Customers: National Emergency Supply Agency, Metso Automation, Neste Oil, Outotec, Turun seudun puhdistamo, and, from the service sector, Nixu, nSense, Prosys and Nordic LAN & WAN Communication Oy.
One of the problems in the development of cyber security is that very little information about production stoppages caused by, for example, viruses is made public. Therefore, there is a challenge in developing cyber security services and practical implementation of information security solutions and practices in the industrial sector.
VTT has been working several years for the development of industrial cyber security in several projects. The three-year KYBER-TEO project (2014–2016) consists of three work packages: cyber protection practices and mappings, practical implementation of cyber security in domestic production, and monitoring services of production automation network.
The idea is to develop and test cyber security services in the participating companies with a view to ensuring production and continuity. In bilateral cases, the confidential results are naturally revealed only to the organisation involved. At the same time, however, general information is also generated, which can be shared for everyone to use, also outside the projects.
The main sponsor of the project entity is the National Emergency Supply Agency.
One example of the achievements among the projects targeted at the industry the common requirements for vendors, which supports the management of automation system vendors’ information security. By applying it, an industrial company will have its various system suppliers, devices and solutions function in accordance with its own information security concept.
VTT has also produced, for example, information security instructions for factory environment, in other words, basic rules on what every employee, from plant cleaner to automation engineer, needs to know about information security.