PlantProtect: Asset-based cyberattack prevention and detection for the process industry

The research project "PlantProtect: Asset-based cyberattack prevention and detection for the process industry" addresses the pressing challenges of cybersecurity in industrial production plants. As digitalization progresses, industrial plants are becoming increasingly complex and vulnerable to cyberattacks, with serious financial and security consequences. Existing solutions, such as intrusion detection systems or OT asset management systems, are often either insufficiently integrated or deliver limited results due to high false alarm rates. The lack of comprehensive security solutions leads to major risks, particularly in the process industry, which includes chemical, pharmaceutical and food production.
 

The project aims to develop an innovative, hybrid security system that combines active scanning methods with advanced anomaly detection methods. This enables a precise security assessment at both device and process level. The solution includes the creation of a central data lake that integrates information from different production systems. This enables a holistic security analysis that supports both preventive measures and a rapid response to cyber attacks. Real-time analysis of sensor data enables the identification of attacks, while long-term maintenance data improves the accuracy and contextualization of results.

M.Sc. Tim Redding

July 2025 - April 2027

1. Felix Lattmann, Axel Dürrbaum, Tim Redding, Andreas Kroll: Detection of false data injection attacks to process plants: experimental evaluation and consequences of smart sensors and communication, ECC 2026, Reykjavík, Iceland, submitted

SANCTUARY Systems GmbH

State of Hesse LOEWE 3
_{HA project no.: 1925/25-34}