Volltext-Downloads (blau) und Frontdoor-Views (grau)

PROFINET Security: A Look on Selected Concepts for Secure Communication in the Automation Domain

  • We provide a brief overview of the cryptographic security extensions for PROFINET, as defined and specified by PROFIBUS & PROFINET International (PI). These come in three hierarchically defined Security Classes, called Security Class 1, 2 and 3. Security Class 1 provides basic security improvements with moderate implementation impact on PROFINET components. Security Classes 2 and 3, in contrast, introduce an integrated cryptographic protection of PROFINET communication. We first highlight and discuss the security features that the PROFINET specification offers for future PROFINET products. Then, as our main focus, we take a closer look at some of the technical challenges that were faced during the conceptualization and design of Security Class 2 and 3 features. In particular, we elaborate on how secure application relations between PROFINET components are established and how a disruption-free availability of a secure communication channel is guaranteed despite the need to refresh cryptographic keys regularly. The authors are members of the PI Working Group CB/PG10 Security.

Download full text files

  • Volltexteng

    Akzeptiertes Manuskript © 2023 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.

Export metadata


Author:Andreas Walz, Karl-Heinz NiemannORCiDGND, Julian Göppert, Kai Fischer, Simon Merklin, Dominik Ziegler, Axel Sikora
DOI original:https://doi.org/10.1109/INDIN51400.2023.10217985
Parent Title (English):2023 IEEE 21st International Conference on Industrial Informatics (INDIN)
Document Type:Conference Proceeding
Year of Completion:2023
Publishing Institution:Hochschule Hannover
Release Date:2023/08/29
Tag:OT Security; PROFINET Security; Secure communication
GND Keyword:PROFInet; Kommunikation; Kryptologie; Automation
Page Number:6
Link to catalogue:1865682691
Institutes:Fakultät I - Elektro- und Informationstechnik
DDC classes:004 Informatik
Licence (German):License LogoUrheberrechtlich geschützt