An Architecture for Safe and Secure Automation System Devices and Maintenance Process

This paper describes a generic high-level security architecture for safety critical automation system devices and a secure solution for device maintenance. The main focus lies on security measures which can be implemented by the automation device manufacturer. Common threats and attack vectors for automation systems are identified and classified regarding their criticality. Based on those threats appropriate countermeasures are suggested. Benefits such as security and safety synergies of these countermeasures as well as issues regarding their implementation are discussed. The security architecture includes PLC device level measures, communication concepts for the automation software development platform and suggestions for software update mechanisms. The aim of the measures is to shift parts of the security implementation process from the automation system developer to the automation device manufacturer in order to achieve mature and economic security solutions.