Endress+Hauser Establishes Internet Security Standards

  Enquiry / contact me

The Internet Engineering Task Force (IETF) has chosen the SmartBlue CPace protocol from Endress+Hauser as a recommended internet standard for password-protected access to instruments

Automation, Sensor Technology, Test & Measurement

With the CPace protocol, Endress+Hauser ensures secure access to field instruments
With the CPace protocol, Endress+Hauser ensures secure access to field instruments

The cryptography working group within the IETF standards organization (Internet Engineering Task Force) has chosen the Endress+Hauser-developed CPace protocol as a recommended method for use in internet standards. After undergoing extensive security analyses, the CPace protocol emerged as the winner in a competition among submissions from developers at several well-known companies.

Secure access to field instruments is of the highest priority for operators across all branches of the process industry. Modern plants contain hundreds or thousands of measurement and control instruments that must be accessed remotely with growing frequency. These field instruments also have to be installed, monitored or serviced on a regular basis. Secure password-based user authentication plays a special role today, especially when devices with digital interfaces are involved.

Security with user-friendly password lengths 

In order to utilize Bluetooth communications technology in industrial environments, security experts at Endress+Hauser identified a need for additional protection. The result was the development of a solution called CPace, which belongs to the class of PAKE (password-authenticated key exchange) methods. Among other things, PAKE technology is used with the German electronic ID cards as a means of largely decoupling the cryptographic security level from the length of the password. The advantage of CPace is that the processing power of even the smallest of field instruments is sufficient to provide devices, and thus the industrial systems, with the best level of protection against cyberattacks.

At the same time CPace enjoys a high degree of acceptance among users given that the desired level of security can be achieved without relying on long passwords.

“We had to look internally to find a solution for establishing secure connections to the instruments. Previously available secure methods could not be used because of the limited processing power and storage capacity of field instruments. Password verification would have meant a login delay of two minutes or more,” explains Dr Björn Haase, head of the project at Endress+Hauser.

CPace makes life difficult for hackers

The security of the PAKE-based solution with Bluetooth technology from Endress+Hauser was previously verified in 2016 as part of an analysis by the Fraunhofer Institute for Applied and Integrated Security (AISEC). The institute classified the protection level of the Endress+Hauser security layer, the core component of which is recommended for use in internet environments, as ‘high’.
 

Posted on October 27, 2020 - (234 views)
Related articles
Differential Centrifugal Sedimentation: A Valuable Technique for Characterization of Small Nanoparticles
An Industry First - a PLC with Embedded Cloud Services
How Thinking Wireless can Overcome Mission Critical Sensing Challenges in Industrial Applications
Industrial Scanner for Non-contact Temperature Imaging and Analysis
Pump and Valve Innovator Finds a Test Rig Technology that Talks the Torque
New Opaque Colors and Graphic Sharpness for PolyJet™ 3D Printers
PTC Leverages Spatial Computing Capabilities with Vuforia Engine Area Targets
Ultrasonic Flowmeters for Low Flow Applications
Customized Membrane Switches for Demanding Applications
Smart Fixed Gas Detectors
Differential Centrifugal Sedimentation: A Valuable Technique for Characterization of Small Nanoparticles
Customized Membrane Switches for Demanding Applications
Versatile Industrial 5G Router
New High-Speed Pyrometer CT 4M from Optris
Micro Sensor for Temperature, Pressure, Tension, Torsion, Position, Electric Current and Magnetic Field Measurements
UniCloud – The Complete, No-Code, IIoT Cloud Platform for OEMs and Machine Builders by Unitronics
AC Servo Drives & Motors
Variable Frequency Drives
Unistream® PLC: Robust PLC Hardware with Virtual HMI
Unistream®, the Award-Winning Programmable Controllers Series With Integrated HMI by Unitronics
PTC Leverages Spatial Computing Capabilities with Vuforia Engine Area Targets
New High-Speed Pyrometer CT 4M from Optris
Micro Sensor for Temperature, Pressure, Tension, Torsion, Position, Electric Current and Magnetic Field Measurements
AC Servo Drives & Motors
Unistream®, the Award-Winning Programmable Controllers Series With Integrated HMI by Unitronics
HMS Networks Releases the World’s First Industrial 5G Router and Starterkit
New Series of Transducers for High Performance Gaging Probes
Glass vial and syringe production
Critical Asset and Safety Solutions
Thermal Profiling Systems