Cybersecurity Standard Compliance in Development of Distributed Embedded Systems

Loading...
Thumbnail Image
Journal Title
Journal ISSN
Volume Title
Perustieteiden korkeakoulu | Master's thesis
Date
2022-12-12
Department
Major/Subject
Security and Cloud Computing
Mcode
SCI3084
Degree programme
Master’s Programme in Computer, Communication and Information Sciences
Language
en
Pages
71
Series
Abstract
In recent years, communication technologies have been actively developed and used in the machinery manufacturing industry. They allow distributed embedded systems to operate more efficiently by remotely interacting with each other and with maintenance systems. However, the ability of machines to communicate through the Internet has increased the number of attack vectors that a potential attacker can utilize. In the lift industry, cybersecurity incidents can lead to a malfunction of lift systems, disruptions to transportation services and irreparable damage to people's lives. The manufacturer can implement security measures from industrial cybersecurity standards to prevent cybersecurity incidents that involve the developed products, to improve security of industrial systems and to ensure safety of their users. Nonetheless, the cybersecurity standards compliance process can be challenging for the product developers. Our intention is to apply this process to the development of distributed embedded systems. In this thesis project, we conducted research on the cybersecurity standards of the IEC 62443 series that are applicable in the lift industry. We analyzed ISO 8102-20 that was published in August 2022 to cover cybersecurity for lifts. We also applied this standard to the development of a prototype of a lift controller in a case study. We document the process of applying ISO 8102-20, present insights into the new standard and underline some areas for improvement.
Description
Supervisor
Aura, Tuomas
Thesis advisor
Katara, Mika
Keywords
ISO 8102-20, IEC 62443-4-1, IEC 62443-4-2, IoT, cybersecurity standards, compliance
Other note
Citation