Home // SECURWARE 2024, The Eighteenth International Conference on Emerging Security Information, Systems and Technologies // View article

Device Onboarding Transparency – Supporting Initial Trust Establishment

Authors:
Steffen Fries
Rainer Falk

Keywords: communication security; onboarding; trust establishment; industrial automation and control system; cybersecurity; Internet of Things.

Abstract:
Device onboarding is the process of introducing devices into target systems and target domains, and further on to bring them into operational state. This has a direct relation to cybersecurity, as it establishes trust between the device and the domain based on identities and associated cryptographic parameters. Different technologies for automated device onboarding have been specified. Having information on performed onboarding is important during operation, in which the identities and cryptographic parameters are maintained as part of device lifecycle management. Current onboarding approaches do not explicitly consider binding this information to the device management information used during operation. The binding information may be specifically important if attacks occur, as it can support the root cause analysis to derive immediate measures to further maintain the attacked service. This supports addressing requirements from existing and currently developed regulations. This paper proposes enhancements to current onboarding approaches that provide this transparency.

Pages: 47 to 51

Copyright: Copyright (c) IARIA, 2024

Publication date: November 3, 2024

Published in: conference

ISSN: 2162-2116

ISBN: 978-1-68558-206-7

Location: Nice, France

Dates: from November 3, 2024 to November 7, 2024