Safety, Security, Reliability, Interoperability

– Keys for successful adoption of scalable

integrated robots solution

APAC Innovation Summit 2016 Series – RoboticsJune 2016, Hong Kong

Dr Andreas HAUSEREdson Hiroshi AOKI, PhDArtem VOROBIEV, PhD

TÜV SÜD Hong Kong Slide 116-05-31

Outline

1Robots on their way, the hype, customer concerns

2 Safety and Security – inherent link

3 Product/Component versus System

4Solution path, Comprehensive Approach

5 Key Take Aways

TÜV SÜD Hong Kong Slide 216-05-31

Reality – Robots are coming

• Digitisation enabled by IoT technologies, Robotics and Data Analytics are impacting all sectors globally and disrupts existing business models

• Connectivity Robotics, Big Data are changing our whole society, both in business and private domains

• Productivity and efficiency are the key drivers for new services

• Companies are transforming their products, services, operating models and business strategies to address a connected, real-time and data-driven marketplace

• New challenges arise in terms of Safety, Security, Reliability, Performance and Interoperability

TÜV SÜD Hong Kong Slide 316-05-31

Ministry of Economics and Trade (METI). (2010). 2035nen ni muketa robotto sangyou no shourai shijou yosoku

(Market forecast of robot industry in 2035). Retrieved: http://www.meti.go.jp/press/20100423003/20100423003-2.pdf

But let‘s not get fooled by the hype

TÜV SÜD Hong Kong Slide 416-05-31

Be realistic about the market

demand and readiness of

consumers, owners and operators

Challenges

• Safety (≡ Availability)

• Security incl data privacy

• Reliability

• Performance

• Interoperability

TÜV SÜD Hong Kong Slide 516-05-31

https://infocus.emc.com/dave_matson/lets-get-predictive-about-service-excellence/

Safety & Security – New Challenges for Robots

Embedded systems are key components in smart, automated installations

TÜV SÜD Hong Kong Slide 616-05-31

Communication

Ability of different systems

to work together

Safety

Reliability for the environment

(user, environment,

functionality)

Cyber Security

System security (Security

for Safety)

Embedded systems are widely used for

measuring, regulating and controlling

of all types of devices and systems.

As information exchange between these

systems (networks) increases, new

issues of security and availability

arise not only for the individual device

but for the whole system.

Need for conformance testing

of the single component as well as in

testing communication between

devices (interoperability) up to the safety

concept of the overall system (Security

for Safety).

Cyber Security – Compromising Threat

Hacking threatens basically all connected devices and systems

TÜV SÜD Hong Kong Slide 716-05-31

Hacking and

manipulating traffic

sensors

https://www.helpnetsecurity.com/2016/04/20/h

acking-manipulating-traffic-sensors/

Security Experts Hack

Teleoperated Surgical

Robot

https://www.technologyreview.com/s/537001/security-

experts-hack-teleoperated-surgical-robot/

Confused drone

http://www.bbc.com/future/story/20140206-can-

drones-be-hacked

Safety and Security are inherently connected

In connected systems suddenly the weakest safety point becomes the weakest security point

TÜV SÜD Hong Kong Slide 816-05-31

Quanitfying the Safety & Security Risk

• Embedded systems are increasingly

used for minimizing risks to people and

the environment

• Safety functions must be effectively

protected against outside attacks

• Current market situation increasingly

calls for the combination of both aspects

Safety & Security

Increasing awareness to consider safety and security at the same time

T1

100 Mio.

10 Mio.

Safety Level (SIL)

Security

Level (SL)

1

2

3

4

4 3 2 1

SIL will be defined through the safety analysis for the

Safety Implemented System (SIS)

SIL=3 requires SL>=3TÜV SÜD Hong Kong Slide 916-05-31

Functional Safety – Key Safety Approach

TÜV SÜD Hong Kong Slide 1016-05-31

Place and maintain a process in a safe state

Safe sensor networks as a baseline for smart industry

TÜV SÜD Hong Kong Slide 1116-05-31

Product / Component Level

Safet and Security for complex components is already a challenge!

