Concept of Smart Building Cyber-physical Systems Including Tamper Resistant Endpoints
| Title | Concept of Smart Building Cyber-physical Systems Including Tamper Resistant Endpoints |
| Publication Type | Conference Paper |
| Year of Publication | 2018 |
| Authors | Puesche, A., Bothe, D., Niemeyer, M., Sachweh, S., Pohlmann, N., Kunold, I. |
| Conference Name | 2018 International IEEE Conference and Workshop in Óbuda on Electrical and Power Engineering (CANDO-EPE) |
| Date Published | nov |
| Keywords | composability, Computer science, Containers, CPS devices, critical infrastructure, critical infrastructures, cryptography, Cyber-physical systems, data integrity, firmware, Hardware, hardware-based security, integrity measurement mechanisms, Internet of Things, IoT, IT-security, oAuth2.0, pubcrawl, Resiliency, secure communication channels, security of data, smart building cyber-physical systems, Smart buildings, Software, tamper resistant endpoints, TLS 1.3, Trusted Computing, Trusted Platform Module, trusted platform modules, Trusted Platfrom Modules, update mechanisms, verification mechanism |
| Abstract | Cyber-physical systems (CPS) and their Internet of Things (IoT) components are repeatedly subject to various attacks targeting weaknesses in their firmware. For that reason emerges an imminent demand for secure update mechanisms that not only include specific systems but cover all parts of the critical infrastructure. In this paper we introduce a theoretical concept for a secure CPS device update and verification mechanism and provide information on handling hardware-based security incorporating trusted platform modules (TPM) on those CPS devices. We will describe secure communication channels by state of the art technology and also integrity measurement mechanisms to ensure the system is in a known state. In addition, a multi-level fail-over concept is presented, ensuring continuous patching to minimize the necessity of restarting those systems. |
| URL | https://ieeexplore.ieee.org/document/8601130 |
| DOI | 10.1109/CANDO-EPE.2018.8601130 |
| Citation Key | puesche_concept_2018 |
- oAuth2.0
- verification mechanism
- update mechanisms
- Trusted Platfrom Modules
- trusted platform modules
- Trusted Platform Module
- Trusted Computing
- TLS 1.3
- tamper resistant endpoints
- Software
- smart buildings
- smart building cyber-physical systems
- security of data
- secure communication channels
- Resiliency
- pubcrawl
- composability
- IT-security
- IoT
- Internet of Things
- integrity measurement mechanisms
- hardware-based security
- Hardware
- firmware
- data integrity
- cyber-physical systems
- Cryptography
- critical infrastructures
- critical infrastructure
- CPS devices
- Containers
- computer science