Security
Research project on secure updates
Under the project management of Infineon, the BMBF-funded project 'Alessio' is investigating how networked machines and durable devices can be equipped with updatable security mechanisms.
Whether Industry 4.0, autonomous driving or smart home solutions - networked machines and durable devices require updatable security mechanisms. Researching and evaluating these is the aim of the joint project 'Alessio', which is being led by Infineon Technologies. Other project partners from Munich are the Fraunhofer Institute for Applied and Integrated Security(AISEC), Giesecke &Devrient, Siemens and the Technical University of Munich (TUM) as well as Wibu-Systems from Karlsruhe. The project will run until the end of 2019 and is being funded by the German Federal Ministry of Education and Research (BMBF) with around 3.9 million euros.
Every new networked device in the Internet of Things offers another digital attack surface. Sensitive data and information can easily be captured from the network and used for further attacks if they are not adequately protected. Reliable protection of security-critical information is therefore based on a combination of software and hardware. The hardware - a security chip - is comparable to a safe: a specially protected area in which data and security keys are stored separately from the software. However, in the case of durable goods such as industrial equipment, data and security-relevant information must also be able to be updated. This is the only way manufacturers can react to changed or new attack methods.
The aim of 'Alessio' is therefore to develop updateable security solutions for such embedded systems over the next three years. One approach envisages a classic chip-based security element with updatable software. In addition, a security element will be implemented in complex, programmable logic circuits (FPGA, Field Programmable Gate Array). Three practical prototypes will demonstrate the feasibility and functionality of these solutions.
You might also be interested in
Petya could be aimed at destroying data
Communication between victims and cybercriminals takes place via an ordinary email service, and unlocking the data is extremely complicated - according to Bitdefender, these are signs that the people behind Petya are not interested in extortion...
read more...These IT commands indicate cyberattacks
The rapid detection of IT attacks is a basic prerequisite for immediate reactions and the acceleration of incident response processes. Cyberark has identified ten IT commands that can indicate a possible insider or cyber attack.
read more...Generational change at Pilz
Pilz exceeded the 300 million euro sales mark for the first time in 2016. 2017 is characterized by a generational change: At the end of the year, Renate Pilz will hand over the operational business completely into the hands of her children Susanne...
read more...Almost 40% of all industrial computers affected
Two out of five computers used in industrial environments were exposed to cyberattacks in the second half of 2016. This is according to a recent Kaspersky report on cyber threats to industrial automation systems.
read more...Secure service access
The number of connected production networks will increase steadily in the age of Industry 4.0. However, access protection for complex networked machines and systems poses major challenges for operators - including in terms of service access.
read more...Hybrid cloud on the rise
Trust in cloud technology is growing: this is the conclusion of Intel Security's annual report on cloud usage. However, data security remains a major issue.
read more...Kaspersky presents its own operating system
Kaspersky is presenting its 'Kaspersky OS' specifically for embedded systems, which is aimed at the development of cyber-secure devices in three industries.
read more...'Cyber security learning lab' launched in Görlitz
Fraunhofer IOSB has opened the 'Cyber Security for Critical Infrastructures Learning Lab'. It is intended to drive forward research and development in the field of IT security and raise awareness of the topic among companies and authorities.
read more...What cyber threats await us in 2017?
Ransomware - malware that infects computers and demands money to unlock them - is developing rapidly in 2017. Hackers are targeting the business sector, the IoT and the Industrial Internet of Things in particular. This is the outlook provided by IT...
read more...