+49 221 93724 0
HomePublications

Published Works & Whitepapers

Automated Processing of Security Requirements and Controls for a common Industrie 4.0 Use Case

Due to the dynamic nature of the Industrie 4.0, future production systems will be reconfigured frequently and as a part of the engineering process, new system configurations will be deployed automatically. In order to keep pace with this development, it will be required to achieve the needed security levels in an automated way and to reduce the current static procedures and manual efforts as much as possible. Therefore, the development and modelling of all cyber security related functionalities is needed. This paper describes an approach for such a modelling based on security requirements and levels of the international standard IEC 62443 part 3-3 and a system description based on OASIS TOSCA for the deployment. The approach is applied to an Industrie 4.0 use case scenario based on edge cloud computing and an evaluation is performed to demonstrate its feasibility.

more

Modelling security requirements and controls for an automated deployment of industrial it systems

Due to the dynamic nature of the Industrial Internet and Industry 4.0, future production systems will be reconfigured frequently and as a part of the engineering process, new system configurations will be deployed automatically. In order to keep pace with this development, it will be required to achieve the needed security level in an automated way and to reduce the current static procedures and manual efforts as much as possible. Therefore, the development and modeling of requirements and capability profiles for all cyber security related aspects is needed. The paper describes an approach for such a modeling based on security requirements and levels of the international standard IEC-62443-3-3 and a system description based on OASIS TOSCA. The approach is applied to a real industrial use-case scenario and an evaluation is performed to demonstrate its feasibility.

more

Automatic mapping of cyber security requirements to support network slicing in software-defined networks

The process of digitalisation has an advanced impact on social lives, state affairs, and the industrial automation domain. Ubiquitous networks and the increased requirements in terms of Quality of Service (QoS) create the demand for future-proof network management. Therefore, new technological approaches, such as Software-Defined Networks (SDN) or the 5G Network Slicing concept, are considered. However, the important topic of cyber security has mainly been ignored in the past. Recently, this topic has gained a lot of attention due to frequently reported security related incidents, such as industrial espionage, or production system manipulations. Hence, this work proposes a concept for adding cyber security requirements to future network management paradigms. For this purpose, various security related standards and guidelines are available. However, these approaches are mainly static, require a high amount of manual efforts by experts, and need to be performed in a steady manner. Therefore, the proposed solution contains a dynamic, machine-readable, automatic, continuous, and future-proof approach to model and describe cyber security QoS requirements for the next generation network management.

more

Contact details:

rt-solutions.de GmbH
Oberländer Ufer 190a
D-50968 Cologne

+49 (0) 221 93 72 40

IT-Control Framework with ServiceNow® GRC

rt-solutions designs holistic IT-Control Frameworks for your company in order to regularly check and report on the compliance of controls (risk-reducing measures) and to demonstrably eliminate identified deficits. The goal of such an IT control framework is to protect your company from adverse events in terms of financial, operational, strategic compliance and reputation damage.

Further information can be found here.

Industrial Communication for Factories (IC4F)

rt-solutions.de GmbH is participating in the IC4F research project as consortium member to enhance the IT-Security of industrial networks. The main goal of the project is to investigate and develop a holistic solution for industrial communication in the context of factory automation..

Click here to read more.

FIND - Future Industrial Network Architecture

Comprehensive modelling of Security-requirements and properties.

rt-solutions.de designes cyber security for industrial networks of tomorrow.

Official information about the research project.

link to the article.

About us

Our advisory services help you to improve the security and efficiency of your IT and to control your IT risks.

We develop sustainable, practical and precisely fitting solutions for complex challenges.

Contact

We are at any time available for you.

Phone: +49 221 93724 0

Office: Oberländer Ufer 190a, D-50968 Cologne

Email: info@rt-solutions.de

Directions

Our office is easily accessible by car or by public transportation. A detailed route description can be found here.

Works and Whitepaper

© 2021 RT-SOLUTIONS.DE GMBH. ALLE RECHTE VORBEHALTEN.
Diese Website verwendet nur ein technisch notwendiges Cookie (zur Speicherung der Kenntnisnahme dieser Meldung) und sonst keine weiteren. Weitere Informationen finden Sie in unserer Datenschutzerklärung.
Datenschutzerklärung