Skip to main content
Springer Nature Link
Log in

Analysis of Cyber Security Features in Industry 4.0 Maturity Models

  • Conference paper
  • First Online:
Computer Security. ESORICS 2021 International Workshops (ESORICS 2021)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 13106))

Included in the following conference series:

  • 1871 Accesses

Abstract

The increasing digitization and networking of machines and plants has been leading to significant changes in the industrial sector for several years. Particularly in combination with the Internet and other disruptive technologies such as cloud computing, many opportunities and new business models are emerging. This change in industry is subsumed under the term Industry 4.0 and represents an important basis for the future economic success of many companies, especially small and medium-sized manufacturing companies. However, there are also many risks associated with this transformation, particularly with regard to cyber security. Against the backdrop of increasing dependence on networked information technology, the attack surface of companies is increasing. To address the problem, executives need to know the current state of their companies’ security maturity. To this end, it is necessary to assess the negative impact on business caused by cyber security attacks in Industry 4.0. So-called maturity models are useful instruments for this purpose. However, it has not yet been thoroughly investigated which maturity models from the literature can be used to assess cyber security in the context of Industrie 4.0 technologies. We have therefore developed a methodology to identify maturity models related to Industrie 4.0 and analyze them with respect to their applicability in the cyber security context. The aim is to use the analysis to identify maturity models most relevant to industry for the cross-sectional topic of cyber security in Industrie 4.0. The results can then be used by companies when integrating security strategies into their own corporate strategy.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  1. Kagermann, H., Wahlster, W., Helbig, J.: Securing the future of German manufacturing industry: recommendations for implementing the strategic initiative INDUSTRIE 4.0. Final Rep. Ind. 4.0 Work. Gr., 1–84 (2013)

    Google Scholar 

  2. Matt, D.T., Modrák, V., Zsifkovits, H. (eds.): Industry 4.0 for SMEs. Springer, Cham (2020). https://doi.org/10.1007/978-3-030-25425-4

    Book  Google Scholar 

  3. Sommer, L.: Industrial revolution - Industry 4.0: are German manufacturing SMEs the first victims of this revolution? J. Ind. Eng. Manag. 8, 1512–1532 (2015). https://doi.org/10.3926/jiem.1470

  4. Rotar, L.J., Pamić, R.K., Bojnec, Š: Contributions of small and medium enterprises to employment in the European Union countries. Econ. Res. Istraz. 32, 3296–3308 (2019). https://doi.org/10.1080/1331677X.2019.1658532

    Article  Google Scholar 

  5. Matt, D.T., Modrák, V., Zsifkovits, H.: Industry 4.0 for SMEs: Challenges, Opportunities and Requirements. Springer, Cham (2020). https://doi.org/10.1007/978-3-030-25425-4

  6. Ervural, B., Ervural, B.: Overview of cyber security in the Industry 4.0 era. In: Industry 4.0: Managing The Digital Transformation. SSAM, pp. 267–284. Springer, Cham (2018). https://doi.org/10.1007/978-3-319-57870-5_16

    Chapter  Google Scholar 

  7. Wu, D., Ren, A., Zhang, W., Fan, F., Liu, P., Fu, X.: Cybersecurity for digital manufacturing. J. Manuf. Syst. 48, 3–12 (2018). https://doi.org/10.1016/j.jmsy.2018.03.006

    Article  Google Scholar 

  8. Jesus, V., Josephs, M.: Challenges in Cybersecurity for Industry 4.0 (2018)

    Google Scholar 

  9. Weber, R.H., Studer, E.: Cybersecurity in the Internet of Things: legal aspects. Comput. Law Secur. Rev. 32, 715–728 (2016). https://doi.org/10.1016/j.clsr.2016.07.002

    Article  Google Scholar 

  10. Benias, N., Markopoulos, A.P.: A review on the readiness level and cyber-security challenges in Industry 4.0. In: South Eastern European Design Automation, Computer Engineering, Computer Networks and Social Media Conference (SEEDA-CECNSM) (2017). https://doi.org/10.23919/SEEDA-CECNSM.2017.8088234

  11. Fichtner, L., Pieters, W., Teixeira, A.: Cybersecurity as a Politikum: implications of security discourses for infrastructures. In: Proceedings of the 2016 New Security Paradigms Workshop, pp. 36–48. Association for Computing Machinery (ACM) (2016). https://doi.org/10.1145/3011883.3011887

