Menu

Smart Factories FEATURE NEWS

Industrial Internet Consortium Publishes Data Protection Best Practices Paper

By Ken Briodagh July 22, 2019

The Industrial Internet Consortium (IIC) recently announced the publication of its Data Protection Best Practices White Paper. Designed for stakeholders involved in cybersecurity, privacy and IIoT trustworthiness, the paper describes best practices that can be applied to protect various types of IIoT data and systems. The 33-page paper covers multiple adjacent and overlapping data protection domains, including data security, data integrity, data privacy, and data residency.

Without data protection measures, IIoT systems can suffer extreme consequences like service disruptions, industrial accidents and critical data leaks. These problems, the paper states, can result in significant losses, heavy regulatory fines, loss of IP and negative impact on brand reputation.

“Protecting IIoT data during the lifecycle of systems is one of the critical foundations of trustworthy systems,” said Bassam Zarkout, EVP, IGnPower and one of the paper’s authors. “To be trustworthy, a system and its characteristics, namely security, safety, reliability, resiliency and privacy, must operate in conformance with business and legal requirements. Data protection is a key enabler for compliance with these requirements, especially when facing environmental disturbances, human errors, system faults and attacks.”

Categories of Data to be Protected
Data protection is needed for all data and information in an organization. In a complex IIoT system, the report says this includes operational data from things like sensors at a field site; system and configuration data like data exchanged with an IoT device; personal data that identifies individuals; and audit data that chronologically records system activities.

Different data protection mechanisms and approaches may be needed for data at rest (data stored at various times during its lifecycle), data in motion (data being shared or transmitted from one location to another), or data in use (data being processed).

“Security is the cornerstone of data protection. Securing an IIoT infrastructure requires a rigorous in-depth security strategy that protects data in the cloud, over the internet, and on devices,” said Niheer Patel, Product Manager, Real-Time Innovations (RTI) and one of the paper’s authors. “It also requires a team approach from manufacturing, to development, to deployment and operation of both IoT devices and infrastructure. This white paper covers the best practices for various data security mechanisms, such as authenticated encryption, key management, root of trust, access control, and audit and monitoring.”

As a prime example of data privacy requirements, the paper focuses on the EU General Data Protection Regulation (GDPR), which grants data subjects a wide range of rights over their personal data. The paper describes how IIoT solutions can leverage data security best practices in key management, authentication and access control can empower GDPR-centric privacy processes.

The Data Protection Best Practices White Paper complements the IoT Security Maturity Model Practitioner’s Guide and builds on the concepts of the Industrial Internet Reference Architecture and Industrial Internet Security Framework. IT is available on the IIC website.




Edited by Ken Briodagh

Editorial Director

SHARE THIS ARTICLE
Related Articles

Trend Micro Creates Trap for Malicious Attackers in IIoT

By: Ken Briodagh    1/21/2020

Trend Micro Incorporated, a cybersecurity solutions provider, recently announced the results of a six-month honeypot trap imitating an industrial fact…

Read More

Industry 4.0: The Robots are Coming

By: Special Guest    1/14/2020

Robots as a service is an increasingly hot market segment in IIoT, with a wealth of promising startups and some large incumbents collectively deliveri…

Read More

MachineMetrics Releases SOTI Report for IIoT and CNC Machining

By: Arti Loftus    1/6/2020

MachineMetrics, a data analytics platform for manufacturers, recently released its 2019 State of the Industry (SOTI) for CNC Machining.

Read More

ArtiMinds Boosts Robot Programming to Leverage IIoT

By: Ken Briodagh    12/3/2019

Wibu-Systems recently announced its support for the integration of its CodeMeter solution into the ArtiMinds industrial robot programming software sui…

Read More

IoT Time Podcast S.4 Ep.36 Swim.ai

By: Ken Briodagh    11/14/2019

In this episode of IoT Time Podcast, Ken Briodagh sits down with Simon Crosby, CTO, Swim.ai, to talk about Smart Manufacturing, Predictive Analytics, …

Read More