CYBERSECURITY
123
Safe and smart bakery production Networked machines, plants and systems are a milestone on the way to Industry 4.0 in food production. The optimized flow of information increases transparency, reaction speed and efficiency – but also the vulnerability of operations. Currently, for safe food, risks stemming from IT often do not get enough attention.
In the European Union, the same applies to networked machine networks as to conventional systems: they must meet the requirements of the Machinery Directive (2006/42/EC), which was adopted into national law with the respective Product Safety Act. The directive primarily relates to accident prevention (safety) – i.e. occupational health and safety for workers – and thus to risks and hazards that can occur when handling the machine and must be safeguarded against. These include flour dust explosions or collisions with automated guided vehicles (AGVs). Considering cybersecurity These risks are predictable, quantifiable and qualifiable. Risk assessment (RA) is used to identify, analyze and evaluate potential hazards,
which are controlled with suitable countermeasures. The Machinery Directive prescribes such a risk assessment. With the CE declaration of conformity and marking, manufacturers and integrators confirm that the system meets the requirements of the Machinery Directive. However, networked systems in increasingly intelligent factories that implement the Industrial Internet of Things (IIoT) offer new points of attack for deliberate manipulation from the outside. These are temporally unpredictable and can not only have a direct impact on the machine but also on product safety. Hacker attacks could, for example, deliberately manipulate the recipes, packaging or the declarations. This can affect the health of consumers if there are no instructions for allergy sufferers or if, for example, nuts get into a product that is declared nut-free. Cybersecurity is therefore also essential for consumer safety. In many publications, however, the role of IT security in production is sometimes reduced to securing the components of functional safety with cybersecurity measures or making an existing safety risk assessment ‘secure’. However, the usual safety risk assessments do not consider deliberate manipulation.
SAFE AND SMART BAKERY PRODUCTION
+
In the food industry, manufacturers and operators are increasingly relying on modular plants: they can be quickly reconfigured to flexibly manufacture a different product or optimize capacity utilization. Enterprise resource planning (ERP) software and digital representations – such as digital twins or the asset administration shell (AAS) – also promote transparency, simplify planning tasks and, in combination with new dynamized approaches, increase plant productivity.
