Security and Configurable Storage Systems in Industry 4.0 Environments: A Systematic Literature Study

Authors

DOI:

https://doi.org/10.52825/ocp.v2i.149

Keywords:

security, industry 4.0, storage, systematic literature review

Abstract

An increasing amount of Industry 4.0 data storages is highly configurable. As each variant includes individual features and interactions, ensuring data security becomes increasingly challenging. However, we are missing an analysis of research on security and configurable storages in Industry 4.0, especially those based on product-line engineering. To address this gap, we conducted a literature study covering relevant state-of-the-art publications (2013–2022). Overall, security for configurable systems seems under-explored. We highlighted that security standards and concrete mitigations techniques are usually not considered. In addition, we are missing an analysis of configurable storage and software systems in concert to identify threats, risks, and vulnerabilities caused by variability.

References

Gabel, Matthias, and Jeremias Mechler (2017): "Secure database outsourcing to the cloud: Side-channels, counter-measures and trusted execution". CBMS, pp. 799–804. doi: https://doi.org/10.1109/CBMS.2017.141. DOI: https://doi.org/10.1109/CBMS.2017.141

Pohl, Klaus, Günter Böckle, and Frank Van Der Linden (2005): "Software product line engineering: foundations, principles, and techniques". Heidelberg, Springer. DOI: https://doi.org/10.1007/3-540-28901-1

Apel, Sven et al. (2016): "Feature-oriented software product lines". Berlin, Springer.

Krüger, Jacob et al. (2017): "Beyond software product lines: Variability modeling in cyber-physical systems". SPLC, pp. 237–241. doi: https://doi.org/10.1145/3106195.3106217. DOI: https://doi.org/10.1145/3106195.3106217

Kenner, Andy et al. (2021): "Safety, security, and configurable software systems: a systematic mapping study". SPLC, pp. 148–159. doi: https://doi.org/10.1145/3461001.3471147. DOI: https://doi.org/10.1145/3461001.3471147

Bamrara, Atul. (2015): "Evaluating database security and cyber attacks: A relational approach". The Journal of Internet Banking and Commerce 20/2: pp. 1–17. DOI: https://doi.org/10.4172/1204-5357.1000115

Gamundani, Attlee M., and Lucas M. Nekare (2018): "A review of new trends in cyber attacks: A zoom into distributed database systems". IST-Africa, pp. 1–17.

Kitchenham, Barbara Ann, David Budgen, and Pearl Brereton (2015): "Evidence-based software engineering and systematic reviews". Boca Raton, CRC press. DOI: https://doi.org/10.1201/b19467

Gherardi, Luca, Dominique Hunziker, and Gajamohan Mohanarajah (2014): "A soft-ware product line approach for configuring cloud robotics applications". CLOUD, pp. 745–75. doi: https://doi.org/10.1109/CLOUD.2014.104. DOI: https://doi.org/10.1109/CLOUD.2014.104

Wang, Yunxia, Jun Wei, and Chengchong Gao (2015a): "Customization design of cloud manufacturing resources based on polychromatic sets theory". IHMSC, pp. 518-521. doi: https://doi.org/10.1109/IHMSC.2015.255. DOI: https://doi.org/10.1109/IHMSC.2015.255

Fischer, Stefan et al. (2015): "Bridging the gap between software variability and sys-tem variant management: experiences from an industrial machinery product line". SEAA, pp. 402–409. doi: https://doi.org/10.1109/SEAA.2015.57. DOI: https://doi.org/10.1109/SEAA.2015.57

Garcia, Cleiton et al. (2015): "A software process line for service-oriented applica-tions". SAC, pp. 1680–1687. doi: https://doi.org/10.1145/2695664.2695743. DOI: https://doi.org/10.1145/2695664.2695743

Wang, Xi Vincent, Abdullah Mohammed, and Lihui Wang (2015b): "Cloud-based ro-botic system: architecture framework and deployment models". FAIM, pp. 1–8.

Galindo, José A. et al. (2015): "Supporting distributed product configuration by inte-grating heterogeneous variability modeling approaches". Information and Software Technology 62/1: pp. 78–100. doi: https://doi.org/10.1016/j.infsof.2015.02.002. DOI: https://doi.org/10.1016/j.infsof.2015.02.002

Carlsson, Oscar et al. (2016): "Configuration service in cloud based automation sys-tems". IECON, pp. 5238–5245. Doi: https://doi.org/10.1109/IECON.2016.7793489. DOI: https://doi.org/10.1109/IECON.2016.7793489

Arrieta, Aitor et al. (2016): "Test case prioritization of configurable cyber-physical sys-tems with weight-based search algorithms". GECCO, pp. 1053–1060. doi: https://doi.org/10.1145/2908812.2908871. DOI: https://doi.org/10.1145/2908812.2908871

Groher, Iris et al. (2016): "Reusable architecture variants for customer-specific auto-mation solutions". SPLC, pp. 242–251. doi: https://doi.org/10.1145/2934466.2934492. DOI: https://doi.org/10.1145/2934466.2934492

Metzger, Andreas et al. (2016): "Coordinated run-time adaptation of variability-intensive systems: an application in cloud computing". VACE, pp. 5–11. doi: https://doi.org/10.1109/VACE.2016.010. DOI: https://doi.org/10.1145/2897045.2897049

McGee, Ethan T., and John D. McGregor (2016): "Using dynamic adaptive systems in safety-critical domains". SEAMS, pp. 115–121. doi: https://doi.org/10.1145/2897053.2897062. DOI: https://doi.org/10.1145/2897053.2897062