  12. Corallo, A., Lazoi, M., Lezzi, M.: Cybersecurity in the context of industry 4.0: a structured classification of critical assets and business impacts. Comput. Ind. 114, 103165 (2020). https://doi.org/10.1016/j.compind.2019.103165

  13. Waslo, R., Lewis, T., Hajj, R., Carton, R.: Managing risk in an age of connected production. Deloitte Univ. Press. 1, 1–22 (2017)

    Google Scholar 

  14. Yagiz, K., Ustundag, A., Cevikcan, E.: Maturity and Readiness Model for Industry 4.0 Strategy Implementation of Industry 4.0 strategies require wide applications in companies (2017)

    Google Scholar 

  15. Proença, D., Borbinha, J.: Maturity models for information systems - a state of the art. Proc. Comput. Sci. 100, 1042–1049 (2016)

    Google Scholar 

  16. Gökalp, E., Şener, U., Eren, P.: Development of an assessment model for Industry 4.0: Industry 4.0-MM. In: Mas, A., Mesquida, A., O’Connor, R.V., Rout, T., Dorling, A. (eds.) SPICE 2017. CCIS, vol. 770, pp. 128–142. Springer, Cham (2017). https://doi.org/10.1007/978-3-319-67383-7_10

    Chapter  Google Scholar 

  17. Schuh, G.G., Anderl, L.R., Gausemeier, J.J., ten Hompel, M.M., Wahlster, W. (eds.): Industrie 4.0 Maturity Index. Managing the Digital Transformation of Companies. Acatech Study, 64 (2020)

    Google Scholar 

  18. Rea-Guaman, A.M., Sanchez-Garcia, I.D., Feliu, T.S., Calvo-Manzano, J.A.: Modelos de Madurez en Ciberseguridad: una revisión sistemática. Iber. Conf. Inf. Syst. Technol. Cist. (2017). https://doi.org/10.23919/CISTI.2017.7975865

  19. OECD: Enhancing the Contributions of SMEs in a Global and Digitalised Economy. Meet. OECD Counc. Minist. Lev., pp. 7–8 (2017)

    Google Scholar 

  20. Ganzarain, J., Errasti, N.: Three stage maturity model in SME’s toward industry 4.0. J. Ind. Eng. Manag. 9, 1119 (2016). https://doi.org/10.3926/jiem.2073

  21. Wiesner, S., Gaiardelli, P., Gritti, N., Oberti, G.: Maturity models for digitalization in manufacturing - applicability for SMEs. In: Moon, I., Lee, G.M., Park, J., Kiritsis, D., von Cieminski, G. (eds.) APMS 2018. IAICT, vol. 536, pp. 81–88. Springer, Cham (2018). https://doi.org/10.1007/978-3-319-99707-0_11

    Chapter  Google Scholar 

  22. Jones, M., Zarzycki, L., Murray, G.: Does Industry 4.0 pose a challenge for the SME machine builder? A case study and reflection of readiness for a UK SME. In: Ratchev, S. (ed.) IPAS 2018. IAICT, vol. 530, pp. 183–197. Springer, Cham (2019). https://doi.org/10.1007/978-3-030-05931-6_17

    Chapter  Google Scholar 

  23. Schumacher, A., Erol, S., Sihn, W.: A maturity model for assessing Industry 4.0 readiness and maturity of manufacturing enterprises. Procedia CIRP 52, 161–166 (2016). https://doi.org/10.1016/j.procir.2016.07.040

  24. Jamai, I., Ben Azzouz, L., Saidane, L.A.: Security issues in Industry 4.0. In: 2020 International Wireless Communications and Mobile Computing, IWCMC 2020, pp. 481–488 (2020). https://doi.org/10.1109/IWCMC48107.2020.9148447

  25. ENISA: Good Practices for Security of Internet of Things in the context of Smart Manufacturing (2018)

    Google Scholar 

  26. Sullivan, D., Luiijf, E., Colbert, E.J.M.: Components of industrial control systems. In: Colbert, E.J.M., Kott, A. (eds.) Cyber-security of SCADA and Other Industrial Control Systems. AIS, vol. 66, pp. 15–28. Springer, Cham (2016). https://doi.org/10.1007/978-3-319-32125-7_2

    Chapter  Google Scholar 

  27. Benitez, G.B., Ayala, N.F., Frank, A.G.: Industry 4.0 innovation ecosystems: an evolutionary perspective on value cocreation. Int. J. Prod. Econ. 228 (2020). https://doi.org/10.1016/j.ijpe.2020.107735

