Challenges of unified security governance
Chapter 2, Industrial IoT Dataflow and Security Architecture, elaborates on how IIoT security involves much more than just the protection of information assets. Securing IIoT translates to establishing end-to-end trustworthiness. In addition to information security, trustworthiness relies on resilience, safety, reliability, and privacy. IIoT security governance policies must be designed to ensure adequate trustworthiness, by converging IT security understanding and domain-specific OT expertise.
For the industrial internet or the Industrie 4.0 ecosystems, how-much-ever we may hope for overarching, industry-wide security governance; in reality, such a unified model is not viable for various reasons. Some of that reasoning is presented here.
Security, in general, comes at a cost. It involves training a workforce and investing extra resources and cycles to implement security. This, in turn, impacts time-to-market. In a fast-paced innovation landscape ...