Heikkilä, Tapio, Tadeusz Dobrowiecki, and Lars Dalgaard (2016): "Dealing with con-figurability in robot systems". MESA, pp. 1–7. doi: https://doi.org/10.1109/MESA.2016.7587120. DOI: https://doi.org/10.1109/MESA.2016.7587120

Yu, Shiqiang et al. (2017): "Product-Service Family Enabled Product Configuration System for Cloud Manufacturing". MSEC, pp. 1–9. doi: https://doi.org/10.1115/MSEC2017-2987. DOI: https://doi.org/10.1115/MSEC2017-2987

McGee, Ethan T. et al. (2017): "Designing for reuse in an industrial internet of things monitoring application." WASHES, pp. 19–25. doi: https://doi.org/10.1145/3098322.3098323. DOI: https://doi.org/10.1145/3098322.3098323

Iglesias, Aitziber et al. (2017): "Product line engineering of monitoring functionality in industrial cyber-physical systems: a domain analysis". SPLC. 2017, pp. 195–204. doi: https://doi.org/10.1145/3106195.3106223. DOI: https://doi.org/10.1145/3106195.3106223

Wang, Lihui, and Xi Vincent Wang (2018): "Cloud robotics towards a CPS assembly system". Cloud-Based Cyber-Physical Systems in Manufacturing, pp. 243–259. doi: https://doi.org/10.1007/978-3-319-67693-7_10. DOI: https://doi.org/10.1007/978-3-319-67693-7_10

Jalil, Dzulkafli, and Muhamad Shahbani Abu Bakar (2017): "Adapting Software Facto-ry Approach into Cloud ERP Production Model". International Journal of Computer Science and Information Security 15/1: pp. 1–9.

Krieter, Sebastian et al. (2018): "Towards secure dynamic product lines in the cloud". ICSE-NIER, pp. 5–8. doi: https://doi.org/10.1145/3183399.3183425. DOI: https://doi.org/10.1145/3183399.3183425

Çapa, Birol et al. (2018): "Rapid PLC-to-Cloud Prototype for Smart Industrial Automa-tion". ISCSIC, pp. 1–5. doi: https://doi.org/10.1145/3284557.3284710. DOI: https://doi.org/10.1145/3284557.3284710

Zhang, Zhenjie et al. (2018): "CMfgIA: a cloud manufacturing application mode for in-dustry alliance". The International Journal of Advanced Manufacturing Technology 98/9: pp. 2967–2985. doi: https://doi.org/10.1007/s00170-018-2476-x. DOI: https://doi.org/10.1007/s00170-018-2476-x

Lazreg, Sami et al. (2019): "Multifaceted automated analyses for variability-intensive embedded systems". ICSE, pp. 854–865. doi: https://doi.org/10.1109/ICSE.2019.00092. DOI: https://doi.org/10.1109/ICSE.2019.00092

Shaaban, Abdelkader Magdy, Thomas Gruber, and Christoph Schmittner (2019): "On-tology-based security tool for critical cyber-physical systems". SPLC, pp. 207–210. doi: https://doi.org/10.1145/3307630.3342397. DOI: https://doi.org/10.1145/3307630.3342397

Cañete, Angel, Mercedes Amor, and Lidia Fuentes (2020): "Supporting the evolution of applications deployed on edge-based infrastructures using multi-layer feature mod-els". SPLC, pp. 79–87. doi: https://doi.org/10.1145/3382026.3425772. DOI: https://doi.org/10.1145/3382026.3425772

Jamshidi, Pooyan et al. (2019): "Machine learning meets quantitative planning: Ena-bling self-adaptation in autonomous robots". SEAMS, pp. 39–50. doi: https://doi.org/10.1109/SEAMS.2019.00015. DOI: https://doi.org/10.1109/SEAMS.2019.00015

Chumpitaz, Luis, Andrei Furda, and Seng W. Loke (2019): "Evolving Variability Re-quirements of IoT Systems". Software Engineering for Variability Intensive Systems, Auerbach Pubs, pp. 321–334. DOI: https://doi.org/10.1201/9780429022067-17

Fischer, Juliane et al. (2020): "VarApp: Variant management app for IEC 61131-3 compliant legacy software". ICPS, pp. 269–276. doi: 1 https://doi.org/0.1109/ICPS48405.2020.9274774. DOI: https://doi.org/10.1109/ICPS48405.2020.9274774

Cañete, Angel (2019): "Energy efficient assignment and deployment of tasks in struc-turally variable infrastructures". SPLC, pp. 222–229. doi: https://doi.org/10.1145/3307630.3342704. DOI: https://doi.org/10.1145/3307630.3342704

Schlingloff, Bernd-Holger, and Niels Hoppe (2021): "A Framework for Cloud-based Testing of Multi-variant Cyber-physical Systems". MECO, pp. 1–4. doi: 10.1109/MECO52532.2021.9460159. DOI: https://doi.org/10.1109/MECO52532.2021.9460159

Downloads

Published

2022-12-15

How to Cite

May, R. (2022). Security and Configurable Storage Systems in Industry 4.0 Environments: A Systematic Literature Study. Open Conference Proceedings, 2, 151–156. https://doi.org/10.52825/ocp.v2i.149

Conference Proceedings Volume

Vol. 2 (2022): 22. Nachwuchswissenschaftler*innenkonferenz (NWK)

Section

Beiträge zur / Contributions to the 22. Nachwuchswissenschaftler*innenkonferenz (NWK)

License

Copyright (c) 2022 Richard May

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.