Secure design of engineering software tools in Industrial Automation and Control Systems

Author

Hristova, Ana ; Obermeier, Sebastian ; Schlegel, Roman

Author_Institution

Ind. Software Syst., ABB Corp. Res., Baden, Switzerland

fYear

2013

fDate

29-31 July 2013

Firstpage

695

Lastpage

700

Abstract

Industrial Automation and Control Systems (IACS) used in critical infrastructure typically perform their tasks using embedded devices. While the security of the embedded devices during the operation of the system is naturally the focus of security considerations, the security of the engineering framework is often overlooked. In this paper, we model the trust boundaries of a typical engineering tool used in an IACS, identify security risks in this context, suggest mitigation techniques for end users, and finally propose an architecture that allows to implement secure engineering frameworks.

Keywords

control engineering computing; critical infrastructures; embedded systems; industrial control; security of data; software tools; IACS; critical infrastructure; embedded device security; engineering framework security; engineering software tool security design; engineering tool; industrial automation and control systems; mitigation techniques; secure engineering frameworks; security risk identification; trust boundaries; Authentication; Authorization; Object oriented modeling; Performance evaluation; Software tools;

fLanguage

English

Publisher

ieee

Conference_Titel

Industrial Informatics (INDIN), 2013 11th IEEE International Conference on

Conference_Location

Bochum

Type

conf

DOI

10.1109/INDIN.2013.6622968

Filename

6622968