search.noResults

search.searching

dataCollection.invalidEmail
note.createNoteMessage

search.noResults

search.searching

orderForm.title

orderForm.productCode
orderForm.description
orderForm.quantity
orderForm.itemPrice
orderForm.price
orderForm.totalPrice
orderForm.deliveryDetails.billingAddress
orderForm.deliveryDetails.deliveryAddress
orderForm.noItems
Page 16


ManageMent www.us-tech.com


Securing M2M Communications with Industrial Flash Memory Cards


By Hubertus Grobbel, Head of Security Products Division, Swissbit AG I


n the smart factory, sensors, ac- tuators and systems are net- worked and communicate with


each other. But, how can data, com- munications, machines, and entire plants in the Industrial Internet of Things (IIoT) be secured? An easily integrated solution is to use industri- al flash memory cards with a secure element.


Networking itself is one signifi-


cant feature of all Industry 4.0 con- cepts. Smart production plants should be able to adapt automatical- ly to new products or events, commu- nicate data between machines and simultaneously offer user-friendly remote maintenance and control functions.


Networking industrial plants,


the independent communication be- tween “things” offers many opportuni- ties, along with new risks. What hap- pens if a hacker or compromised sys- tems gain control over machines in a factory? What kind of damage could be done if this were to happen at a power station or chemical plant? The critical question is: How does a “thing” know that the data or data queries received from another “thing” are correct and that the source of the message is truly what it purports to be?


Designating an ID to Things Identification, authentication


and authorization are the three steps to achieve secure communication. To


be identified, the user provides his or her information to log in. Authentica- tion is the next step, where the claimed identity is verified. Users must enter a password, PIN or use an additional form of hardware secu- rity, such as a token or ID card. For very secure environments, two-factor authentication is required, such as a password entered in conjunction with a non-clonable ID object. Once users have been successfully authen- ticated, they are authorized to re- ceive access to the extent that they were previously allowed. For the authentication of people


by IT systems, smart ID cards work well. But how should “things” identi- fy themselves? Pure software solu- tions for securing M2M communica- tions can be tampered with. Systems communicating through the internet or IoT gateways must have an identi- ty that cannot be cloned, but also be able to send and receive cryptograph- ically secured data. This type of protection requires


hardware to be implemented, re- ferred to as a secure element or an- chor. A few approaches include using SIM cards, soldering identifiable hardware components, such as a trusted platform module (TPM), onto the assembly, or using processors that are clearly identifiable by inte- grated elements — a trusted execu- tion environment (TEE). Each of these methods has limi-


tations that must be considered. They offer security, but also limit the flexibility of the solution, because manufacturers are then bound to specific vendors, assemblies or processors.


Retrofittable Solution An alternative, easy-to-inte-


grate and retrofittable solution is to use industrial flash memory cards with an integrated secure element that acts as a TPM. This offers devel- opers of IIoT components and sys-


Lost your news item of interest?


DL Technology has been the leader in micro dispensing technology for over 15 years. For more 


www.dltechnology.com 216 River Street, Haverhill, MA 01832 • P: 978.374.6451 • F: 978.372.4889 • sales@dltechnology.com


Find it once again at www.us-tech.com


tems many advantages over other methods.


Integration is extremely simple


for designers, as memory interfaces are standardized, middleware for the integration of TPM queries is sup- plied and the flash memories with TPM are available in various shapes and sizes, including SD, microSD or USB flash drive. Secure memory modules are based on cards that have been specified for industrial use for years, due to their significantly extended temperature ranges and longer durability and availability. The idea to combine the identi-


fier with a standard data memory is appealing, because most IIoT compo- nents and systems require memory anyway for operating systems and data. Secure memory cards consist of a flash memory chip, a smart card and a flash controller. Its special firmware with integrated AES en- cryptor allows other applications. Because a crypto-element is used


to secure the device, both communica- tions and data can be encrypted. This allows for trusted boot processes and for licenses to be secured. The flash memory with encryptor can also be used to encrypt additional data memo- ry within the system, such as conven- tional hard drives. The flash memory cards pro-


posed for the authentication and en- cryption within the IIoT are already employed on a large scale in tap- proof mobile phones, police body cameras and for the protection of pa- tient data in medical technology.


Benefit to Sustainability To network plants and machin-


ery requires integrating existing sys- tems. The introduction of an encrypt- ed communication between machines is part of the retrofitting process. If they come with standard USB or SD interfaces, these legacy systems can be equipped with an SD card as TPM — a sort of SIM card for “things” — with tamper-proof identities. Easy retrofitting is one of the most appar- ent benefits of secure flash memory cards. During the lifecycle of a prod- uct, its security features become out- dated. The expected emergence of the quantum computer in the next few years presents a particular threat to encryption processes. As a result, it will be easy to hack asymmetrical cryptography. Product managers must consider the upgradeability of security solutions. As easily ex- changeable modules, secure memory


cards offer an excellent solution. Contact: Swissbit NA, Inc., 18


Willett Avenue, Suite 202, Port Chester, NY 10573 % 914-935-1400 fax: 914-935-9865 E-mail: sales@swissbitna.com Web: www.swissbit.com r


August, 2018


Page 1  |  Page 2  |  Page 3  |  Page 4  |  Page 5  |  Page 6  |  Page 7  |  Page 8  |  Page 9  |  Page 10  |  Page 11  |  Page 12  |  Page 13  |  Page 14  |  Page 15  |  Page 16  |  Page 17  |  Page 18  |  Page 19  |  Page 20  |  Page 21  |  Page 22  |  Page 23  |  Page 24  |  Page 25  |  Page 26  |  Page 27  |  Page 28  |  Page 29  |  Page 30  |  Page 31  |  Page 32  |  Page 33  |  Page 34  |  Page 35  |  Page 36  |  Page 37  |  Page 38  |  Page 39  |  Page 40  |  Page 41  |  Page 42  |  Page 43  |  Page 44  |  Page 45  |  Page 46  |  Page 47  |  Page 48  |  Page 49  |  Page 50  |  Page 51  |  Page 52  |  Page 53  |  Page 54  |  Page 55  |  Page 56  |  Page 57  |  Page 58  |  Page 59  |  Page 60  |  Page 61  |  Page 62  |  Page 63  |  Page 64  |  Page 65  |  Page 66  |  Page 67  |  Page 68  |  Page 69  |  Page 70  |  Page 71  |  Page 72  |  Page 73  |  Page 74  |  Page 75  |  Page 76  |  Page 77  |  Page 78  |  Page 79  |  Page 80  |  Page 81  |  Page 82  |  Page 83  |  Page 84