This article introduces a reference model for control and automation systems based on object-role modeling, and develops fundamental concepts for security based on the analysis of the model.
Modern infrastructure automation systems are threatened by cyber attack. Their higher visibility in recent years and the increasing use of modern information technology (IT) components contribute to increased security risk. Modeling the relationships among the elements of an automation system will clarify the categories of data and functionality in the system. Then the model can be analyzed for general security issues, which may in turn form the basis to develop an adequate profile of technical security controls.