Modelling and automatic mapping of cyber security requirements for industrial applications: Survey, problem exposition, and research focus

The rapid process of digitalisation has an advanced impact on the industrial automation and manufacturing domain. In order to support all the upcoming technologies and paradigm changes in a future-proof way the Reference Architecture Model Industrie 4.0 (RAMI4.0) is presently developed in Germany. The requirements, such as Quality of Service (QoS) provisioning for communication systems, network management, and Safety & Security, towards the Factories of the Future (FoF) are constantly increasing. The currently approached solution contains the concept of the Asset Administration Shell (AAS) as a general information storage and exchange point for all possible industrial assets. In consequence, the AAS needs a universal modelling concept of all mandatory information to set up the basis for automatic configuration abilities, which are desired in the Industrie 4.0 (I4.0) visions. Nevertheless, especially in the area of cyber security, which was neglected in the past and has gained a lot of attention nowadays, these modelling concepts are still missing. Therefore, this paper will provide an overview about the ongoing progress in this area, describe the related work, and outline the impending research containing a first concept for the desired Unified Security Modelling Metric (USMM).