TÜV SÜD Hong Kong Slide 1216-05-31

Safety rotary

encoderSafety PLC Robot

Type testing acc.IEC

61508 and ISO 13849

Type testing

acc. IEC 61508

Type testing

acc. ISO 10218

System Level – A Whole New Level

Example of an Autonomous Vehicle

• High complexity through

connectivity

• Functional Safety concept

still valid, but challenging

with „analogue“ approach

• Security and Safety level

determined by weakest

point in system

• Existing tools and

methods not sufficient

TÜV SÜD Hong Kong Slide 1316-05-31

Da

sh

bo

ard

Ga

tew

ay

NavigationEntertainment /

Telematics

Engine

Control

Gearbox

Control

Brake

Control

Door Lock

Control

HVAC

Control

Light

Control

PSI5

Powertrain, …

Head Unit

Ethernet

Diagnostic Systems

Ethernet

On-board

Off-board

Off-board

On-board3G

4G

5G

C2C & C2E

OBD2

Kein physikalischer Zugang notwendig

Angriff skaliertPhysikalischer Zugang notwendig

Angriff skaliert nicht

Standards Landscape for Robots and Integration

TÜV SÜD Hong Kong Slide 1416-05-31

• Safety: Published standards (testing)– ISO 10218-1:2011 - Safety requirements for industrial robots -- Part 1: Robots– ISO 10218-2:2011 - Safety requirements for industrial robots -- Part 2: Robot systems and integration– ISO 13482:2014 - Safety requirements for personal care robots– ISO/TS 15066:2016 - Collaborative robots

• Safety: Standards under development (testing and advisory)– ISO/NP TR 20218-1 - Safety requirements for industrial robots -- Part 1: Industrial robot system end of arm tooling (end-effector)– IEC/NP 80601-2-77 - Part 2-77: Particular requirements for the basic safety and essential performance of medical robots for surgery– IEC/NP 80601-2-78 - Part 2-78: Particular requirements for the basic safety and essential performance of medical robots for

rehabilitation, compensation or alleviation of disease, injury or disability

• Security– OWASP testing guide– NIST 800-115 – Information Systems Security Assessment Framework (ISSAF) – Open Source Security Testing Methodology Manual (“OSSTMM”)

• EMC– IEC 61000-6-2 & IEC 61000-6-4, etc.

• RF– ETSI EN 300 328– Bluetooth, 2.4G Wi-Fi, 5G Wi-Fi, etc.

Testing / Qualification Practice Needs Upgrading

Current testing methodologies and practice not sufficient to ensure Safety & Security

TÜV SÜD Hong Kong Slide 1516-05-31

Da

sh

bo

ard

Ga

tew

ay

NavigationEntertainment /

Telematics

Engine

Control

Gearbox

Control

Brake

Control

Door Lock

Control

HVAC

Control

Light

Control

PSI5

Powertrain, …

Head Unit

Ethernet

Diagnostic Systems

Ethernet

O

f

f

-

b

o

a

r

d

O

n

-

b

o

a

r

d

3G4G

5G

C2C & C2E

OBD2

Testing / Qualification Practice Needs Upgrading

• Integration of Safety and Security

through development cycle

• Apply standards and best practices

• Deploy software based testing tools

• Proper testing by manufacturer and

third party

• Context / integration: interaction to be

tested

TÜV SÜD Hong Kong Slide 1616-05-31

Da

sh

bo

ard

Ga

tew

ay

NavigationEntertainment /

Telematics

Engine

Control

Gearbox

Control

Brake

Control

Door Lock

Control

HVAC

Control

Light

Control

PSI5

Powertrain, …

Head Unit

Ethernet

Diagnostic Systems

Ethernet

O

f

f

-

b

o

a

r

d

O

n

-

b

o

a

r

d

3G4G

5G

C2C & C2E

OBD2

Functional Safety and Security during Product Development Process

TÜV SÜD Hong Kong Slide 1716-05-31

16-05-31

Product

Product Development

Definition

Analysis

Concept & Measures

Design

Implementation

Verification & Validation

Release

Functional Safety

Safety assessment

Hazard analysis &

Risk assessment

Safety goals

Measures

Security

Security assessment

Security risks analysis

Security objectives

Measures

Functional Safety & Security - basis of a successful Business Case

selling success

security

quality

safety

…

The evaluation of the

conformity with

relevant standards

mitigates your

business risk!

TÜV SÜD Hong Kong Slide 1816-05-31

Comprehensive Safety & Security Cycle

TÜV SÜD Hong Kong Slide 1916-05-31

Robot Safety

Functional Safety

(Components and System)

Industrial IT Security

Enterprise IT Security

Generic Functional

Safety

Tool Evaluation & Certification

Key Take Aways

• Safety and Security are inherently linked through connectivity

• Standards and best practice do exist, but need to be deployed, upgraded and extended for system approach

• Testing tools around safety and security need to be developed to ensure Safety & Security and hence the acceptance of robotics and IoT

• Sensor systems need „special“ attention due to its ubiquitous deployment

• Risk reduction by early adoption of safety &security checks along product development cycle

• Comprehensive testing by manufacturer and third party required

TÜV SÜD Hong Kong Slide 2016-05-31

Honeynet

Autonomous Driving

Software based testing for Smart Hospital and Transport

Drone Qualification

Product / Component Level

TÜV SÜD Hong Kong Slide 21

16

Thank You for Your Attention

Dr. Andreas Hauser

Director, CoE Digital Service

TÜV SÜD, Singapore

andreas.hauser@tuv-sud.sg

Contact us:

Dr. Ing. Robert PutoVice President – Greater China

PS Commercial Products

Robert.puto@tuv-sud.cn