{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T05:02:49Z","timestamp":1750309369937,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":38,"publisher":"ACM","license":[{"start":{"date-parts":[[2025,3,31]],"date-time":"2025-03-31T00:00:00Z","timestamp":1743379200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"Bundesministerium f\u00fcr Wirtschaft und Klimaschutz","award":["13I40V010A"],"award-info":[{"award-number":["13I40V010A"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2025,3,31]]},"DOI":"10.1145\/3672608.3707707","type":"proceedings-article","created":{"date-parts":[[2025,5,14]],"date-time":"2025-05-14T18:30:17Z","timestamp":1747247417000},"page":"245-254","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["Leveraging BRSKI to Protect the Hardware Supply Chain of Operational Technology: Opportunities and Challenges"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-1094-4828","authenticated-orcid":false,"given":"Michael P.","family":"Heinl","sequence":"first","affiliation":[{"name":"Technical University of Munich, Garching bei M\u00fcnchen, Germany"},{"name":"Fraunhofer AISEC, Garching bei M\u00fcnchen, Germany"},{"name":"Munich University of Applied Sciences HM, Munich, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2601-6871","authenticated-orcid":false,"given":"Adrian","family":"Reuter","sequence":"additional","affiliation":[{"name":"Technical University of Munich, Garching bei M\u00fcnchen, Germany"},{"name":"Fraunhofer AISEC, Garching bei M\u00fcnchen, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0007-6421-4023","authenticated-orcid":false,"given":"Sebastian N.","family":"Peters","sequence":"additional","affiliation":[{"name":"Technical University of Munich, Garching bei M\u00fcnchen, Germany"},{"name":"Fraunhofer AISEC, Garching bei M\u00fcnchen, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0003-7759-7634","authenticated-orcid":false,"given":"Markus","family":"Bever","sequence":"additional","affiliation":[{"name":"Technical University of Munich, Garching bei M\u00fcnchen, Germany"},{"name":"Fraunhofer AISEC, Garching bei M\u00fcnchen, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2025,5,14]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","unstructured":"E. Barker. 2020. Recommendation for Key Management: Part 1 - General. NIST Special Publication 800-57 Part 1 Revision 5. 10.6028\/NIST.SP.800-57pt1r5","DOI":"10.6028\/NIST.SP.800-57pt1r5"},{"volume-title":"https:\/\/openconnectivity.org\/wp-content\/uploads\/2019\/11\/fairhair-specification-version-10_approved_april-2019.pdf","year":"2019","key":"e_1_3_2_1_2_1","unstructured":"Fairhair Alliance. 2019. Fairhair Specification 1.0. (2019). https:\/\/openconnectivity.org\/wp-content\/uploads\/2019\/11\/fairhair-specification-version-10_approved_april-2019.pdf."},{"key":"e_1_3_2_1_3_1","unstructured":"O. Friel et al. 2024. BRSKI Cloud Registrar. Internet Draft. IETF. https:\/\/datatracker.ietf.org\/doc\/draft-ietf-anima-brski-cloud\/."},{"key":"e_1_3_2_1_4_1","unstructured":"O. Friel et al. 2019. Zero-touch bootstrap of a network connected device. Technical Disclosure Commons. https:\/\/www.tdcommons.org\/cgi\/viewcontent.cgi?article=2980&context=dpubs_series."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/3690134.3694816"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-031-40923-3_15"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/3338466.3358917"},{"key":"e_1_3_2_1_8_1","unstructured":"IEC. 2009. IEC 62443 Part 2-1: Establishing an IACS security program."},{"key":"e_1_3_2_1_9_1","unstructured":"IEC. 2013. IEC 62443 Part 3-3: System security requirements and security levels."