Siemens – The cybersecurity checklist for CNC machine tools
Due to increasing networking, machine tools are now also targets for cyber-attacks. Over half of connected manufacturing companies have experienced a cybersecurity incident. The threat situation is therefore absolutely real! Nevertheless, cybersecurity is still unfamiliar territory for many machining companies.
Siemens, as a leading company in the automation and digitalization of production, has therefore summarized measures to increase cybersecurity in a checklist that machining specialists can understand. This white paper can be used for the specifications when purchasing new machines.
Possible new legal situation
Cyberattacks are actively used to steal valuable or sensitive data. CNC programs, for example for the aviation or automotive industries, contain a very high level of intellectual property. If the CNC programs are used in the defense industry, the data loss is even more critical. In addition to data theft, cyber-attacks primarily serve to sabotage production facilities. It’s either about extorting ransom money or simply about harming unwanted competitors.
With the NIS2 Directive, for example, the EU is reacting to the changed threat situation. The requirements for cybersecurity are significantly tightened. Companies in the manufacturing sector with more than 50 employees and an annual turnover of over €10 million must take clearly defined cybersecurity measures. The company managements are personally liable to monitor the implementation of these measures.
But cybersecurity is also the order of the day for machining companies that are not currently covered by the new legal situation. Especially in small companies, sabotage of the production process can quickly lead to situations that threaten the company’s existence.
Defense in Depth
Siemens takes a holistic approach to cybersecurity. Starting with system integrity, i.e. the undamaged, correct functioning of the individual electronic components, through network security and system security.
The cybersecurity checklist shows how machine tools can be integrated into this defense in depth concept.
Security by Design
As a central component for communication with the machine’s actuators and sensors, with networks outside the machine and also with the people in front of the machine, the CNC control is particularly at risk.
That’s why Siemens at Sinumerik attaches great importance to a system development process with cybersecurity aspects in mind. The electrical company regularly has this certified by TÜV Süd.
The Sinumerik CNC system, which is maximally “hardened” from an IT perspective, includes functions such as a certificate-based, secure system startup (secure boot), encryption of the NC and PLC data, and the use of the latest and therefore most secure protocols for the network connection but also person and role-specific user management with definable password guidelines.
Security by Siemens
The Sinumerik CNC system, which is maximally “hardened” from an IT perspective, includes functions such as a certificate-based, secure system startup (secure boot), encryption of the NC and PLC data, and the use of the latest and therefore most secure protocols for the network connection but also person and role-specific user management with definable password guidelines.
Solutions for the entire shop floor are also shown in the checklist. The keyword here is network segmentation in order to prevent local cyber incidents from spreading to the entire production. Behind this is a solution package consisting of consulting services and the integration of suitable network components.
Ultimately, remote access to the machine, for example for troubleshooting, also represents a possible security risk. The checklist shows solutions that ensure remote access only to dedicated machines for defined people via secure VPN access.
Secure Retrofit
The cybersecurity checklist doesn’t just help with purchasing new machines. The white paper also shows how existing machines can be protected in the best possible way. Machines with older electrical equipment are particularly at risk. The Siemens Customer Service offers tailor-made services such as the exchange of PC components with outdated Windows operating systems through to allow listing, i.e. only executing explicitly approved software components.
Always up to date
The cybersecurity checklist reflects the currently best possible protection of machine tools from cyberattacks. However, cybercrime is not static. The measures to increase cybersecurity must therefore always be kept up to date in order to cover newly emerging threats. Siemens will update the checklist as a machine tool cybersecurity white paper in due course.
Download the cybersecurity checklist
Please register here to download the Cybersecurity checklist. After submitting the form, you will see your download link. Shortly after clicking this link, you will find your checklist in the download folder of your computer or mobile device.
READ the latest news shaping the cybersecurity market at Cybersecurity News Central
Siemens – The cybersecurity checklist for CNC machine tools, source
