Multi-Levels safe and secure Solution for Industrial Automation
Today policy specification and enforcement mechanisms are often interwoven with the industrial control processes on which the Security policy is enforced. This leads to interferences and nonsecure behaviour as well as increases the system’s attack surface. This paper presents a Security system architecture and a framework where the processes, policies, and enforcement are strictly separated.
The Security architecture follows separation and leastprivilege principles. The policy framework is based on a formal language and tools to specify and generate components for the Security architecture. We illustrate our approach on a technological process and present how this solution is implemented in practice where Security is mixed with Safety requirements such as realtime, worst case execution time and certification.