Conceptualization, implementation and validation of a certificate-based mutual authentication scheme for deeply embedded control systems
- This thesis presents a comprehensive approach to enhancing the security of embedded control systems. In the era of Industry 4.0, where the convergence of operational and information technologies increases vulnerability to cyberattacks, traditional manual and error-prone methods for establishing trust in industrial networks are no longer adequate. Focusing on temperature control units manufacturedThis thesis presents a comprehensive approach to enhancing the security of embedded control systems. In the era of Industry 4.0, where the convergence of operational and information technologies increases vulnerability to cyberattacks, traditional manual and error-prone methods for establishing trust in industrial networks are no longer adequate. Focusing on temperature control units manufactured by Peter Huber Kältemaschinenbau, this work identifies limitations in existing solutions—particularly regarding certificate management, usability, and scalability—and proposes novel frameworks, one integrating semi-automated and the other automated certificate provisioning with mutual authentication. This thesis examines various approaches grounded in key concepts like Public Key Infrastructure and utilizing established protocols such as TLS and EST. By minimizing reliance on external infrastructure, these approaches aim to simplify the configuration process for non-technical users while also enhancing overall security through robust authentication, improved certificate management, and strict access control.
A systematic evaluation that considers criteria such as security, usability, scalability, and deployment complexity assesses whether the proposed schemes meet the stringent requirements of industrial environments. Threat modeling and real-world validation confirm that the selected approach effectively mitigates potential cyber threats while ensuring reliable device-to-device authentication.
Ultimately, this thesis presents an accessible authentication framework that links advanced cryptographic techniques with the practical needs of industrial control systems, paving the way for more secure and resilient industrial networks.…
Download full text files
- Masterthesis_Ndop_Jonathan.pdf
Additional Services
Statistics
| Document Type: | Master's Thesis |
|---|---|
| Zitierlink: | https://opus.hs-offenburg.de/10428 | Bibliografische Angaben |
| Title (English): | Conceptualization, implementation and validation of a certificate-based mutual authentication scheme for deeply embedded control systems |
| Author: | Jonathan Samuel Ndop |
| Advisor: | Axel Sikora, David Fleig |
| Year of Publication: | 2025 |
| Publishing Institution: | Hochschule Offenburg |
| Granting Institution: | Hochschule Offenburg |
| Contributing Corporation: | Peter Huber Kältemaschinenbau |
| Place of publication: | Offenburg |
| Publisher: | Hochschule Offenburg |
| Page Number: | ix, 73 |
| Language: | English | Inhaltliche Informationen |
| Institutes: | Fakultät Elektrotechnik, Medizintechnik und Informatik (EMI) (ab 04/2019) |
| Collections of the Offenburg University: | Abschlussarbeiten / Master-Studiengänge / CME |
| DDC classes: | 600 Technik, Medizin, angewandte Wissenschaften |
| Tag: | Certificate-Based Authentication; Embedded Security; Industrial Control Systems; Mutual Authentication; Public Key Infrastructure; Secure Communication; Security Usability | Formale Angaben |
| Open Access: | Closed |
| Licence (German): |  Creative Commons - CC0 1.0 - Universell - Public Domain Dedication |