SEC_PRO: Sichere Produktion mit verteilten Automatisierungssystemen
Within the framework of the project SEC_PRO important contributions to increase IT security in Ethernet based communication networks for automation technology shall be developed, tested and realized in cooperation with the project partners.
Besides the specification and realization for an extension of an industrial Ethernet protocol, which addresses basic it-security functionalities, the innovative approach is based on a consistent use of hardware based security tokens to secure communication relationships on the protocol and application layer. Especially trusted computing principals should be considered. In addition to this the prospects to use security tokens for protection against product piracy should be investigated and realized prototypic.
Main topics are:
Use of hardware-supported protective measures (smartcard, TPM) in automation technology
Investigation of measures for protection of automation equipment with the help of integrity checks for the realtime data transfer
Analysis of the realtime behavior of such protected networks
Analysis of manageability and acceptance
Use of hardware security modules to protect components against product piracy
Investigation of topologies for automation networks with high availability demands under specific consideration of IT-security related threats