Control of Cyber-Physical Production Systems: A Concept to Increase the Trustworthiness within Multi-Agent Systems with Distributed Ledger Technology

In the course of increasing the flexibility in the area of production, industrial enterprises have been presented with cyber-physical production systems (CPPS). Through the use of autonomously acting CPPS and CPPS components – which often receive multi-agent systems as their corresponding cyber parts – new challenges arise from the need for flexibility and interoperability on the one hand and consistency, trustworthiness as well as reliability of the systems and their components on the other. In order to meet these challenges, this research paper is dedicated to the creation of a technical concept for implementing distributed ledger technology production systems. The paper follows a design-science approach, which consist of analysis, design, and evaluation. The technical concept is based on the GAIA method, which aims to design multi-agent systems and specifically addresses the security and trustworthiness of CPPS-environments. The subsequent evaluation of the concept based on discussions with experts documents its relevance and potential

The convergence of IT and OT in critical infrastructure

Automation and control systems, such as SCADA (Supervisory Control and Data Acquisition), DCS (Distributed Control Systems) and are often referred to as Operational Technology (OT). These systems are used to monitor and control critical infrastructures such as power, pipelines, water distribution, sewage systems and production control,). Traditionally, these OT systems have had a degree of physical separation from Information Technology (IT) infrastructures. With changing technologies and a drive towards data-driven and remote operations the two technology environments are starting to converge. With this convergence, what was a relatively standalone secure and isolated environment is now connected and accessible via the Internet/cloud. With this interconnection comes the cyber security challenges that are typically associated with only with IT infrastructures. OT data that is then accessible from these environments could include critical information such as pressures, temperatures, proximity levels, control signals and other sensor signals. Due to the aforementioned convergence, OT data and associated control mechanisms are now significantly vulnerable to cyber-attacks. This paper provides an understanding of cyber security in an operational technology context (rather than traditional IT environments) and discusses the underlying causes, vulnerabilities, and the risks that are created by convergence and interconnection. We report on evidence of convergence between IT and OT, and use Hofstede’s model of organisational culture to explain the different attitudes and value drivers in IT and OT

State-of-the-art Cyber-enabled Physical and Digital Systems Deployed in Distributed Digital Factory Using Additive and Subtractive Manufacturing Systems: Open, Scalable, and Secure Framework

A distributed digital factory (DDF) integrates physical and digital systems, leveraging additive manufacturing (AM) and subtractive manufacturing (SM), to enable the dispersed production of components. Existing work focuses on digital twins, AM and SM systems, and some security aspects. Nevertheless, a holistic view of integrating devices with dynamic provisions to invoke digital twins has limited supporting research. This paper will detail cyber-physical and digital systems deployed in DDFs. The components of cyber systems, including AM & SM equipment, sensors, communication protocols, and monitoring software, are covered. Challenges associated with the design and deployment of DDFs, such as security, scalability, and interoperability, are detailed. The assessment emphasizes an open framework for DDF development, allowing system integration from vendors & participants across diverse locations and capabilities. The article also examines the significance of a scalable and secure framework for the implementation of DDFs, which ensures the dependability and availability of on-demand manufacturing.Mechanical Engineerin

Science Hackathons for Cyberphysical System Security Research: Putting CPS testbed platforms to good use

A challenge is to develop cyber-physical system scenarios that reflect the diversity and complexity of real-life cyber-physical systems in the research questions that they address. Time-bounded collaborative events, such as hackathons, jams and sprints, are increasingly used as a means of bringing groups of individuals together, in order to explore challenges and develop solutions. This paper describes our experiences, using a science hackathon to bring individual researchers together, in order to develop a common use-case implemented on a shared CPS testbed platform that embodies the diversity in their own security research questions. A qualitative study of the event was conducted, in order to evaluate the success of the process, with a view to improving future similar events

Methodology for Designing Decision Support Systems for Visualising and Mitigating Supply Chain Cyber Risk from IoT Technologies

This paper proposes a methodology for designing decision support systems for visualising and mitigating the Internet of Things cyber risks. Digital technologies present new cyber risk in the supply chain which are often not visible to companies participating in the supply chains. This study investigates how the Internet of Things cyber risks can be visualised and mitigated in the process of designing business and supply chain strategies. The emerging DSS methodology present new findings on how digital technologies affect business and supply chain systems. Through epistemological analysis, the article derives with a decision support system for visualising supply chain cyber risk from Internet of Things digital technologies. Such methods do not exist at present and this represents the first attempt to devise a decision support system that would enable practitioners to develop a step by step process for visualising, assessing and mitigating the emerging cyber risk from IoT technologies on shared infrastructure in legacy supply chain systems

The future of Cybersecurity in Italy: Strategic focus area

This volume has been created as a continuation of the previous one, with the aim of outlining a set of focus areas and actions that the Italian Nation research community considers essential. The book touches many aspects of cyber security, ranging from the definition of the infrastructure and controls needed to organize cyberdefence to the actions and technologies to be developed to be better protected, from the identification of the main technologies to be defended to the proposal of a set of horizontal actions for training, awareness raising, and risk management

Securing the Participation of Safety-Critical SCADA Systems in the Industrial Internet of Things

In the past, industrial control systems were ‘air gapped’ and isolated from more conventional networks. They used specialist protocols, such as Modbus, that are very different from TCP/IP. Individual devices used proprietary operating systems rather than the more familiar Linux or Windows. However, things are changing. There is a move for greater connectivity – for instance so that higher-level enterprise management systems can exchange information that helps optimise production processes. At the same time, industrial systems have been influenced by concepts from the Internet of Things; where the information derived from sensors and actuators in domestic and industrial components can be addressed through network interfaces. This paper identifies a range of cyber security and safety concerns that arise from these developments. The closing sections introduce potential solutions and identify areas for future research