Conference Paper

Secure Usage of Asset Administration Shells - An Overview and Analysis of Best Practises

  • November 2021
DOI:10.25673/39569
  • Conference: Kommunikation in der Automation - KommA 2021
  • At: Magdeburg, Germany
Authors:
Andre Bröring at Technische Hochschule Ostwestfalen-Lippe University of Applied Sciences and Arts
Andre Bröring
Marco Ehrlich at Technische Hochschule Ostwestfalen-Lippe University of Applied Sciences and Arts
Marco Ehrlich
Henning Trsek at rt-solutions.de
Henning Trsek
  • rt-solutions.de
Lukasz Wisniewski at Technische Hochschule Ostwestfalen-Lippe University of Applied Sciences and Arts
Lukasz Wisniewski
Download citation
To read the full-text of this research, you can request a copy directly from the authors.

Abstract

The Asset Administration Shell (AAS) is a core element for Industrie 4.0. In addition, the security of industrial systems is a permanent topic that could be improved by the AAS and should have a high priority for future developments and implementations of the AAS. This paper evaluates the current threat landscape for Industrial Control Systems (ICS) communicating to the AAS, as well as for IT systems hosting the AAS. The relevance of these threats is evaluated for the AAS and the threats with the highest relevance, namely BasicWeb Application Attacks and Malware Infections, are analysed in detail. The recommended countermeasures for these threats are compared with the state of the art of AAS security concepts and result in missing countermeasures and research gaps for an overall security of the AAS.

No full-text available

Request Full-text Paper PDF

To read the full-text of this research,
you can request a copy directly from the authors.

... An AAS as a DT receives and stores different types of data, including runtime data, historical data or domain knowledge and produces information and commands for its physical counterpart and other users [3]. Being like a data silo means an AAS is a critical element of the system that might draw the attention of attackers [9]. Communication channels are necessary for data, information and command exchange and can potentially expand the attack vector of the system to a large extent. ...
... However, AAS tends to operate inside the OT domain. This matter of fact creates uncertainty in choosing a standardized approach for securing the application [9]. ...
... This section presents the security attacks relevant to AAS and their possible impact on safety functions. [4], [9], [21], [22]. We categorize attacks based on their impact on elements of AAS according to Fig 4. 1) Users and User Interface: The AAS users and user interface can introduce vulnerabilities to the total system. ...
View
ResearchGate has not been able to resolve any references for this publication.