Safe and flexible retrofit Multiprotocol gateway with hardware-based trust anchors

Industrial cyber-physical systems require appropriate security mechanisms to provide protection against cyber attackers. The variety of protocols involved in the IoT and the production setting present a further challenge for the vertical integration of sensors in the cloud. We propose a security architecture for a gateway connecting production and cloud systems. A Trusted Platform Module 2.0 (TPM 2.0) protects the cryptographic keys used in secure communication protocols and provides protection against illegitimate firmware manipulation. As proof of concept, we implemented the key protection functionality with a TPM 2.0 for the OPC UA protocol.