Engineering Security for Production Systems
Our research in Subtopic 4 “Engineering Security for Production Systems” is concerned with the cybersecurity of industrial communication infrastructure and with trustworthy manufacturing assistance systems. In this scope, we work on industrial network security, ML-based testing of automation components, usage control, trusted computing, and explainable AI. Our research questions are vital for the resilience of critical infrastructures and for the digital sovereignty of employees in production as well as between organizations. We conduct interdisciplinary research together with economists and lawyers.
Research Area 1 – Transparent and Trustworthy Interactive Assistance
Research Area 1 – Transparent and Trustworthy Interactive Assistance
Involved PIs: Patricia Arias Cabarcos, Jürgen Beyerer (Spokesperson), Marcus Wiens
Active Researchers: Maximilian Becker, Pascal Birnstill, Matin Fallahi, Florian Kaiser, Paul Wagner, Tim Zander
Interactive assistance plays an increasingly important role in many modern production processes. Since these systems acquire and process information about human workers to assist them in their tasks, designing assistance systems to be privacy-friendly and secure is a major concern. The goal of this Research Area is to develop interactive manufacturing assistance systems that are both transparent – in the sense of being comprehensible for their users, but also in the sense of data protection duties of operators – as well as trustworthy – in the sense of being privacy-friendly and comprehensibly secure. We focus our research on assistance systems for manual assembly and quality assurance use cases.
Research Area 2 – Security for Production Networks and Devices
Research Area 2 – Security for Production Networks and Devices
Involved PIs: Jürgen Beyerer, Marcus Wiens, Christian Wressnegger
Active Researchers: Anne Borcherding, Mark Giraud, Christian Haas, Yilin Ji, Qi Lei, Ankush Meshram, Maximilian Noppel, Laura Tzigiannis, Jonas Vogl
An essential part of securing production facilities is to secure the industrial devices and the industrial network of such facilities. Cybersecurity in industrial production has to take into account specific basic conditions which are not as relevant in an office environment, in the case of PC workstations or Internet servers. The control of production plants is associated with real-time requirements which make it difficult or even impossible to modify the systems. For this reason, new strategies and methods have to be found for production environments to ensure IT security in practice, not only in new systems, but also in existing installations, above all.
Industrial networks are the target-center of recent Advanced Persistent Threats (APTs). We aim to develop an industrial cybersecurity platform with KASTEL Proof-of-Concept (PoC) Demonstrator to address Cyber Threat Intelligence (CTI) for Industrial Control Systems (ICS). Threat behaviors need to be modeled succinctly for efficient threat detection performance and design appropriate automated mitigation playbooks.
| Name | Function | |
|---|---|---|
| Pascal Birnstill | pascal birnstill ∂does-not-exist.iosb fraunhofer de | Lab Leader |
| Christian Haas | christian haas ∂does-not-exist.iosb fraunhofer de | Lab Leader |
| 2 additional persons visible within KIT only. | ||