TUM Logo

Security Engineering Process for Authentication and Lifecycle Management in OT

Security Engineering Process for Authentication and Lifecycle Management in OT

Supervisor(s): Sebastian Peters, Nikolai Puch
Status: inprogress
Topic: Others
Author: Maximilian-Emmanuel Zimmer
Submission: 2023-09-15
Type of Thesis: Bachelorthesis
Thesis topic in co-operation with the Fraunhofer Institute for Applied and Integrated Security AISEC, Garching


Bachelor Thesis
Security Engineering Method for
Authentication and Lifecycle Management in OT
Motivation and Task
The IEC 62443 states “Implement Secure Authentication” - but does not give details or concrete ex-
amples. Other standards and best practices also provide recommendations at varying levels of detail.
The aim of this thesis is to structure/unify these various recommendations relating to authentication
at a detailled level and, if necessary, to disregard outdated recommendations. This can be done by
developing a structured approach, such as a multi-level decision tree, possibly using a web-based
GUI. Input values for making a decision are, for example, the desired or required security level (SL
1-4) according to IEC, as well as various environmental or organizational conditions of the company
or the operator of OT. Output values would be detailed technical recommendations for managing the
Authentication and Lifecycle of OT.
Relevant norms and standards you will work with: ISO/IEC 62443 Industrial communication net-
works - Network and system security, NIST 800-63-3 Digital Identity Guidelines, BSI ICS Security
The following list of prerequisites is neither complete nor binding, but shall give you an idea, what the
topic is about:
• Basic knowledge of IT security
• Structured thinking, structuring ability, fun with quibbles, and attention to details
• Basic (web) programming abilities
• Ability to work self-directed and systematically
Please attach a current grade sheet and a short CV to your application so that we can assess your
qualification for the topic of your choice.
Nikolai Puch, Sebastian Peters
Phone: +49 89 322-9986-142, Phone: +49 89 322-9986-1037
E-mail: nikolai.puch@aisec.fraunhofer.de, E-mail: sebastian.peters@aisec.fraunhofer.de

Fraunhofer Research Institute for Applied and Integrated Security AISEC
Department Product Protection and Industrial Security
Lichtenbergstraße 11, 85748 Garching near Munich, Germany