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/IEEESTD.2018.8423794"},{"key":"e_1_3_2_1_11_1","unstructured":"ISO\/IEC. 2024. Internet of Things (IoT) \u2014 Generic trust anchor application programming interface for industrial IoT devices. (ISO\/IEC TS 30168:2024 ed.)."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"crossref","unstructured":"M. Jones et al. 2015. JSON Web Signature (JWS). RFC 7515. IETF. http:\/\/tools.ietf.org\/rfc\/rfc7515.txt.","DOI":"10.17487\/RFC7515"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"crossref","unstructured":"F. Kohnh\u00e4user et al. 2021. On the Security of IIoT Deployments: An Investigation of Secure Provisioning Solutions for OPC UA. IEEE access 9.","DOI":"10.1109\/ACCESS.2021.3096062"},{"key":"e_1_3_2_1_14_1","volume-title":"https:\/\/openxpki.readthedocs.io\/en\/latest\/","author":"Project XPKI","year":"2019","unstructured":"OpenXPKI Project. 2019. OpenXPKI 3.1.1 Documentation. (2019). https:\/\/openxpki.readthedocs.io\/en\/latest\/."},{"key":"e_1_3_2_1_15_1","unstructured":"P. Polak. 2018. Security Architecture for the Internet of Things (IoT) in Commercial Buildings. Fairhair Alliance White Paper. https:\/\/openconnectivity.org\/wp-content\/uploads\/2019\/11\/fairhair_security_wp_march-2018.pdf."},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"crossref","unstructured":"M. Pritikin et al. 2021. Bootstrapping Remote Secure Key Infrastructure (BRSKI). RFC 8995. IETF. http:\/\/tools.ietf.org\/rfc\/rfc8995.txt.","DOI":"10.17487\/RFC8995"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"crossref","unstructured":"M. Pritikin et al. 2013. Enrollment over Secure Transport. RFC 7030. IETF. http:\/\/tools.ietf.org\/rfc\/rfc7030.txt.","DOI":"10.17487\/rfc7030"},{"key":"e_1_3_2_1_18_1","unstructured":"M. Richardson. 2019. Operational Considerations for Manufacturer Authorized Signing Authority. Internet Draft. IETF. https:\/\/datatracker.ietf.org\/doc\/id\/draft-richardson-anima-masa-considerations-02.html."},{"key":"e_1_3_2_1_19_1","unstructured":"M. Richardson et al. 2022. Constrained BRSKI. Internet Draft. IETF. https:\/\/www.ietf.org\/id\/draft-ietf-anima-constrained-voucher-18.html."},{"key":"e_1_3_2_1_20_1","unstructured":"M. Richardson et al. 2023. Minerva Fountain Join Registrar\/Coordinator. GitHub repository. https:\/\/github.com\/AnimaGUS-minerva\/fountain."},{"key":"e_1_3_2_1_21_1","unstructured":"M. Richardson et al. 2023. Minerva Highway MASA. GitHub repository. https:\/\/github.com\/AnimaGUS-minerva\/highway."},{"key":"e_1_3_2_1_22_1","unstructured":"M. Richardson et al. 2024. Minerva Reach Simulated Pledge. GitHub repository. https:\/\/github.com\/AnimaGUS-minerva\/reach."},{"key":"e_1_3_2_1_23_1","volume-title":"Wireless Congress: Systems & Applications.","author":"R\u00fcst A.","year":"2018","unstructured":"A. R\u00fcst et al. 2018. Authenticating wireless nodes in building automation: challenges and approaches. In Wireless Congress: Systems & Applications."},{"key":"e_1_3_2_1_24_1","unstructured":"Sandelman Software Works. 2017. About the Minerva Project. (2017). https:\/\/minerva.sandelman.ca\/info\/."},{"key":"e_1_3_2_1_25_1","unstructured":"Sandelman Software Works. 2022. Minerva Fountain MASA R&D configuration - setup database and run examples for Fountain. (2022). https:\/\/minerva.sandelman.ca\/openssl\/2022\/06\/12\/configuring-fountain-development.html."},{"key":"e_1_3_2_1_26_1","unstructured":"Sandelman Software Works. 2022. Minerva Highway MASA and Fountain JRC local configuration use - compiling patched OpenSSL for local use. (2022). https:\/\/minerva.sandelman.ca\/openssl\/2022\/06\/09\/building-local-minerva.html."