Skip to main content
SpringerLink
Log in

Access Control for Smart Manufacturing Systems

  • Conference paper
  • First Online:
Software Architecture (ECSA 2020)

Part of the book series: Communications in Computer and Information Science ((CCIS,volume 1269))

Included in the following conference series:

Abstract

In the ongoing \(4^{th}\) industrial revolution, a new paradigm of modular and flexible manufacturing factories powered by IoT devices, cloud computing, big data analytics and artificial intelligence is emerging. It promises increased cost efficiency, reduced time-to-market and extreme customization. However, there is a risk that technical assets within such systems will be targeted by cybersecurity attacks. A compromised device in a smart manufacturing system could cause a significant damage, not only economically for the factory owner, but also physically on humans, machinery and the environment.

Strict and granular Access Control is one of the main protective mechanisms against compromised devices in any system. In this paper we discuss the requirements and implications of Access Control within the context of Smart Manufacturing. The contributions of this paper are twofold: first we derive requirements on an Access Control Model in the context of smart manufacturing, and then asses the Attribute Based Access Control model against these requirements in the context of a use case scenario.

This work is supported by the industrial postgraduate school Automation Region Research Academy (ARRAY), funded by The Knowledge Foundation. The authors would like to acknowledge Andrea Macauda and Axel Haller for valuable discussions and feedback.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    More information available at http://ims.org.

  2. 2.

    Part 3-3: System security requirements and security levels, Ed 1.0, 2013.

  3. 3.

    Here x is used as variable representing either an entity p or a device d.

  4. 4.

    https://csrc.nist.gov/Projects/Policy-Machine.

References

  1. Mittal, S., Khan, M.A., Wuest, T.: Smart manufacturing: characteristics and technologies. In: Harik, R., Rivest, L., Bernard, A., Eynard, B., Bouras, A. (eds.) PLM 2016. IAICT, vol. 492, pp. 539–548. Springer, Cham (2016). https://doi.org/10.1007/978-3-319-54660-5_48

    Chapter  Google Scholar 

  2. Davis, J., Edgar, T., Porter, J., Bernaden, J., Sarli, M.: Smart manufacturing, manufacturing intelligence and demand-dynamic performance. Comput. Chem. Eng. 47, 145–156 (2012)

    Article  Google Scholar 

  3. Thoben, K.-D., Wiesner, S., Wuest, T.: “Industrie 4.0” and smart manufacturing - a review of research issues and application examples. Int. J. Autom. Technol. 1, 4–16 (2017)

    Article  Google Scholar 

  4. Tuptuk, N., Hailes, S.: Security of smart manufacturing systems. J. Manuf. Syst. 47(April), 93–106 (2018)

    Article  Google Scholar 

  5. Slowik, J.: Evolution of ICS attacks and the prospects for future disruptive events. Technical report (2017)

    Google Scholar 

  6. Watson, V., Sassmannshausen, J., Waedt, K.: Secure granular interoperability with OPC UA In: INFORMATIK 2019: 50 Jahre Gesellschaft für Informatik - Informatik fr Gesellschaft (2019)

    Google Scholar 

  7. Park, J., Sandhu, R.: The UCON\(_{ABC}\) usage control model. ACM Trans. Inf. Syst. Secur. 7(1), 128–174 (2004)

    Article  Google Scholar 

  8. Lang, U., Schreiner, R.: Proximity-based access control (PBAC) using model-driven security. ISSE 2015, pp. 157–170. Springer, Wiesbaden (2015). https://doi.org/10.1007/978-3-658-10934-9_14

    Chapter  Google Scholar 

  9. Sadeghi, A.-R., Wachsmann, C., Waidner, M.: Security and privacy challenges in industrial internet of things. In: The 52nd IEEE Annual Design Automation Conference (2015)

    Google Scholar 

  10. Lu, Y., Ju, F.: Smart manufacturing systems based on cyber-physical manufacturing services (CPMS). IFAC-PapersOnLine 50, 15883–15889 (2017)

    Article  Google Scholar 

  11. Whitman, M., Mattord, H.: Principles of information security. In: Cengage Learning, 4th edn. (2012)

    Google Scholar 

  12. Saltzer, J., Schroeder, M.: The protection of information in computer systems. IEEE 63(9), 1278–1308 (1975)

    Article  Google Scholar 

  13. Sandhu, R., Ranganathan, K., Zhang, X.: Secure information sharing enabled by trusted computing and PEI models. In: Proceedings of ACM Symposium on Information, Computer and Communications Security (2006)

