CYBERSECURITY IN THE INDUSTRIAL INTERNET OF THINGS

Transcription

1 CYBERSECURITY IN THE INDUSTRIAL INTERNET OF THINGS Susanne Bieller, EUnited Robotics EC Workshop in the area of autonomous systems / robots / IoT Brussels, 13 July 2017

2 Different needs according to classification Consumer Typically large quantities Professional operator Small numbers household applicances Domestic robots Industrial robots Separate regulation: Robots Toys / CE products Entertainment robots Profess. service robots

3 Robots in the production environment Robots are components / tools as any other machine Services Components Plant Connected manufacturing system

4 Different players in that context Each player having its share in the implementation Component manufacturer(s) System Integrator Operator / End user

5 Security measures must be kept up-to date over the complete product lifecycle Development Integration Operation within warranty Remaining lifetime operation Product level security System level security State-of-the-art at the time of hand-over Adaption of security level over product lifetime (20-30years)

6 Industrial Robots in the contect of IIoT Gripper Warehouse Cloud services Robot Robot controller (embedded PC) PLC controller Network External sensors ERP HMI

7 Common threats How do intruders get in? Social engineering and phishing Infiltration of Malware via removable media and external hardware Malware infection via Internet and Intranet Intrusion via remote access Human error and sabotage Control components connected to the Internet Technical malfunctions and force majeure Compromising of extranet and Cloud components (D)DoS Attacks Compromising smartphones in the production environment

8 Typical weak points Outdated software Control systems directly accessible over the internet Network bridge from control systems to unsafe networks (office LAN, wireless network) Uncontrolled plug-in of mobile devices and external storage devices Unsecure remote maintenance Remote access: use of VPN or RDP with unsafe or even without password allow for easy access via HMI / GUI Indirect access via add-on components like cameras

9 Potential associated damage in case of a cyber attack Leakage of (personal) data Leakage of sensitive business data / know-how / IP (own / customer) Loss of availability of the facility (loss of production) Telecontrol / manipulation of operation Causing physical damage to facilities Potential harm to humans or environment Triggering of safety procedures / interfering with safety systems Deterioration of product quality

10 Risk assessment Performed individually for each use, over complete product lifecycle Criteria: Prevalence: How prevalent is the potential vulnerability in the enterprise? Exposure: How easily can the vulnerability be located and reached? Exploitability: How easy is it to exploit (technical expertise & required effort) Detection: How easily can a compromise be detected? Risk = total damage x probability of occurance Threats Identify individual threats Rate probability of occurance Countermeasures Feasibility Efficiency Cost estimation Alternatives Business impact Economic consequences Total possible damage

11 Countermeasures during product development, integration and operation During development and integration: Network segmentation Proper management of user accounts, credentials, authentication and autorization Use of secure protocols & encryption Safeguarding wireless technology Secure remote services & maintenance Limit hardware functionality, use of hardend components During operation Monitoring and recognizing attacks Regular backups for recovery, documentation of security measures Training and awareness measures Monitoring of vulnerabilities and threats & respond to it (patch management) Update policies

12 What can the robot manufacturer do? Security by design Implementation of special safety features: Unintended access should lead to a shutdown / safety stop Change of configuration not during normal operation Decoupling of normal control and safety relevant function (separate software) Isolation of safety critical systems Limit remote accessibility of functions E.g. allow for monitoring, data recording, but not for change of modifications Consider special situation in human-robot collaboration

13 Standards dealing with security of communication Security standards IEC Industrial communication networks Network and system security IEC Power systems management and associated information exchange - Data and communications security OPC Unified Architecture (OPC UA) Communication protocol for industrial internet Manufacturer-independent link between nets (process control / company level) Includes integrated security features Regular security analyses are conducted to verify inherent security of the protocol Analysis of the specification revealed high level of security Analysis of reference implementation revealed certain deficiencies In an interative process, this will lead to further improvements of the standard

14 Challenges for industry Manufacturers are responsible for updates But responsibility for applying them is with users! Transfer of ownership Manufacturer has no access / responsibility Intended use vs. real usage Long lifetime of manufacturing equipment vs. short lifetime of IT High variety of versions / piece production requiring individual measures Fear of know-how leakage: manufacturers do not get access to facilities Loss of operating licenses after significant modifications (software update) Continous operation (several years until next patch can be installed) Dependence in production processes The whole process needs to be adapted, not just a single plant

15 Conclusion Standardisation is important Potential regulation should be based on standards Harmonised regulation on EU level welcome Necessary measures should be applicable globally Take a holistic approach over the whole product lifecycle Consider shared responsibility between manufacturer, integrator and operator Distinguish between B2B and B2C applications We need technology-friendliness Regulation should not discourage the use of new technologies

16 Who We Are Independent network of robotics industry leaders in Europe Collective voice of the European robotics industry Cooperation platform among industry decision-makers, research institutes, national associations, end-users, and policymakers Our members include robot manufacturers, component suppliers and system integrators Contacts: Susanne Bieller EUnited Robotics Boulevard A. Reyers Brussels, Belgium Phone