Safety and Security in Industry Research Lab (SafeSecLab)
Cyber-physical production systems (CPPS) need suitable networked architectures that take into account and combine safety (operation of the system must not pose any danger) and security (protection against unauthorized manipulation). As part of the newly founded "TÜV AUSTRIA Safety and Security in Industry Research Lab" (SafeSecLab), several related research questions are addressed within the framework of dissertation projects (3 years funding) at TU Wien.
Project – PhD1)
The PhD topic "SafeSecSystem Modeling" will investigate approaches for modeling secure system architectures relevant in the industrial environment with particular attention to functional safety and resilience. Research questions include the identification of attack vectors for assets to be protected (such as devices or plants) w.r.t. data sources and data sinks, taking into consideration machine-to-machine communication aspects and IT/OT convergence. Methods from IT threat modeling and safety modeling are to be re-visited, revised, adapted and brought in line with the reference architecture model "Industry 4.0". Ultimately, a catalog of protection measures supported by a tool chain is to be devised in order to evaluate existing (and future) CPPS.
Project – PhD2)
The goal of the PhD topic is the design of a "Safety and Security integrated IT/OT architecture" which enables a safe yet secure integration of the different levels of the automation pyramid. Relevant topics for the project address the integration or embedding of legacy components, network security (network segmentation, challenges of ad-hoc networking), hierarchical security architectures (defense in depth), security/safety versus real-time requirements, challenges of limited resources in automation systems, scalability and resilience as well as the management of keys and certificates. Derived from this, a reference architecture and recommendations for their implementation are to be developed and implemented as a prototype.
Project – PhD5)
This PhD topic focuses on information security risk management in industrial control systems. Existing approaches typically rely on static system models which quickly lose their relevance due to plant modifications or changes in the threat landscape. Such an approach is time-consuming and can lead to incorrect risk estimations. This project, by contrast, aims to continuously collect data from various sources inside the CPPS (e.g., sensors, network traffic), automatically build system models, and identify and assess cyber risks. In addition, this project strives to develop methods to evaluate consequences of successful exploits and to select effective countermeasures.
Project – PhD7)
In CPPS, hardware platforms performing malicious functions can be a serious threat to reliable and safe operation. The goal of this project is to design and/or develop a verification method to evaluate security properties of hardware designs. Research questions address the detection of unauthorized information flows (e.g. based on hardware Trojans) and the definition of appropriate security policies. A toolset for modeling and detection of malicious hardware shall be developed that can later be used as basis for a workflow guiding secure hardware design and assessment.
- Academic master degree in computer science/informatics, electrical engineering or information technology
Interest in research in security and safety
Excellent knowledge of English
Ability to work in a team, collaborate effectively with other PhDs, interest in interdisciplinary work
More details can be found on the application website: https://karriere.tuwien.ac.at/Job/126869?culture=en