{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,8]],"date-time":"2026-07-08T22:47:47Z","timestamp":1783550867384,"version":"3.55.0"},"publisher-location":"Cham","reference-count":44,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783031409226","type":"print"},{"value":"9783031409233","type":"electronic"}],"license":[{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023]]},"DOI":"10.1007\/978-3-031-40923-3_15","type":"book-chapter","created":{"date-parts":[[2023,9,10]],"date-time":"2023-09-10T23:02:21Z","timestamp":1694386941000},"page":"196-210","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":10,"title":["From Standard to\u00a0Practice: Towards ISA\/IEC 62443-Conform Public Key Infrastructures"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-1094-4828","authenticated-orcid":false,"given":"Michael P.","family":"Heinl","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0003-1010-7741","authenticated-orcid":false,"given":"Maximilian","family":"Pursche","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0000-6259-9846","authenticated-orcid":false,"given":"Nikolai","family":"Puch","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0007-6421-4023","authenticated-orcid":false,"given":"Sebastian N.","family":"Peters","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7648-3895","authenticated-orcid":false,"given":"Alexander","family":"Giehl","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","published-online":{"date-parts":[[2023,9,11]]},"reference":[{"key":"15_CR1","unstructured":"BSI: Kryptographische Verfahren: Empfehlungen und Schl\u00fcssellangen (2022)"},{"key":"15_CR2","unstructured":"BSI: Kryptographische Verfahren: Empfehlungen und Schl\u00fcssellangen Teil 2 - Verwendung von Transport Layer Security (TLS) (2022)"},{"key":"15_CR3","unstructured":"BSI: Kryptographische Vorgaben f\u00fcr Projekte der Bundesregierung Teil 4: Kommunikationsverfahren in Anwendungen (2022)"},{"key":"15_CR4","unstructured":"CA\/Browser Forum: Network & Certificate System Security Requirements (2021)"},{"key":"15_CR5","unstructured":"CA\/Browser Forum: Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates (2022)"},{"key":"15_CR6","unstructured":"CODESYS GmbH: Features and Improvements CODESYS V3.5 SP16 (2020)"},{"key":"15_CR7","unstructured":"ETSI EN 319 401 V2.3.1: Electronic Signatures and Infrastructures; General Policy Requirements for Trust Service Providers (2021)"},{"key":"15_CR8","unstructured":"ETSI EN 319 411-1 V1.3.1: Electronic Signatures and Infrastructures; Policy and security requirements for Trust Service Providers issuing certificates; Part 1: General requirements (2021)"},{"key":"15_CR9","doi-asserted-by":"crossref","unstructured":"Fockel, M., et al.: Designing and integrating IEC 62443 compliant threat analysis. In: EuroSPI 2019 (2019)","DOI":"10.1007\/978-3-030-28005-5_5"},{"key":"15_CR10","unstructured":"Hagen, B.: Security analysis of an interconnected industrial automation testbed (production line). Master\u2019s thesis, Hochschule Augsburg (2022)"},{"key":"15_CR11","unstructured":"Hanke, M.: Embedded PKI in industrial facilities. In: ISSE\/SECURE 2007 (2007)"},{"key":"15_CR12","doi-asserted-by":"crossref","unstructured":"Heinl, M.P., et al.: MERCAT: a metric for the evaluation and reconsideration of certificate authority trustworthiness. In: CCSW 2019 (2019)","DOI":"10.1145\/3338466.3358917"},{"key":"15_CR13","doi-asserted-by":"crossref","unstructured":"Hughes, L.E.: Issue and manage windows logon certificates. In: Pro AD Certificate Services: Creating & Managing Digital Certificates for Use in MS Networks. Apress (2022)","DOI":"10.1007\/978-1-4842-7486-6_17"},{"key":"15_CR14","unstructured":"IEC 61131-3:2013: Programming languages (2013)"},{"key":"15_CR15","unstructured":"IEC 62443-2-1:2010: Establishing an IACS security program (2010)"},{"key":"15_CR16","unstructured":"IEC 62443-2-4:2015: Sec. program requirements for IACS service providers (2015)"},{"key":"15_CR17","unstructured":"IEC 62443-3-2:2020: Security risk assessment for system design (2020)"},{"key":"15_CR18","unstructured":"IEC 62443-3-3:2013: System security requirements and security levels (2013)"},{"key":"15_CR19","unstructured":"IEC 62443-4-2:2019: Technical security requirements for IACS components (2019)"},{"key":"15_CR20","unstructured":"IEC TR 62443-2-3:2015: Patch management in the IACS environment (2015)"},{"key":"15_CR21","unstructured":"IEC TS 62443-1-1:2009: Terminology, concepts and models (2009)"},{"key":"15_CR22","doi-asserted-by":"crossref","unstructured":"Khan, S., et al.: Survey on issues and recent advances in vehicular public-key infrastructure (VPKI). IEEE COMST 24(3) (2022)","DOI":"10.1109\/COMST.2022.3178081"},{"key":"15_CR23","doi-asserted-by":"crossref","unstructured":"Leander, B., et al.: Applicability of the IEC 62443 standard in Industry 4.0\/IIoT. In: ARES 2019 (2019)","DOI":"10.1145\/3339252.3341481"},{"key":"15_CR24","doi-asserted-by":"crossref","unstructured":"Maidl, M., et al.: A comprehensive framework for security in engineering projects - based on IEC 