  28. Dalenogare, L.S., Benitez, G.B., Ayala, N.F., Frank, A.G.: The expected contribution of Industry 4.0 technologies for industrial performance. Int. J. Prod. Econ. 204, 383–394 (2018). https://doi.org/10.1016/j.ijpe.2018.08.019

  29. Pacchini, A.P.T., Lucato, W.C., Facchini, F., Mummolo, G.: The degree of readiness for the implementation of Industry 4.0. Comput. Ind. 113, 103125 (2019). https://doi.org/10.1016/j.compind.2019.103125

  30. Bosch, G., Ag, R.: 3 Die Projektpartner Autoren des Dokuments (2018)

    Google Scholar 

  31. Gayle, F.W.: Accelerating US. Advanced manufacturing. 2015 Erc. (2015)

    Google Scholar 

  32. Zhou, J.: Intelligent manufacturing-main direction of “made in China 2025.” Zhongguo Jixie Gongcheng/China Mech. Eng. 26, 2273–2284 (2015). https://doi.org/10.3969/j.issn.1004-132X.2015.17.001

    Article  MathSciNet  Google Scholar 

  33. Ministère du Redressement productif: LA NouveLLe FrANce INdustrIeLLe, pp. 1–40 (2013)

    Google Scholar 

  34. Plano de CT&I para Manufatura Avançada no Brasil: ProFuturo (2017)

    Google Scholar 

  35. Science, L., Technology, I., To, R., Subjects, A.: [Quarterly peer reviewed International Journal of Education & Technology]

    Google Scholar 

  36. Wuest, T., Thoben, K.-D.: Information management for manufacturing SMEs. In: Frick, J., Laugen, B.T. (eds.) APMS 2011. IAICT, vol. 384, pp. 488–495. Springer, Heidelberg (2012). https://doi.org/10.1007/978-3-642-33980-6_53

    Chapter  Google Scholar 

  37. Mittal, S., Khan, M.A., Romero, D., Wuest, T.: A critical review of smart manufacturing & Industry 4.0 maturity models: implications for small and medium-sized enterprises (SMEs). J. Manuf. Syst. 49, 194–214 (2018). https://doi.org/10.1016/j.jmsy.2018.10.005

  38. Drath, R., Horch, A.: Industrie 4.0: hit or hype? [Industry Forum]. IEEE Ind. Electron. Mag. 8, 56–58 (2014). https://doi.org/10.1109/MIE.2014.2312079

  39. Şener, U., Gökalp, E., Eren, P.E.: Toward a maturity model for Industry 4.0: a systematic literature review and a model proposal. Ind. 4.0 MIS Perspect., 290–302 (2018)

    Google Scholar 

  40. Spath, D., Ganschar, O., Gerlach, S., Hämmerle, M., Krause, T., Schlund, S.: Produktionsarbeit der Zukunft. Fraunhofer IAO, pp. 1–150 (2013)

    Google Scholar 

  41. Modrak, V., Marton, D., Bednar, S.: Modeling and determining product variety for mass-customized manufacturing. Procedia CIRP 23, 258–263 (2014). https://doi.org/10.1016/j.procir.2014.10.090

    Article  Google Scholar 

  42. Gardiner, T., Weber, C., Curtis, B.: Business process maturity model (BPMM) version 1.0. Bus. Process Trends. 496 (2008)

    Google Scholar 

  43. Becker, J., Knackstedt, R., Pöppelbuß, J.: Developing maturity models for IT management. Bus. Inf. Syst. Eng. 1, 213–222 (2009). https://doi.org/10.1007/s12599-009-0044-5

    Article  Google Scholar 

  44. Mettler, T.: Maturity assessment models: a design science research approach. Int. J. Soc. Syst. Sci. 3, 81 (2011). https://doi.org/10.1504/ijsss.2011.038934

    Article  Google Scholar 

  45. Adler, R.M.: A dynamic capability maturity model for improving cyber security. In: 2013 IEEE International Conference on Technologies for Homeland Security HST 2013, pp. 230–235 (2013). https://doi.org/10.1109/THS.2013.6699005

  46. Christopher, J.D., et al.: Cybersecurity Capability Maturity Model (C2M2). Department of Homeland Security, pp. 1–76 (2014)

    Google Scholar 

  47. Nikkhou, S., Taghizadeh, K., Hajiyakhchali, S.: Designing a portfolio management maturity model (Elena). Procedia - Soc. Behav. Sci. 226, 318–325 (2016). https://doi.org/10.1016/j.sbspro.2016.06.194

