Trusted by over 50 clients
With Anti-Tamper Radio
to Cyber-Physical Security (CPS)
Advancing digitalisation and increasing connectivity are equally associated with decreasing isolation of devices, as vividly demonstrated by IIoT, Smart Grid, and 5G. These architectural changes expose previously protected assets and significantly increase their attack surface by adding a new class of offsite assets. Holistic cybersecurity and resilience approaches therefore have a key role to play in establishing trust in a wide range of operational asset environments.
PHYSEC SEAL®, with its unique technology, creates the necessary trust in insecure environments and enables digitalisation from a Cyber-Physical Security (CPS) perspective.
Safer value creation
The strategy of prevention alone is increasingly no longer suitable for countering future attacks. "Assume the breach" is the paradigm that should be pursued in view of the steadily increasing numbers of attacks and their growing complexity. The associated extension of the prevention strategy to include detection is the next logical step. Together with the exposed physical location, secure devices must be able to detect attacks that take place on-site.
The requirement for physical security and detection capability of attacks is already an integral part of best practices as well as countless recommendations. For example, in chapters 7.4 and 7.5 of ISO 27002:2022, cyber-physical security is an integral part of the ISMS controls. The analysis company Gartner also confirms: CPS is positioning itself as one of the most important technology trends in the entire IoT ecosystem.
Physical security
in the focus of the legislator
With the implementation of the CER Directive, the legislator is now also focusing on the overall security of companies. For the first time, the entire system of critical infrastructures is being considered. The existing requirements are thus supplemented by mandatory protection standards for physical security; this includes, for example, the use of detection systems. It must also be possible to detect disruptions to the overall system in order to enable the identification of possible vulnerabilities in the physical protection of critical infrastructures.
| This is how the KRITIS umbrella law (KRITIS-Dachgesetz) was recently supplemented with mandatory protective measures for physical security. |
Wide range of applications
Today, there are already numerous examples of digital systems where physical integrity is a core component of the security concept: payment and withdrawal terminals in the financial sector, control units in increasingly autonomous cars, machine control for hyperautomated plants, decentralized energy infrastructure components for e-mobility and renewable energies, telecommunications components and edge servers for an ever denser and more powerful mobile network, or defence systems.
In collaboration with Ruhr University Bochum, PHYSEC GmbH has developed a system to protect ATMs and similar security-relevant devices from manipulation in a cost-effective and reliable manner. The report on the success story is available on the BMWK website or by clicking on the button.
Central Innovation Program for Medium-Sized Businesses (ZIM)
Technology
The anti-tamper radio modules use electromagnetic wave propagation to create a fingerprint of the three-dimensional environment, similar to a radar. Changes in the operating environment can thus be detected and evaluated in the cloud via machine learning models. Transmission takes place via an existing network connection or via LPWAN, of course E2E encrypted according to the cryptographic specifications of the BSI.
Learn more about our services
Built for Utilities
PHYSEC has a wealth of experience in securing assets for utility companies, effectively addressing the industry's needs and challenges.
Built for OEMs
Thanks to our great expertise in embedded security, OEM companies can shift their attention towards their use cases.
IoTree®
IoTree® is a best-in-class software that enables companies to collect and analyze real-world data, allowing for process optimization.
