Edge computing platforms offer greater flexibility and efficiency in automated production by networking services and computing resources with industrial devices. However, the heterogeneity of the software solutions used and the challenge of ensuring the security of third-party applications present companies with major challenges. Protecting against threats to industrial control systems (ICS) in particular requires innovative approaches.
Innovative security solutions for edge computing platforms
In the ASCA4IE (Accountable Security Claims for Industrial Edge Applications) research project, fortiss scientists in the Platform Engineering competence field have developed innovative methods and tools to evaluate the security of edge computing platforms. A key result of the project is the development of an automated tool for detecting threats and assessing risks in Docker container environments, in which fortiss project manager Yannick Landeck played a key role. Docker containers are isolated, lightweight execution environments that run applications and their dependencies independently of the host system and require fewer resources than conventional virtual machines.
For the tool, fortiss has developed a knowledge base that systematically records and structures security risks in Docker Compose environments. By generating detailed risk factsheets, the tool supports both developers and users in identifying security risks at an early stage, making informed decisions and thus ensuring the secure use of IIoT technologies. These innovations contribute to increasing the reliability and resilience of industrial software systems.
Another key result of the project is the development of guidelines for the secure deployment of Docker containers. These are also mapped in the knowledge base and enriched with semantic information. This enables companies to automatically derive which security measures and associated guidelines are suitable, for example to reduce the likelihood of attacks. In this way, customized solutions can be developed to deal with security risks in a targeted manner.
More security and efficiency for industrial edge applications
The methods developed in the ASCA4IE project for the verifiability of security requirements enable companies to secure their edge computing platforms in a targeted manner and meet regulatory requirements more easily. At the same time, the improved transparency and trustworthiness of the systems increase efficiency by enabling faster fault diagnosis and optimization of processes. This leads to more reliable and flexible production that can respond better to changing market requirements.
The ASCA4IE project impressively demonstrates how targeted security measures and structured risk management approaches help to overcome the challenges of modern industrial automation. The close cooperation between research and industry - especially with Siemens - was a decisive success factor.