Project

IUNO Insec

Integrations- und Migrationsstrategien für industrielle IT-Sicherheit

Integrations- und Migrationsstrategien für industrielle IT-Sicherheit

  • Duration:

MOTIVATION

The national reference project on IT security in industry 4.0 (IUNO) has researched methodological approaches to threat and risk assessment for industrial use. Solution concepts were developed and their added value was demonstrated by means of demonstrators. In order for the IUNO results to be transferred to users, especially SMEs, their level of maturity must be further advanced. A major hurdle for the use of IT security solutions in SMEs is the evaluation of their own security level. Often, a strategy for the systematic improvement of the security level, which also takes into account the individual risk, is missing. Existing models and tools for evaluation still require extensive expert knowledge and their use is usually associated with a high technical and financial effort. This means that SMEs face hurdles that hinder the appropriate introduction of solutions.

OBJECTIVES AND APPROACH

Based on the threat and risk analysis developed in the IUNO project, the IUNO InSec project will develop a procedural model and tools for security assessment and migration. This should offer SMEs an easier way to analyse and evaluate the status of their own IT security. The tools show migration paths towards an adequate level of protection and provide recommendations for the use of solution modules. In order to implement these migration paths, security solutions that can be flexibly adapted and easily integrated are required that do not yet exist in the required form today. To this end, selected solutions from the IUNO project will be further developed and designed to meet the needs of SMEs.

INNOVATIONS AND PERSPECTIVES

The development of a model for security evaluation and migration provides SMEs in particular with a new opportunity to continuously evaluate their own status of IT security in the field and to identify suitable measures at an early stage. It enables an integrated use of new innovative approaches to solutions with established procedures under consideration of an appropriate cost-benefit ratio.

Partners

  • accessec GmbH, Groß-Bieberau
  • anapur AG, Frankenthal
  • axxessio GmbH, Darmstadt
  • Fraunhofer SIT, Darmstadt
  • Technische Universität Darmstadt

Sponsors

Federal Ministry of Education and Research (BMBF)

16KIS0932

Federal Ministry of Education and Research (BMBF)

Publications about the project

Pascal Ahr, Christoph Lipps, Hans Dieter Schotten

In: 20th European Conference on Cyber Warfare and Security. European Conference on Cyber Warfare and Security (ECCWS-2021) June 24-25 Chester United Kingdom ACPI 6/2021.

To the publication
Daniel Reti, David Klaaßen, Hans Dieter Schotten

In: 2021 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA). IEEE International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA-2021) IEEE 2021.

To the publication
Christoph Lipps, Pascal Ahr, Hans Dieter Schotten

In: Brett van Niekerk , Joey Jansen van Vuuren , Trishana Ramluckan (editor). Journal of Information Warfare (JIW) 19 3 Pages 35-49 Peregrine Technical Solutions, LLC Yorktown, Virginia, USA 8/2020.

To the publication

German Research Center for Artificial Intelligence
Deutsches Forschungszentrum für Künstliche Intelligenz