Siemens view and approach on critical infrastructure resilience against cyberthreats Joint OECD-JRC Workshop, Paris September 2018

Transcription

1 Siemens view and approach on critical infrastructure resilience against cyberthreats Joint OECD-JRC Workshop, Paris September 2018 Unrestricted

2 Cybersecurity is about processes, people, technology Resilience against cybertheats needs a holistic approach. It is about processes, people and technology. Page 2

3 KEY PRINCIPLES Charter of Trust for a secure digital world 01 Ownership of cyber and IT security 06 Education 02 Responsibility throughout the digital supply chain 07 Certification for critical infrastructure and solutions 03 Security by default 04 User-centricity 08 Transparency and response 09 Regulatory framework 05 Innovation and co-creation 10 Joint initiatives Page 3

4 We re reaching out to politicians, media & customers with strong messages: Let us be your trusted partners for cybersecurity and digitalization Together we will improve our technology, people and processes Join us by following our principles and making the digital world more secure Page 4

5 Charter of Trust Principle 7 Definition and scope CoT Principle 7 Term Definition Scope Certification for critical infrastructure and solutions: Companies and if necessary governments establish mandatory independent third-party certifications (based on future-proof definitions, where life and limb is at risk in particular) for critical infrastructure as well as critical IoT solutions. independent thirdparty certifications where life and limb is at risk critical infrastructure critical IoT solutions Certification implies the issuance of an attestation of conformity by an organization independent of the manufacturer or provider of the critical infrastructure or critical IoT solution. This attestation may be based on an assessment result issued by either a manufacturer s inhouse testing / inspection body or by an external testing / inspection organization. Certification bodies should accept the assessment results issued by manufacturers in-house testing / inspection bodies, in particular when these bodies have been accredited for the relevant scope. Life and limb is at risk where an incident would directly lead to the risk of harm to a person Critical infrastructures are IT/OT infrastructures in operation including assets, systems, solutions and/or services which are essential for the maintenance of vital societal functions. Critical IoT solutions are connected solutions which are performing autonomously their functions and interacting with their environment without human intervention and essential for the maintenance of vital societal functions. Critical infrastructure Life and limb at risk OR Critical IoT solution Life and limb at risk In scope of Principle #7 Page 5

6 Holistic protection for critical infrastructure based on IEC and ISO/IEC On site / site specific Industrial Automation and Control System (IACS) Defense-in-Depth Asset Owner Service Provider operates and maintains Operational policies and procedures Maintenance policies and procedures IEC ISO/IEC IEC ISO/IEC System Integrator designs and deploys Control functions Automation solution Safety functions Complementary functions IEC IEC ISO/IEC Off site Product Supplier develops products Holistic Security Concept IEC IEC IEC ISO/IEC Page 6

7 Charter of Trust Principle 7 Two complementary approaches are necessary Protection of critical infrastructure and critical IoT solutions should consider two approaches Certification of protection of infrastructures in operation AND Certification of capabilities of security relevant components IT/OT Infrastructure protection by means of a Defense-in-depth concept including process, people, technology Technical capabilities and development process of security relevant components Certificate Security relevant component essential for the protection Certification derived from IEC and ISO/IEC requirements for IT/OT infrastructure in operation On site Critical infrastructure Critical IoT solution Security relevant components Components with lower security requirements Certification derived from IEC requirements for components Off site Critical infrastructure Critical IoT solution Security relevant components Components with lower security requirements Page 7

8 Charter of Trust Principle 7 Proposal for a certification scheme for products, systems and services according to the EU Cybersecurity Act Proposal for certification scheme: Threat and risk exposure Assurance level Protection mechanism Assessment type Target protection levels for IT/ OT infrastructures High Critical infrastructure and critical IoT solution where life and limb is at risk High Defense in depth concept and / or Security relevant components in particular if no defense in depth concept is in place Certification 1) E.g., Target Protection Level TPL 3/4 (IEC 62443) Medium Sector / Use case dependent Substantial Sector / Use case dependent Certification of development process / security by design <OR> Self declaration of conformity E.g., Target Protection Level TPL 2/3 (IEC 62443) Low Sector / Use case independent Basic Sector / Use case agnostic Self declaration of conformity E.g., Target Protection Level TPL 1 or below (IEC 62443) 1) Important to note: Certification is NOT required if product or solution requires approval from a relevant authority or public body (e.g. national railway authority). Certification implies the issuance of an attestation of conformity by an organization independent of the manufacturer or provider of the critical infrastructure or critical IoT solution. This attestation may be based on an assessment result issued by either a manufacturer s inhouse testing / inspection body or by an external testing / inspection organization. Certification bodies should accept the assessment results issued by manufacturers in-house testing / inspection bodies, in particular when these bodies have been accredited for the relevant scope. Page 8

9 Dr. Pierre Kobes Product and Solution Security Officer Standards, Regulations, Certifications Division Digital Factory Division Process Industries and Drives Page 9

10 Page 10