700 lines of code against cyber attacks on machines

A solution for fast and secure remote maintenance in Industry 4.0; Bundesdruckerei and genua with a joint booth at Hannover Messe; Another highlight: VS-NfD-approved network connection for iPhone und iPad

Berlin/Hanover – Bundesdruckerei and its subsidiary genua are showing solutions for secure production and Industry 4.0 at their joint booth at Hannover Messe (booth F28, hall 7). Three theme areas dedicated to "secure networking", "secure mobile employee" and "security consultancy" demonstrate how production companies can undergo secure digital transformation. "Bundesdruckerei is now offering its vast expertise as a high-security company to private industrial companies: as a complete IT security solution beginning with individual consultancy and ending with implementation, everything comes from a single source and is "Made in Germany"," says Ulrich Hamann, CEO of Bundesdruckerei GmbH. The world's most important industrial trade show is being held from 25 to 29 April in Hanover, Germany.

Gas turbines, industrial robots, chemical plants, etc. all have to be continuously monitored in order to be able to respond at the first sign of a disruption (predictive maintenance). If these systems, however, send operating and sensor data via the Internet, this means they can be reached via the Internet and are hence essentially open to attack. In order to avoid such cyber attacks, the "cyber diode", a data diode from genua permits data to flow in one direction only: i.e. from the critical system to the service provider or operator's control centre. The central diode function, i.e. the one-way data street, is not a typical optic fiber, instead it is made up of around 700 lines of code and runs on a micro-kernel operating system. The advantages of this compact software solution are that files and e-mails can be transmitted using various protocols at a speed of 1Gbps while the low level of complexity means that the code can be checked, thus avoiding programming errors. By comparison, the latest versions of operating systems like Windows or Apple OS have more than 500 million lines of code.

When maintenance is being carried out, if external service providers have to access machines online that are integrated into production networks, this is also possible without compromising security.  At the agreed time, the service provider and the customer establish encrypted connections to a rendezvous server. This is the only way to establish a continuous maintenance connection. Now, the service provider can communicate with the machine system in the customer's network while the customer maintains complete control over its network and the work carried out. "High-security remote maintenance is a basic precondition for fully connected Industry 4.0," says Mr Hamann.

At this year's joint booth, visitors will also see how employees can be securely integrated online into sensitive networks. "Bundesdruckerei's GoID Card is the key to secure digital identities," Mr Hamann explains. Strong encryption based on the latest cryptographic methods and rights management at document level effectively protect against any loss of transmitted data. A system solution will be on display, showing how iPhones and iPads can be connected to an organisation's network while fulfilling the German VS-NfD (RESTRICTED) security level.  This solution was developed by genua together with the German software company Virtual Solution und Computacenter as the integrator. Easy to implement and use, the solution is designed for public agencies and private companies.

The experts from genua and Bundesdruckerei will also be present at the trade fair to advise companies on how to develop and introduce suitable structures and processes for digitisation. They can, for instance, help companies with critical infrastructures (CIP) to implement the new IT security law or introduce an information security management system (ISMS).

The susceptibility of networked industrial systems will be demonstrated during a live hacking event at the booth on Thursday, 28 April, beginning at 4pm.

700 lines of code against cyber attacks on machines

File size: 74.88 KB

Format: PDF

Download file