PROFINET Security
The PROFINET specifications have been extended by Security Classes 1, 2 and 3. The implementation of security test cases for the PROFINET test bundle is in work by the Test System Development Group (TSDG). The result will allow vendors to prepare their products for the mandatory certification at a PI Test Lab. In addition, the TSDG and the PROFINET IO working group will organize further interop workshops so that technology providers and PROFINET device/controller vendors can verify their implementation of the security features with other implementations.
PROFINET over APL
However, there still remains demand to coordinate an interoperability field test for devices, switches, controllers and DCS vendors that will help to identify issues in an early phase –specifically in the process control industries. The Security Field Test for PROFINET over APL AdHoc PG shall coordinate these tests, plus a cooperation with NAMUR is intended to investigate one of the biggest challenges of security: usability for end users.
Examples of topics to be aligned:
- Is manual certificate provisioning accepted for some use cases?
- What use-cases require automated certificate provisioning?
- What interaction is required between automation engineering and security engineering?
- AMS tools are used for field device commissioning: Shall these tools also be used to perform SIH workflows (only for field devices or also for other devices like controllers that require certificate management as well)?
- How to integrate in PKI infrastructure of the customer plant?
Call for Experts
- Name: AdHoc/PG11 “PROFINET Security Field Test”
- Online kickoff meeting: February 27, 2025 at 14-15:30 CET
- Registration deadline: February 14, 2025
- Contact: Please email info[AT]profibus.com or stefan.lueder[AT]siemens.com