TY - JOUR
T1 - Securing IT/OT Links for Low Power IIoT Devices
T2 - Design considerations for industry 4.0
AU - Mantravadi, Soujanya
AU - Schnyder, Reto
AU - Møller, Charles
AU - Brunø, Thomas Ditlev
N1 - Funding Information:
This work was supported in part by the Innovation Fund Denmark through the Manufacturing Academy of Denmark (MADE) Digital Project, and in part by the Aalborg University through the SECURE Project.
Publisher Copyright:
© 2020 Institute of Electrical and Electronics Engineers Inc.. All rights reserved.
Copyright:
Copyright 2021 Elsevier B.V., All rights reserved.
PY - 2020/11/4
Y1 - 2020/11/4
N2 - Manufacturing is facing a host of new security challenges due to the convergence of information technology (IT) and operational technology (OT) in the industry. This article addresses the challenges that arise due to the use of low power Industrial Internet of Things (IIoT) devices in modular manufacturing systems of Industry 4.0. First, we analyze security challenges concerning the manufacturing execution system (MES) and programmable logic controllers (PLC) in IIoT through a selective literature review. Second, we present an exploratory case study to determine a protocol for cryptographic key management and key exchange suitable for the Smart Production Lab of Aalborg University (a learning cyber-physical factory). Finally, we combine the findings of the case study with a quality function deployment (QFD) method to determine design requirements for Industry 4.0. We identify specific requirements from both the high-level domain of factory capabilities and the low-level domain of cryptography and translate requirements between these domains using a QFD analysis. The recommendations for designing a secure smart factory focus on how security can be implemented for low power and low-cost IIoT devices. Even though there have been a few studies on securing IT to OT data exchange, we conclude that the field is not yet in a state where it can be applied in practice with confidence.
AB - Manufacturing is facing a host of new security challenges due to the convergence of information technology (IT) and operational technology (OT) in the industry. This article addresses the challenges that arise due to the use of low power Industrial Internet of Things (IIoT) devices in modular manufacturing systems of Industry 4.0. First, we analyze security challenges concerning the manufacturing execution system (MES) and programmable logic controllers (PLC) in IIoT through a selective literature review. Second, we present an exploratory case study to determine a protocol for cryptographic key management and key exchange suitable for the Smart Production Lab of Aalborg University (a learning cyber-physical factory). Finally, we combine the findings of the case study with a quality function deployment (QFD) method to determine design requirements for Industry 4.0. We identify specific requirements from both the high-level domain of factory capabilities and the low-level domain of cryptography and translate requirements between these domains using a QFD analysis. The recommendations for designing a secure smart factory focus on how security can be implemented for low power and low-cost IIoT devices. Even though there have been a few studies on securing IT to OT data exchange, we conclude that the field is not yet in a state where it can be applied in practice with confidence.
KW - Internet of Things
KW - Information security
KW - Manufacturing systems
KW - Information systems
KW - Manufacturing operations management
KW - Manufacturing flexibility
KW - Cyber-physical systems
KW - Industrial cybersecurity
KW - Smart factory
UR - http://www.scopus.com/inward/record.url?scp=85102802988&partnerID=8YFLogxK
U2 - 10.1109/ACCESS.2020.3035963
DO - 10.1109/ACCESS.2020.3035963
M3 - Journal article
AN - SCOPUS:85102802988
SN - 2169-3536
VL - 8
SP - 200305
EP - 200321
JO - IEEE Access
JF - IEEE Access
ER -