},{"key":"e_1_3_2_1_27_1","unstructured":"Sandelman Software Works. 2022. Minerva Highway MASA R&D configuration - setup database and run examples for Highway. (2022). https:\/\/minerva.sandelman.ca\/openssl\/2022\/06\/10\/configuring-highway-development.html."},{"key":"e_1_3_2_1_28_1","volume-title":"USA","author":"Singh M.","year":"2018","unstructured":"M. Singh et al. 2018. Device Provisioning Protocol Specification, Version 1.1. Austin, TX, USA, (2018). https:\/\/www.wi-fi.org\/downloads-public\/Device_Provisioning_Protocol_Specification_v1.1_1.pdf."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"crossref","unstructured":"M. Singh et al. 2020. Formal Verification of Bootstrapping Remote Secure Key Infrastructures (BRSKI) Protocol Using AVISPA. (2020). https:\/\/nvlpubs.nist.gov\/nistpubs\/TechnicalNotes\/NIST.TN.2123.pdf.","DOI":"10.6028\/NIST.TN.2123"},{"key":"e_1_3_2_1_30_1","volume-title":"v. d. Stok et al","author":"P.","year":"2022","unstructured":"P. v. d. Stok et al. 2022. EST-coaps: Enrollment over Secure Transport with the Secure Constrained Application Protocol. RFC 9148. IETF. http:\/\/tools.ietf.org\/rfc\/rfc9148.txt."},{"key":"e_1_3_2_1_31_1","unstructured":"tpm2-software community. 2024. OSS implementation of the TCG TPM2 Software Stack. (2024). https:\/\/github.com\/tpm2-software\/tpm2-tss\/tree\/master."},{"key":"e_1_3_2_1_32_1","unstructured":"tpm2-software community. 2024. Trusted Platform Module (TPM2.0) tools. (2024). https:\/\/github.com\/tpm2-software\/tpm2-tools\/tree\/master."},{"key":"e_1_3_2_1_33_1","unstructured":"D. von Oheimb et al. 2022. BRSKI-AE: Alternative Enrollment Protocols in BRSKI. Internet Draft. IETF. https:\/\/www.ietf.org\/archive\/id\/draft-ietf-anima-brski-ae-02.html."},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"crossref","unstructured":"K. Watsen et al. 2018. A Voucher Artifact for Bootstrapping Protocols. RFC 8366. IETF. http:\/\/tools.ietf.org\/rfc\/rfc8366.txt.","DOI":"10.17487\/RFC8366"},{"key":"e_1_3_2_1_35_1","doi-asserted-by":"crossref","unstructured":"K. Watsen et al. 2019. Secure Zero Touch Provisioning (SZTP). RFC 8572. IETF. http:\/\/tools.ietf.org\/rfc\/rfc8572.txt.","DOI":"10.17487\/RFC8572"},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.31585\/jbba-4-1-(5)2021"},{"key":"e_1_3_2_1_37_1","unstructured":"T. Werner et al. 2022. BRSKI with Pledge in Responder Mode (BRSKI-PRM). Internet Draft. IETF. https:\/\/www.ietf.org\/archive\/id\/draft-ietf-anima-brski-prm-04.html."},{"key":"e_1_3_2_1_38_1","unstructured":"T. Werner et al. 2022. JWS signed Voucher Artifacts for Bootstrapping Protocols. Internet Draft. IETF. https:\/\/www.ietf.org\/archive\/id\/draft-ietf-anima-jws-voucher-04.html."}],"event":{"name":"SAC '25: 40th ACM\/SIGAPP Symposium on Applied Computing","sponsor":["SIGAPP ACM Special Interest Group on Applied Computing"],"location":"Catania International Airport Catania Italy","acronym":"SAC '25"},"container-title":["Proceedings of the 40th ACM\/SIGAPP Symposium on Applied Computing"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3672608.3707707","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3672608.3707707","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T00:06:14Z","timestamp":1750291574000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3672608.3707707"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,3,31]]},"references-count":38,"alternative-id":["10.1145\/3672608.3707707","10.1145\/3672608"],"URL":"https:\/\/doi.org\/10.1145\/3672608.3707707","relation":{},"subject":[],"published":{"date-parts":[[2025,3,31]]},"assertion":[{"value":"2025-05-14","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}