    Google Scholar 

  14. Sandhu, R.S., Samarati, P.: Access control: principles and practice. IEEE Commun. Mag. 32, 40–48 (1994)

    Article  Google Scholar 

  15. Lopez, J., Rubio, J.E.: Access control for cyber-physical systems interconnected to the cloud. Comput. Netw. 134, 46–54 (2018)

    Article  Google Scholar 

  16. Salonikias, S., Gouglidis, A., Mavridis, I., Gritzalis, D.: Access control in the industrial internet of things. In: Alcaraz, C. (ed.) Security and Privacy Trends in the Industrial Internet of Things. ASTSA, pp. 95–114. Springer, Cham (2019). https://doi.org/10.1007/978-3-030-12330-7_5

    Chapter  Google Scholar 

  17. Yuan, E., Tong, J.: Attributed based access control for web services. In: Proceedings of IEEE International Conference on Web Services (2005)

    Google Scholar 

  18. eXtensible Access Control Markup Language (XACML) version 3.0 plus errata 01, standard, OASIS (2017)

    Google Scholar 

  19. Hu, V.C., et al.: Guide to attribute based access control (ABAC) definition and considerations. Technical report, NIST (2014)

    Google Scholar 

  20. Ferraiolo, D., Chandramouli, R., Kuhn, R., Hu, V.: Extensible access control markup language and next generation access control (2016)

    Google Scholar 

  21. Kitchenham, B.A.: Procedures for undertaking systematic reviews. Technical report, Keele University (2004)

    Google Scholar 

  22. B. Leander, "Towards an access control in a smart manufacturing context," tech. rep., Mälardalen Real-Time Research Centre, Mälardalen University (2020)

    Google Scholar 

  23. IEC 62443 security for industrial automation and control systems, standard, Internation Electrotechnical Commission, Geneva, CH, 2009–2018

    Google Scholar 

  24. Williams, T.J.: The purdue enterprise reference architecture. Comput Ind. 24(2), 141–158 (1994)

    Article  Google Scholar 

  25. Ladiges, J.: Integration of modular process units into process control systems. IEEE Transactions on Industry Applications 54, 1870–1880 (2018)

    Article  Google Scholar 

  26. Faller, C., Höftmann, M.: Service-oriented communication model for cyber-physical-production-systems. Procedia CIRP 67, 156–161 (2018)

    Article  Google Scholar 

  27. Ayatollahi, I., Brier, J., Mörzinger, B., Heger, M., Bleicher, F.: SOA on smart manufacturing utilities for identification, data access and control. Procedia CIRP 67, 162–166 (2018)

    Article  Google Scholar 

  28. IEC 61449 function blocks, standard, Internation Electrotechnical Commission, Geneva, CH (2012)

    Google Scholar 

  29. Turkmen, F., Crispo, B.: Performance evaluation of XACML PDP implementations. In: ACM Conference on Computer and Communications Security (2008)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Mälardalen University, Västerås, Sweden

    Björn Leander, Aida Čaušević & Hans Hansson

  2. ABB Industrial Automation, Process Control Platform, Västerås, Sweden

    Björn Leander & Tomas Lindström

Authors
  1. Björn Leander
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Aida Čaušević
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Hans Hansson
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Tomas Lindström
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Björn Leander .

Editor information

Editors and Affiliations

  1. University of L’Aquila, L’Aquila, Italy

    Henry Muccini

  2. University of Groningen, Groningen, The Netherlands

    Paris Avgeriou

  3. Faculty of Informatics, Masaryk University, Brno, Czech Republic

    Barbora Buhnova

  4. Department of Computer Science, University of York, York, UK

    Javier Camara

  5. Department of Computer Science, Linnaeus University, Växjö, Sweden

    Mauro Caporuscio

  6. University of L’Aquila, L’Aquila, Italy

    Mirco Franzago

  7. Karlsruhe Institute of Technology, Karlsruhe, Germany

    Anne Koziolek

  8. University of Bergamo, Dalmine, Italy

    Patrizia Scandurra

  9. Gran Sasso Science Institute, L’Aquila, Italy

    Catia Trubiani

  10. Department of Computer Science, KU Leuven, Leuven, Belgium

    Danny Weyns

  11. Faculty of Computer Science, University of Vienna, Vienna, Austria

    Uwe Zdun

Rights and permissions

Reprints and permissions

Copyright information

© 2020 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Leander, B., Čaušević, A., Hansson, H., Lindström, T. (2020). Access Control for Smart Manufacturing Systems. In: Muccini, H., et al. Software Architecture. ECSA 2020. Communications in Computer and Information Science, vol 1269. Springer, Cham. https://doi.org/10.1007/978-3-030-59155-7_33

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-59155-7_33

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-59154-0

  • Online ISBN: 978-3-030-59155-7

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation