: https://www.dke.de/de/arbeitsfelder/industry/iec-62443-cybersecurity-industrieautomatisierung

Communication Layer (RAMI 4.0) View children

The communication layer includes standards regarding integration and communication protocols as well as related mechanisms that contribute to interoperability of components. Also includes the provision of services for control of the integration processes

ANSI/MTC1.4-2018 - MTConnect Description

Apache Kafka - Apache Kafka Description

Camera Link - Camera Link Description

GigE Vision - GigE Vision Description

HTTP/REST standards - (standards collection) Description

IEC /TR 62837:2013 - Energy efficiency through automation systems Description

IEC 60445:2017 RLV - Basic and safety principles for man-machine interface, marking and identification - Identification of equipment terminals, conductor terminations and conductors Description

IEC 61131 series - Programmable controllers - ALL PARTS Description

IEC 61158 series - Industrial communication networks - Fieldbus specifications Description

IEC 61499 series - Function blocks Description

IEC 61784 series - Industrial communication networks - Profiles Description

IEC 62264 series - Enterprise-control system integration - Part 2: Object and attributes for enterprise-control system integration Description

IEC 62443 series - Security for industrial automation and control systems - ISA 99 Description

Publisher: ANSI, IEC, ISA - License: ANSI, IEC, ISA

See also:

https://www.iec.ch/cybersecurity/?ref=extfooter
https://www.isa.org/standards-and-publications/isa-standards/isa-standards-committees/isa99 (Including a diagram depicting the status of the various work products in the ISA/IEC 62443 series of IACS standards and technical report)
in German: https://www.dke.de/de/arbeitsfelder/industry/iec-62443-cybersecurity-industrieautomatisierung

IEC 62541 series - OPC unified architecture -ALL PARTS Description

Show more

ALTFI-01-2017 Improving access by innovative SMEs to alternative forms of finance