62443. In: IEEE ISSREW 2018 (2018)","DOI":"10.1109\/ISSREW.2018.00-33"},{"key":"15_CR25","unstructured":"Maletsky, K.: RSA vs. ECC Comparison for Embedded Systems (Microchip) (2020)"},{"key":"15_CR26","unstructured":"NIST: FIPS 140-3: Security Requirements for Cryptographic Modules (2019)"},{"key":"15_CR27","unstructured":"NIST: SP 800-57 Part 2 Rev. 1 - Recom. for Key Management: Part 2 - Best Practices for Key Management Organizations (2019)"},{"key":"15_CR28","unstructured":"NIST: SP 800-57 Part 1 Rev. 5 - Recom. for Key Management: Part 1 - General (2020)"},{"key":"15_CR29","unstructured":"OPC UA Foundation: Practical Security Recommendations for building OPC UA Applications. Whitepaper Security Working Group (2018)"},{"key":"15_CR30","doi-asserted-by":"crossref","unstructured":"Paul, S., et al.: Towards post-quantum security for cyber-physical systems: integrating PQC into industrial M2M communication. In: ESORICS 2020 (2020)","DOI":"10.1007\/978-3-030-59013-0_15"},{"key":"15_CR31","doi-asserted-by":"crossref","unstructured":"Paul, S., et al.: Mixed certificate chains for the transition to post-quantum authentication in TLS 1.3. In: ASIA CCS 2022 (2022)","DOI":"10.1145\/3488932.3497755"},{"key":"15_CR32","unstructured":"RFC 3647: Internet X.509 PKI Certificate Policy & Certification Pract. Framew. (2003)"},{"key":"15_CR33","unstructured":"RFC 5280: Internet X.509 PKI Certificate and CRL Profile (2008)"},{"key":"15_CR34","unstructured":"RFC 6066: Transport Layer Security (TLS) Extensions: Extension Definitions (2011)"},{"key":"15_CR35","unstructured":"RFC 6960: X.509 Internet PKI Online Certificate Status Protocol (2013)"},{"key":"15_CR36","unstructured":"RFC 7030: Enrollment over Secure Transport (2013)"},{"key":"15_CR37","unstructured":"RFC 8894: Simple Certificate Enrolment Protocol (2020)"},{"key":"15_CR38","unstructured":"Siemens AG: SIMATIC S7-1200 Programmable controller (2015). https:\/\/cache.industry.siemens.com\/dl\/files\/121\/109478121\/att_851433\/v1\/s71200_system_manual_en-US_en-US.pdf"},{"key":"15_CR39","unstructured":"Siemens AG: Using Certificates with TIA Portal (2019). https:\/\/support.industry.siemens.com\/cs\/attachments\/109769068\/109769068_CertificateHandlingTIAPortal_V1_0_en.pdf"},{"key":"15_CR40","unstructured":"Siemens AG: Config. of TLS-based PG\/HMI Com. and the Protection of Confidential PLC Config. Data (2021). https:\/\/support.industry.siemens.com\/cs\/attachments\/109772940\/s71200_system_manual_en-US_en-US.pdf"},{"key":"15_CR41","unstructured":"Siemens AG: SIMATIC S7\u20131500, ET 200MP, ET 200SP, ET 200AL, ET 200pro Communication (2021). https:\/\/cache.industry.siemens.com\/dl\/files\/942\/84133942\/att_1098064\/v1\/et200sp_manual_collection_en-US.pdf"},{"key":"15_CR42","unstructured":"U.S. Department of Transportation: Security Credential Management System (SCMS). https:\/\/www.its.dot.gov\/factsheets\/pdf\/CV_SCMS.pdf"},{"key":"15_CR43","unstructured":"Vahdati, Z., et al.: Comparison of ECC and RSA algorithms in IoT devices. JATIT (2019)"},{"key":"15_CR44","doi-asserted-by":"crossref","unstructured":"Yunakovsky, S.E., et al.: Towards sec. recommendations for PKIs for production environments in the post-quantum era. EPJ Quantum Technol. 8(1) (2021)","DOI":"10.1140\/epjqt\/s40507-021-00104-z"}],"container-title":["Lecture Notes in Computer Science","Computer Safety, Reliability, and Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-40923-3_15","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,3,7]],"date-time":"2024-03-07T18:20:07Z","timestamp":1709835607000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-40923-3_15"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023]]},"ISBN":["9783031409226","9783031409233"],"references-count":44,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-40923-3_15","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023]]},"assertion":[{"value":"11 September 2023","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"SAFECOMP","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Computer Safety, Reliability, and Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Toulouse","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"France","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19 September 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"22 September 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"42","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"safecomp2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/safecomp2023.cnrs.fr\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Easychair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"100","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"20","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"20% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"5.7","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"For the workshops, 35 out of 49 papers have been accepted","order":10,"name":"additional_info_on_review_process","label":"Additional Info on Review Process","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}