PROFINET Security: A Look on Selected Concepts for Secure Communication in the Automation Domain
- We provide a brief overview of the cryptographic security extensions for PROFINET, as defined and specified by PROFIBUS & PROFINET International (PI). These come in three hierarchically defined Security Classes, called Security Class 1,2 and 3. Security Class 1 provides basic security improvements with moderate implementation impact on PROFINET components. Security Classes 2 and 3, in contrast,We provide a brief overview of the cryptographic security extensions for PROFINET, as defined and specified by PROFIBUS & PROFINET International (PI). These come in three hierarchically defined Security Classes, called Security Class 1,2 and 3. Security Class 1 provides basic security improvements with moderate implementation impact on PROFINET components. Security Classes 2 and 3, in contrast, introduce an integrated cryptographic protection of PROFINET communication. We first highlight and discuss the security features that the PROFINET specification offers for future PROFINET products. Then, as our main focus, we take a closer look at some of the technical challenges that were faced during the conceptualization and design of Security Class 2 and 3 features. In particular, we elaborate on how secure application relations between PROFINET components are established and how a disruption-free availability of a secure communication channel is guaranteed despite the need to refresh cryptographic keys regularly. The authors are members of the PI Working Group CB/PG10 Security.…
Document Type: | Conference Proceeding |
---|---|
Conference Type: | Konferenzartikel |
Zitierlink: | https://opus.hs-offenburg.de/8344 | Bibliografische Angaben |
Title (English): | PROFINET Security: A Look on Selected Concepts for Secure Communication in the Automation Domain |
Conference: | International Conference on Industrial Informatics (21. : 18-20 July 2023 : Lemgo, Germany) |
Author: | Andreas WalzORCiD, Karl-Heinz Niemann, Julian GöppertStaff Member, Kai Fischer, Simon Merklin, Dominik Ziegler, Axel SikoraStaff MemberORCiDGND |
Year of Publication: | 2023 |
Date of first Publication: | 2023/08/22 |
Publisher: | IEEE |
First Page: | 1 |
Last Page: | 6 |
Parent Title (English): | 2023 IEEE 21st International Conference on Industrial Informatics : INDIN 2023 |
ISBN: | 978-1-6654-9313-0 (Elektronisch) |
ISBN: | 978-1-6654-9314-7 (Print on Demand) |
ISSN: | 2378-363X (Elektronisch) |
ISSN: | 1935-4576 (Print on Demand) |
DOI: | https://doi.org/10.1109/INDIN51400.2023.10217985 |
URL: | https://ieeexplore.ieee.org/document/10217985 |
Language: | English | Inhaltliche Informationen |
Institutes: | Forschung / ivESK - Institut für verlässliche Embedded Systems und Kommunikationselektronik |
Fakultät Elektrotechnik, Medizintechnik und Informatik (EMI) (ab 04/2019) | |
Institutes: | Bibliografie |
Tag: | OT security; PROFINET Security; secure communication | Formale Angaben |
Relevance: | Konferenzbeitrag: h5-Index < 30 |
Open Access: | Closed |
Licence (German): | Urheberrechtlich geschützt |