WG 4.18 Automation Security

Focus

The "Automation Security" working group addresses issues including the following topics in the context of its experience exchange, its concept developments, formulation of requirements to be met by automation solutions and its involvement in national and international standardisation:

• Risk management
• Asset management
• Safety & Security
• Organisational measures Roles & Responsibilities
• Interaction automation/IT
• Systems engineering/architecture
• Vertical and horizontal integration
• Communication
• Reporting of security incidents and security gaps
• Definition of the user requirements for Automation security solutions
• Influencing of guidelines and standards with regard to the requirements and framework conditions in the process industry
• Monitoring of the standards situation
• Contact to other associations and standardisation committees

Advantages

• Avoidance of costs resulting from impractical requirements from standards through active cooperation in all relevant standardisation institutions, particularly in the DKE
• Avoidance of costs resulting from impractical requirements from governmental institutions like the Bundesamt für Sicherheit und Informationstechnik (BSI) through active cooperation
• Collection of best practices and exchange of experience to avoid security incidents

Recommendations and worksheets

Please refer to the following list for recommendations (NE) and worksheets (NA) managed by the working group:

More information

AK-PRAXIS 4.18 Architecture (2017-09-11 – German only)

AK-PRAXIS 4.18 Pachmanagement (2017-09-11 – German only)

AK-PRAXIS 4.18 NA 163 Checklist (2024-11-13)

WG-PRAXIS 4.18 Attack detection pursuant to the German IT Security Act 2.0 (2023-06-14)

AK-PRAXIS 4.18 Ethernet – APL – Security Advisory (2025-01-20 – German only)

AK-PRAXIS 4.18 Härtung von Computersystemen (2025-03-11 – German only)

WG 4.18.4 Identity and Access Management on Automation Devices (2025-08-04)