论文信息 - Secure and Flexible Deployment of Industrial Applications inside Cloud-Based Environments

Secure and Flexible Deployment of Industrial Applications inside Cloud-Based Environments

Future industrial production systems following the paradigms of Industrie 4.0 will be reconfigured frequently and new system configurations will be deployed automatically as part of the engineering processes. In order to keep pace with this requirement of increased flexibility, it will be needed to achieve the adequate security levels in an automated way and to reduce the current static procedures and manual efforts as much as possible. Therefore, a modelling of all security-related functionalities and capabilities is mandatory. This paper further describes an approach for such a modelling based on the IEC 62443 security standard and an implementation of an automated deployment of components inside an industrial environment established with the OASIS Tosca and Ansible tools. The first results of the whole tool chain are evaluated with a real-world use case of software deployment in a suitable lab environment.

[1] Animesh Pattanayak,et al. Current Cyber Security Challenges in ICS , 2018, 2018 IEEE International Conference on Industrial Internet (ICII).

[2] Marco Ehrlich,et al. Automated Processing of Security Requirements and Controls for a common Industrie 4.0 Use Case , 2019, 2019 International Conference on Networked Systems (NetSys).

[3] Marco Ehrlich,et al. Modeling Security Requirements and Controls for an Automated Deployment of Industrial IT Systems , 2020 .

[4] Frank Leymann,et al. Portable Cloud Services Using TOSCA , 2012, IEEE Internet Computing.

[5] Daniel R. Coats. Statement for the Record: Worldwide Threat Assessment of the US Intelligence Community , 2018 .

[6] Juergen Jasperneite,et al. The Future of Industrial Communication: Automation Networks in the Era of the Internet of Things and Industry 4.0 , 2017, IEEE Industrial Electronics Magazine.

[7] Marco Ehrlich,et al. Automatic mapping of cyber security requirements to support network slicing in software-defined networks , 2017, 2017 22nd IEEE International Conference on Emerging Technologies and Factory Automation (ETFA).