Setting up company-wide PKI for Phoenix Contact

Customer

Phoenix Contact is a global market leader for components, systems and solutions in the field of electrical engineering, electronics and automation. The family-owned company currently employs around 20,300 people worldwide and generated 2.97 billion euros sales in 2021. Its headquarters are located in Blomberg, Westphalia. The Phoenix Contact Group includes 14 German and four international companies as well as 55 sales companies around the world. Internationally, Phoenix Contact is present in more than 100 countries.
www.phoenixcontact.com

Problem definition

Phoenix Contact aims to provide standardised cybersecurity in products and industrial solutions to enable future-proof operation of machines, plants and infrastructures. In order to ensure that products and solutions are protected against professional cyber attackers, the requirements of the IEC 62443 standard, which is essential for the manufacturing industry, must be met.

To prove the authenticity of hardware and software products Phoenix Contact relies on the use of high-quality electronic certificates and digital signatures. These certificates are used technically for secure device identity in accordance with IEEE802.1AR and secure firmware updates. To generate the electronic certificates, Phoenix Contact therefore planned to set up a company-wide public key infrastructure that could permanently fulfil the required high level of protection. One of the most important requirements in this project was to seamlessly integrate device registration into an industrial production process.

"Building a scalable and secure PKI for device identities and infrastructure for signatures of software and firmware is a challenging task. This made it all the more important to find suitable technical products and a suitable partner for the implementation project and ongoing support." Dr.-Ing. Lutz Jänicke, Corporate Product & Solution Security Officer, Phoenix Contact

Results

Phoenix Contact chose products from PrimeKey, now Keyfactor, to procure the public key infrastructure. EJBCA Appliance and SignServer Appliances were selected because of their product maturity, global deployment, and extensive PKI features and integration capabilities. The security certified HSMs used and the certified EJBCA software provided the perfect match for implementing the high level of security and ensuring highly available operation.

The company achelos, which also supplied the systems as a certified Keyfactor partner, was assigned with the IT and security planning, configuration and installation, and commissioning. Phoenix Contact thus had a central point of contact for the entire duration of the project, who had both the necessary knowledge of cyber security and the Keyfactor products. achelos will also be looking after the PKI, which has now been put into operation, during the operational phase by providing further support services.

Über die achelos GmbH

"We ensure more security in the connected world!"
achelos GmbH is a system house for cybersecurity and digital identity management founded in Paderborn in 2008. The independent provider develops robust solutions and offers service packages in various expansion stages for secure products and applications. For its customers from the fields of healthcare, industry, the public sector, digital payment and telecommunications, achelos translates security standards into viable solutions in line with the requirements of compliance. Customers benefit from this holistic approach – from consulting and conception to software development and certification, and up to and including secure operation. achelos is certified according to ISO 9001, ISO 27001 and Common Criteria and has a prestigious network of partners.
www.achelos.de

Firmenkontakt und Herausgeber der Meldung:

achelos GmbH
Vattmannstraße 1
33100 Paderborn
Telefon: +49 (5251) 14212-0
Telefax: +49 (5251) 14212-100
http://www.achelos.de

Ansprechpartner:
Bianca Dören
Public Relations & Events
Telefon: +49 (5251) 14212-341
Fax: +49 (5251) 14212-100
E-Mail: bianca.doeren@achelos.de
Für die oben stehende Story ist allein der jeweils angegebene Herausgeber (siehe Firmenkontakt oben) verantwortlich. Dieser ist in der Regel auch Urheber des Pressetextes, sowie der angehängten Bild-, Ton-, Video-, Medien- und Informationsmaterialien. Die United News Network GmbH übernimmt keine Haftung für die Korrektheit oder Vollständigkeit der dargestellten Meldung. Auch bei Übertragungsfehlern oder anderen Störungen haftet sie nur im Fall von Vorsatz oder grober Fahrlässigkeit. Die Nutzung von hier archivierten Informationen zur Eigeninformation und redaktionellen Weiterverarbeitung ist in der Regel kostenfrei. Bitte klären Sie vor einer Weiterverwendung urheberrechtliche Fragen mit dem angegebenen Herausgeber. Eine systematische Speicherung dieser Daten sowie die Verwendung auch von Teilen dieses Datenbankwerks sind nur mit schriftlicher Genehmigung durch die United News Network GmbH gestattet.

counterpixel