ROBOTICS
control systems, protect critical assets, and many others. Figure 2 shows the IEC 62443 is a comprehensive security standard. While some parts of the standard focus on processes and procedures, IEC 62443-4-1 and IEC 62443-4-2 specifically address component security. According to IEC 62443-4- 2, component types include software applications, host devices, embedded devices, and network devices. The standard defines the capability security level (SL) for each component type based on the component requirement (CR) and requirement enhancement (RE) they meet. It defines four security levels (SL) SL0 to SL3. The SL2 and SL3 levels specifically require hardware-based security. What capabilities and technologies are necessary when developing robotic security system solutions? To build secure robotic control systems, we need to address the risks highlighted in the Security Risks in Robotic Control Systems section. Key technical capabilities and technologies needed include:
Written by Manoj Rajashekaraiah, Principal Engineer, Analog Devices
Cybersecurity for robotics Manoj Rajashekaraiah, Principal Engineer at Analog Devices, explores security risks and effective security measures in robotic control systems. He looks at the industrial security standards currently in place in the sector and analyses the essential requirements to meet
Figure 2
Regulations and acts for the industrial and robotics sectors promote cyber resilience and safeguarding operations The cybersecurity landscape is rapidly evolving, and there are a growing number of regulations as well as acts that target the industrial and robotics sector. Among the many, some of the acts that target cybersecurity are the EU Cybersecurity Act, the EU Cyber Resilience Act, and the US Cyber Incident Reporting for Critical Infrastructures Act. There are regulations and acts evolving in China and India as well. The NIST Guide to Operation Technology (OT) Security and Standards
like IEC 62443 provide us with guidance, enable us to take the secure-by-design approach and design, and develop our control systems to be resilient against cybersecurity attacks. IEC 62443 requirements for industrial automation and control systems security (IACS) IEC 62443 is security for industrial automation and control systems security [2] . It is a widely adopted standard for developing industrial automation control systems, and most regulations recommend it and recognise its importance. It enables us to be compliant with relevant regulations, mitigate potential cybersecurity risks in control systems, address security gaps in
these standards. Security risks in robotic control systems Factory automation is at the centre of Industry 4.0 and industrial robots, autonomous mobile robots (AMR), and collaborative robots play a crucial role in enabling the implementation of modern Industry 4.0. Robots are becoming smarter, more collaborative, and better positioned to handle complex tasks with and without human intervention. Higher levels of automation and higher use of robots also drive the demand for higher safety and security of robotic control systems. [1]
Figure 1
used on factory floors but now robots are used in different domains like medical, military, logistics, and agriculture. The need for safety and security is of much more importance than it was a decade back. Accidents are bound to
occur, but the ones caused by malicious attacks are critical. Malicious hijacking and control of robots can cause serious economic and financial losses. Figure 1 shows typical security risks that can lead to malicious attacks on robotic control systems
Robots were initially mostly
24
25
Powered by FlippingBook