Applicability of Security Standards for Operational Technology by SMEs and Large Enterprises

Wagner, Patrick; Hansch, Gerhard; Konrad, Christoph; John, Karl-Heinz; Bauer, Jakob; Franke, Jörg

doi:10.1109/etfa46521.2020.9212126

Cited by 10 publications

(6 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…With this, we can create a dataset that will help us evaluate the situation and value the system. • The second aspect is an Industrial IoT architecture that transforms and articulates this information in an agile way from the operational technology (OT) [42] environment to information technology (IT) [43]. From this point, we will obtain a classified and plotted structure of the acquired data in near real time to make decisions in the face of the problem.…”

Section: Proposalmentioning

confidence: 99%

IIoT System for Intelligent Detection of Bottleneck in Manufacturing Lines

Rodríguez Aguilar,

Cardiel,

Somolinos

2023

Applied Sciences

View full text Add to dashboard Cite

Production lines face numerous challenges to meet market demands, including constant changes in products that require continuous adjustments. Efficient and rapid reconfiguration and adaptation of production processes are crucial. In cases of inadequate adaptation, bottlenecks can arise due to human errors or incorrect configurations, often introducing complexity in pinpointing the root cause and resulting in financial losses. Furthermore, improper machine maintenance contributes to this situation as well. This article seeks to establish a framework grounded in the contemporary smart factory, the IIoT, the Industry 4.0 paradigm, and Big Data. The proposed system places emphasis on leveraging real-time data analysis for predicting risks, while concurrently conducting a thorough analysis of historical data to monitor trends and enhance bottleneck identification. The defined architecture operates across multiple levels, acquiring real-time information and generating historical data for training and continuous optimization. Predictive results contribute to decision-making and assist in mitigating bottlenecks in manufacturing lines.

show abstract

Section: Proposalmentioning

confidence: 99%

IIoT System for Intelligent Detection of Bottleneck in Manufacturing Lines

Rodríguez Aguilar,

Cardiel,

Somolinos

2023

Applied Sciences

View full text Add to dashboard Cite

show abstract

“…In Section 2, the paper will discuss the overall risk management with the vulnerabilities and threats identification, followed by the existing security assessment. Section 3 will describe known risk sources in Operational Technology (OT) [59,60] systems with several examples of these systems' vulnerabilities exploitation. Section 4 will discuss where the most urgent actions are required in industrial control network systems, presenting several examples of solutions improving the security.…”

Section: Introductionmentioning

confidence: 99%

Security Challenges in Industry 4.0 PLC Systems

2021

View full text Add to dashboard Cite

The concept of the fourth industrial revolution assumes the integration of people and digitally controlled machines with the Internet and information technologies. At the end of 2015, more than 20 billion machines and devices were connected to the Internet, with an expected growth to half a trillion by 2030. The most important raw material for this digital revolution is data, which when properly stored, analyzed and secured, constitute the basis for the development of any business. In times of rapid industrial development, automation of production processes and systems integration via networks, the effective protection of the cyber-physical systems of a plant is particularly important. To minimize the risks associated with Internet access, one must define all the possible threats and determine their sources in the plant and block or minimize the possibility of sabotage or data loss. This article analyzes the security measures used in industrial systems. In particular, risk management and the study of the risk sources in terms of human, hardware and software aspects in networked PLC and SCADA systems are discussed. Methods of improving the architecture of industrial networks and their management are proposed in order to increase the level of security. Additionally, the safety of the communication protocols with PLCs in industrial control systems is discussed.

show abstract

“…In the knowledge that cybersecurity is an existential problem that is often not given proper consideration by SMEs, an increasing number of customers demand audit certificates from their suppliers as proof of a basic level of security [12]. Comparing international information security (IS) standards for certification and frameworks in combination with a corresponding literature review, it is shown that effective operational IS management is a systematic means of addressing the threats and risks to information system security, where technology is not enough [13].…”

mentioning

confidence: 99%

“…However, there is a lack of SME-focused ISMS. As a result, Wagner et al strongly recommend explicitly considering the specific role of SMEs and creating dedicated and auditable standards [12]. Their study shows that most domain-specific security standards are applicable to large enterprises.…”

mentioning

confidence: 99%

See 1 more Smart Citation

The Current State of ―Information Security Awareness‖ in German SMEs

Scholl¹,

Schuktomow²

2021

IJETAE

View full text Add to dashboard Cite

The role of information security in German SMEs is becoming increasingly important. External input plays a key role here, but some of it tends to overwhelm SMEs rather than providing systematic assistance that can be readily implemented. In a project funded by the German Federal Ministry for Economic Affairs and Energy, an overall scenario for new ways to achieve more sustainable information security (IS) in German SMEs is being developed, one that puts people at the heart of the measure. In addition to a current literature search on the situation in companies, the current state of information security and IS awareness is recorded in the project through a combination of different methods: indepth psychological interviews, an online survey in four pilot companies and security-related competence profiles derived from the German IT-Grundschutz. This article presents some preliminary results published. Keywords—Information security, awareness, human factor, German SMEs, in-depth interviews, survey, competence profiles, security topics, training methods.

show abstract

Applicability of Security Standards for Operational Technology by SMEs and Large Enterprises

Cited by 10 publications

References 9 publications

IIoT System for Intelligent Detection of Bottleneck in Manufacturing Lines

IIoT System for Intelligent Detection of Bottleneck in Manufacturing Lines

Security Challenges in Industry 4.0 PLC Systems

The Current State of ―Information Security Awareness‖ in German SMEs

Contact Info

Product

Resources

About