Description
Bachelor Thesis Security Engineering Method for Authentication and Lifecycle Management in OT Motivation and Task The IEC 62443 states “Implement Secure Authentication” - but does not give details or concrete ex- amples. Other standards and best practices also provide recommendations at varying levels of detail. The aim of this thesis is to structure/unify these various recommendations relating to authentication at a detailled level and, if necessary, to disregard outdated recommendations. This can be done by developing a structured approach, such as a multi-level decision tree, possibly using a web-based GUI. Input values for making a decision are, for example, the desired or required security level (SL 1-4) according to IEC, as well as various environmental or organizational conditions of the company or the operator of OT. Output values would be detailed technical recommendations for managing the Authentication and Lifecycle of OT. Relevant norms and standards you will work with: ISO/IEC 62443 Industrial communication net- works - Network and system security, NIST 800-63-3 Digital Identity Guidelines, BSI ICS Security Kompendium Prerequisites The following list of prerequisites is neither complete nor binding, but shall give you an idea, what the topic is about: • Basic knowledge of IT security • Structured thinking, structuring ability, fun with quibbles, and attention to details • Basic (web) programming abilities • Ability to work self-directed and systematically Please attach a current grade sheet and a short CV to your application so that we can assess your qualification for the topic of your choice. Contact Nikolai Puch, Sebastian Peters Phone: +49 89 322-9986-142, Phone: +49 89 322-9986-1037 E-mail: nikolai.puch@aisec.fraunhofer.de, E-mail: sebastian.peters@aisec.fraunhofer.de
Fraunhofer Research Institute for Applied and Integrated Security AISEC Department Product Protection and Industrial Security Lichtenbergstraße 11, 85748 Garching near Munich, Germany https://www.aisec.fraunhofer.de
|