TY  - CHAP
U1  - Konferenzveröffentlichung
A1  - Walz, Andreas
A1  - Niemann, Karl-Heinz
A1  - Göppert, Julian
A1  - Fischer, Kai
A1  - Merklin, Simon
A1  - Ziegler, Dominik
A1  - Sikora, Axel
T1  - PROFINET Security: A Look on Selected Concepts for Secure Communication in the Automation Domain
T2  - 2023 IEEE 21st International Conference on Industrial Informatics (INDIN)
N2  - We provide a brief overview of the cryptographic security extensions for PROFINET, as defined and specified by PROFIBUS & PROFINET International (PI). These come in three hierarchically defined Security Classes, called Security Class 1, 2 and 3. Security Class 1 provides basic security improvements with moderate implementation impact on PROFINET components. Security Classes 2 and 3, in contrast, introduce an integrated cryptographic protection of PROFINET communication. We first highlight and discuss the security features that the PROFINET specification offers for future PROFINET products. Then, as our main focus, we take a closer look at some of the technical challenges that were faced during the conceptualization and design of Security Class 2 and 3 features. In particular, we elaborate on how secure application relations between PROFINET components are established and how a disruption-free availability of a secure communication channel is guaranteed despite the need to refresh cryptographic keys regularly. The authors are members of the PI Working Group CB/PG10 Security.
KW  - PROFINET Security
KW  - OT Security
KW  - Secure communication
KW  - PROFInet
KW  - Kommunikation
KW  - Kryptologie
KW  - Automation
Y1  - 2023
UN  - https://nbn-resolving.org/urn:nbn:de:bsz:960-opus4-29349
SN  - 2378-363X
SS  - 2378-363X
SN  - 978-1-6654-9313-0
SB  - 978-1-6654-9313-0
U6  - https://doi.org/10.25968/opus-2934
DO  - https://doi.org/10.25968/opus-2934
SP  - 6
S1  - 6
PB  - IEEE
ER  -