Secure access to field instruments is of the highest priority for operators across all branches of the process industry. Modern plants contain hundreds or thousands of measurement and control instruments that must be accessed remotely with growing frequency. These field instruments also have to be installed, monitored or serviced on a regular basis. Secure password-based user authentication plays a special role today, especially when devices with digital interfaces are involved.
Security with user-friendly password lengths
In order to utilise Bluetooth communications technology in industrial environments, security experts at Endress+Hauser identified a need for additional protection. The result was the development of a solution called CPace, which belongs to the class of PAKE (password-authenticated key exchange) methods. Among other things, PAKE technology is used with the German electronic ID cards as a means of largely decoupling the cryptographic security level from the length of the password. The advantage of CPace is that the processing power of even the smallest of field instruments is sufficient to provide devices, and thus the industrial systems, with the best level of protection against cyberattacks. At the same time, CPace enjoys a high degree of acceptance among users given that the desired level of security can be achieved without relying on long passwords.
“We had to look internally to find a solution for establishing secure connections to the instruments,” explains Dr Björn Haase, project head at Endress+Hauser. “Previously available secure methods could not be used because of the limited processing power and storage capacity of field instruments. Password verification would have meant a login delay of two minutes or more.”
CPace makes life difficult for hackers
The security of the PAKE-based solution with Bluetooth technology from Endress+Hauser was previously verified in 2016 as part of an analysis by the Fraunhofer Institute for Applied and Integrated Security. The institute classified the protection level of the Endress+Hauser security layer, the core component of which is recommended for use in Internet environments, as high.
Reinstatement opportunity for ECSA registration
News
In 2023 the Engineering Council of South Africa (ECSA) announced a special opportunity for engineers in South Africa to reinstate their registration status if it had been cancelled. This exclusive offer is available until the end of August 2024.
Read more...Groundbreaking renewable energy skills platform
News
South Africa’s renewable energy sector has taken a significant leap forward with the launch of PowerUp. A South African first, this online platform is designed to equip the country’s workforce with the skills required to meet industry demands.
Read more...Innomotics wins Platinum TITAN Brand Award for Best Corporate Rebranding
News
Innomotics has been awarded with the Platinum TITAN Brand Award for Best Corporate Rebranding. The international jury honoured Innomotics’ efforts to develop a powerful and recognisable brand after the carve-out of Innomotics from the Siemens Group in 2023.
Read more...Unlocking Africa’s hydrogen potential
News
Africa is positioning itself as a frontrunner in the global green energy revolution, with hydrogen emerging as a critical commodity of strategic and national importance across the continent. Namibia is putting ambition into action by having already reached a number of key milestones towards final investment decision on up to five projects.
Read more...Fuchs doubles sales volume
News
An aggressive growth strategy in South Africa and sub-Saharan Africa over the last decade has resulted in Fuchs Lubricants South Africa achieving a CAGR of 6% in volume sold since 2015. The result of this is that sales volume has nearly doubled in this time.
Read more...High-quality sensing and automation equipment
News
The Turck Banner Demo Van is showcasing the company’s latest products and solutions.Turck Banner sells directly to end users and OEMs in a broad range of industries and applications.
Read more...From ground to compound: the journey of crude oil Wearcheck
News
You’re in for a ‘crude awakening’ when you download WearCheck’s latest Technical Bulletin. You will be treated to an in-depth explanation of the processes of producing oil, fuel and other petrochemical wonders that power our modern lifestyle.
printer friendly version