RoyAlloy Stainless Mold Base Steel
Published

Your Factory May Be Smarter, But Is It Less Secure?

A smart factory is a connected one but the same advances that allow you to check in on production remotely could allow others to tie into your plant.

Share

The top line results from the industrial cybersecurity survey were alarming: 61% of those surveyed had experienced a cybersecurity incident in the last year and of those, fully 75% had system outages, 43% of which lasted more than four days.

Those figures are from Trend Micro’s annual State of Industrial Cybersecurity survey. The online, anonymous survey held Nov. 2-Dec. 1, 2020 garnered responses from 500 companies hailing from the U.S. (200), Germany (150) and Japan (150).

The survey specifically queried manufacturing companies with 1000 or more employees, which makes the high rate of cybersecurity incidents more understandable. Most plastics processors would fall into the small-to-medium-sized business category that presumably would be less of a target for cyber criminals. Whatever size your business is, however, Trend Micro described the current situation the industry faces.

“While manufacturing companies around the world are implementing digital transformation to survive and continue to grow, cybersecurity threats have become a top concern.”

“Incidents” here are defined as things like a computer virus infection, an unauthorized operation that exploits system vulnerability or unauthorized access to the system. The first steps to evaluating a plant’s vulnerabilities are assessing asset visibility, identifying risks and setting goals.

Trend Micro considered both IT (information technology) and OT (operational technology), where the former is anything related to computer technology, including hardware and software, while the latter is hardware and software used to used to control, monitor, and track physical devices in a plant with things like SCADA or PLCs. While plant security would be best achieved by those separate functions working hand in glove, the survey found that IT and OT only collaborated in all phases 12% of the time.

Trend Micro said that beyond just having the right technology, whether it’s antivirus software or a robust firewall, manufacturers need organization and process measures. That said, the survey found that technology was the biggest challenge in each country, with overall awareness of the issue lower in the U.S. than Germany or Japan.

National regulations and industry guidelines for cybersecurity were the biggest influencers for getting companies to act on cyber security, along with a gentle push from others. In Japan, requests from business partners and customers (57%) were the top impetus along with regulation. In Germany, instructions from the management (55%) came in second place behind regulations, while in the U.S., instructions from the parent company (44%) came in at No. 2.

Defining a chief security officer (CSO) is an important first step down the path of cybersecurity, Trend Micro found. The U.S. has the highest rate of implementing organizational changes to support cybersecurity, including identifying a leader (60%) and dedicated cross-department committees (56%).

Three-Step Approach

Trend Micro lays out a three-step approach for cyber security, including prevention, detection and persistence. Prevention involves reducing threat intrusion risks at data exchange points like the network and DMZ (in computer security, Wikipedia defines a DMZ or demilitarized zone as “a physical or logical subnetwork that contains and exposes an organization’s external-facing services to an untrusted, usually larger, network such as the Internet.”) Trend Micro says these risks may come from IT and OT, USB storage used in a factory, laptops/outside machines brought into a factory by third parties at maintenance, and from an IoT gateway.

With detection, companies detect cyberattack activities in the OT environment understanding that 100% prevention does not exist. Anomaly network behaviors such as command and control (C&C) communication and multiple log-in failures should be detected as soon as possible to prevent massive damage.

In persistence, Trend Micro says companies should seek to secure the most critical environments on a shop floor, while minimizing the potential affected area. “On a shop floor, there are many critical assets which link directly to production and its control,” the report says.

As digitization and connectivity continue to expand apace in manufacturing so too must cyber security vigilance so that as an industry we arrive at a IIo[S]T—Industrial Internet of Secure Things.

industrial cybersecurity

How secure are your plant’s interactions with the broader digital world?

Advantage temperature control units
Windmoeller
Vacuum conveying powders to extruders compounding
Gardner Business Media, Inc.
AM Workshop
Blending Revolution
RoyAlloy Stainless Mold Base Steel
structural foam molding chemical foaming agents
Dri-Air
Shuttle Mold System
Cranes, Conveyors, Racks, Loaders, Accessories
New 2024 Twin Screw Report

Related Content

Automation

Automation in Thermoforming on the Rise

Equipment suppliers’ latest innovations exemplify this trend driven by factors such as labor shortages, higher-speed thermoformers and tighter quality control.

Read More

How Was K 2022 for Blow Molding?

Over a dozen companies emphasized sustainability with use of foam and recycle, lightweighting and energy savings, along with new capabilities in controls, automation and quick changeovers.

Read More

Automation Evolution: From Robots to Work Cells, Solo Devices to Integrated Systems

Injection molding automation has progressed from devices to systems, from simplicity to more complex capabilities. The author traces this development through various levels of automation – all still available choices today – and analyzes the costs and capabilities for each level.

Read More
Automation

Ensuring Repeatability: The Key to Effective Injection Molding Automation

One of automation’s key promises is repeatability: the same movement to the same location, time and time again. But to achieve that, all elements involved — robot, machine, EOAT, mold — must be in and stay in alignment.

Read More

Read Next

best practices

Putting Industry 4.0 to Work in a Molding Plant 

Learn why—and how—innovative molders have begun to develop “smart factories,” using advanced equipment, IT, and communication technology to enable greater connectivity and productivity.

Read More
Injection Molding

Where Do You Fall On Industry 4.0’s Adoption Curve?

Beyond the hype: how are injection molders applying industry 4.0 today, and what’s coming in the future.

Read More
industry 4.0

People 4.0 – How to Get Buy-In from Your Staff for Industry 4.0 Systems

Implementing a production monitoring system as the foundation of a ‘smart factory’ is about integrating people with new technology as much as it is about integrating machines and computers. Here are tips from a company that has gone through the process.

Read More
Dover Clear