    Article  Google Scholar 

  48. Lebrun, J.-L.: Scientific Writing 2.0: a reader and writer’s guide (2011)

    Google Scholar 

  49. Feng, F., Zhang, L., Du, Y., Wang, W.: Visualization and quantitative study in bibliographic databases: a case in the field of university-industry cooperation. J. Informetr. 9, 118–134 (2015). https://doi.org/10.1016/j.joi.2014.11.009

    Article  Google Scholar 

  50. Chen, C., Ibekwe-Sanjuan, F., Hou, J.: The structure and dynamics of cocitation clusters: a multiple-perspective cocitation analysis. J. Am. Soc. Inf. Sci. Technol. 61, 1386–1409 (2010). https://doi.org/10.1002/asi.21309

    Article  Google Scholar 

  51. Radanliev, P., et al.: Integration of cyber security frameworks, models and approaches for building design principles for the internet-of-Things in industry 4.0. In: IET Conference Publication 2018, pp. 0–7 (2018). https://doi.org/10.1049/cp.2018.0041

  52. Rockwell Automation: The connected enterprise maturity model. Ind. Conectada 4, 1–12 (2014)

    Google Scholar 

  53. Forbes, J., Naujok, N., Geissbauer, R., Vedso, J., Schrauf, S.: 2016 Global Industry 4.0 Survey – Industry key findings, 12 (2016)

    Google Scholar 

  54. Le, N.T., Hoang, D.B.: Can maturity models support cyber security? In: 2016 IEEE 35th International Performance Computing and Communications Conference, IPCCC 2016 (2017)

    Google Scholar 

  55. Curtis, P.D., Mehravari, N.: Evaluating and improving cybersecurity capabilities of the energy critical infrastructure. In: 2015 IEEE International Symposium on Technologies for Homeland Security, HST 2015, pp. 1–6 (2015). https://doi.org/10.1109/THS.2015.7225323

Download references

Author information

Authors and Affiliations

  1. Technological Institute of Aeronautics - ITA, São José dos Campos, Brazil

    Antonio João Gonçalves de Azambuja

  2. Technische Universität Darmstadt, Otto-Berndt-Straße 2, 64287, Darmstadt, Germany

    Antonio João Gonçalves de Azambuja, Alexander Kern & Reiner Anderl

Authors
  1. Antonio João Gonçalves de Azambuja
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Alexander Kern
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Reiner Anderl
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding authors

Correspondence to Antonio João Gonçalves de Azambuja , Alexander Kern or Reiner Anderl .

Editor information

Editors and Affiliations

  1. Norwegian University of Science and Technology, Gjøvik, Norway

    Sokratis Katsikas

  2. University of Piraeus, Piraeus, Greece

    Costas Lambrinoudakis

  3. Polytechnique Montréal, Montréal, QC, Canada

    Nora Cuppens

  4. University of Toronto, Toronto, ON, Canada

    John Mylopoulos

  5. University of the Aegean, Mytilene, Greece

    Christos Kalloniatis

  6. Technical University of Denmark, Kongens Lyngby, Denmark

    Weizhi Meng

  7. University of Nottingham, Nottingham, UK

    Steven Furnell

  8. Technische Universität Berlin, Berlin, Germany

    Frank Pallas

  9. Alexander von Humboldt Institut für Internet und Gesellschaft gGmbH, Berlin, Germany

    Jörg Pohle

  10. Ruhr-Universität Bochum, Bochum, Germany

    M. Angela Sasse

  11. Norwegian Computing Center, Oslo, Norway

    Habtamu Abie

  12. University of Trento and Fondazione Bruno Kessler, Trento, Italy

    Silvio Ranise

  13. Università degli Studi di Genova, Genoa, Italy

    Luca Verderame

  14. Consiglio Nazionale delle Ricerche (CNR), Genoa, Italy

    Enrico Cambiaso

  15. Indra, Alcobendas, Spain

    Jorge Maestre Vidal

  16. Indra, Alcobendas, Spain

    Marco Antonio Sotelo Monge

Rights and permissions

Reprints and permissions

Copyright information

© 2022 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

de Azambuja, A.J.G., Kern, A., Anderl, R. (2022). Analysis of Cyber Security Features in Industry 4.0 Maturity Models. In: Katsikas, S., et al. Computer Security. ESORICS 2021 International Workshops. ESORICS 2021. Lecture Notes in Computer Science(), vol 13106. Springer, Cham. https://doi.org/10.1007/978-3-030-95484-0_6

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-95484-0_6

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-95483-3

  • Online ISBN: 978-3-030-95484-0

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics