Providing regular software and security updates for machines, some of which are used for decades, poses major challenges for manufacturers of agricultural machinery, construction equipment, and municipal vehicles. But this is exactly what the (upcoming) EU cyber security regulations, such as the Cyber Resilience Act (CRA), require. STW offers hardware and software solutions that help OEMs master the associated challenges.
In 2027, the new EU Machinery Regulation (MVO) and the CRA, will come into force. Both directives require manufacturers of products with digital components to provide much stronger protection against digital manipulation and data theft. The directives also apply to mobile machinery with their complex control systems, telemetry and cloud connectivity, and hardware interfaces for onboard diagnostics. This puts considerable pressure on machine manufacturers to ensure that their software and hardware comply with the new directives by the deadline. Existing vehicle and system architectures have proven themselves over decades in some cases. Comprehensive adaptations and re-designs would be costly, and certified retrofit solutions are not available on the market.
Hardware and software for optimal cyber security
With its TCG series, STW offers OEMs robust connectivity gateways that meet the durability and robustness requirements of mobile machines and enable the implementation of cyber security-compliant systems. With powerful processors and a wide range of interfaces, from Ethernet to CAN, they can be easily integrated into existing automation structures. They support the 5G mobile communications standard, WiFi, and Bluetooth, and thus all common wireless communication channels, both for M2M and cloud communication. In terms of software, the freely programmable TCG modules enable fast and flexible application engineering thanks to Linux support and a variety of predefined libraries.
To meet cybersecurity requirements, the TCG series gateways can be equipped with the Basic IoT Bundle. With STW's Basic IoT Bundle, OEMs can immediately connect machine and process data to an industry-standard cloud service, use secure over-the-air updates, and manage devices and SSL certificate encryption.
This software package enables connection to the Amazon Web Services ecosystem. Alternatively, other generic or custom cloud solutions can be used, with parallel communication or cloud-to-cloud connections also possible. In addition, machines.cloud provides an out-of-the-box fleet management tool.
In addition to the use of cloud computing services, this approach enables secure updates that comply with cyber security standards. Remote analysis of automation components is also possible: machine manufacturers can always see which software and firmware is running on which device and maintain an overview even with complex systems.
Comprehensive support
STW offers machine manufacturers comprehensive support in integrating and ensuring cyber security compliance. The Field Application Engineering Team helps to ensure the smooth networking of existing automation structures with the TCG series connectivity gateways. The STW cyber security team also offers risk analyses (TARA), vulnerability scans, and penetration testing for existing or firmware in development, among other services. With expert consulting, OEMs can find the right cyber security concept for their machines and ensure compliance with CRA and MVO.
Interested designers and programmers can experience the newly developed TCG connectivity gateways and the comprehensive STW software and service solutions live at Agritechnica. STW will be exhibiting its portfolio for security-compliant automation of mobile machines from November 9-15 in Hanover at booth D12 in hall 17.
More information is also available here: https://www.stw-mobile-machines.com/en/products/cyber-security-over-the-air-update-bundle/