Projects per year
Security is a vital property of SCADA systems, especially in the context of critical infrastructure. In this work, we focus on distributed control devices for hydro-electric power plants. Much work has been done for specific lifecylce phases of distributed control devices such as development or operational phase. Our aim here is to consider the entire product lifecycle and the consequences of security feature implementations for a single lifecycle stage on other stages. In particular, we discuss the security concept used to secure our control devices in the operational stage and show how these concepts result in additional requirements for the development and production stages.We show how we meet these requirements and focus on a production process that enables the commissioning of secrets such as private keys during the manufacturing phase. We show that this can be done both, securely and with acceptable overhead even when the manufacturing process is handled by a contract manufacturer that is not under full control of the OEM.
|Title of host publication||Systems, Software and Services Process Improvement - 23rd European Conference, EuroSPI 2016, Proceedings|
|Publisher||Springer International Publishing AG|
|Number of pages||13|
|Publication status||Published - 2016|
|Event||23rd European Conference on Systems, Software and Services Process Improvement, EuroSPI 2016 - Graz, Austria|
Duration: 14 Sep 2016 → 16 Sep 2016
|Name||Communications in Computer and Information Science|
|Conference||23rd European Conference on Systems, Software and Services Process Improvement, EuroSPI 2016|
|Period||14/09/16 → 16/09/16|
ASJC Scopus subject areas
- Computer Science(all)
Kreiner, C. J., Rauter, T., Höller, A. & Iber, J.
1/11/14 → 31/10/17
Project: Research project