Fraunhofer-Institut für Produktionsanlagen und Konstruktionstechnik IPK

Filters
Reset filters

Settings
Now showing 1 - 10 of 41
  • Publication
    Comparison of Ethereum Smart Contract Analysis and Verification Methods
    ( 2024)
    Happersberger, Vincent
    ;
    Jäkel, Frank-Walter
    ;
    Knothe, Thomas
    ;
    Pignolet, Yvonne Anne
    ;
    Schmid, Stefan
    Ethereum allows to publish and use applications known as smart contracts on its public network. Smart contracts can be costly for users if erroneous. Various security vulnerabilities have occurred in the past and have been exploited causing the loss of billions of dollars. Therefore, it is in the developer’s interest to publish smart contracts that serve their intended purpose only. In this work, we study different approaches to verify if Ethereum smart contracts behave as intended and how to detect possible vulnerabilities. To this end, we compare and evaluate, different formal verification tools and tools to automatically detect vulnerabilities. Our empirical comparison of 140 smart contracts with known vulnerabilities shows that different tools vary in their success to identify issues with smart contracts. In general, we find that automated analysis tools often miss vulnerabilities, while formal verifiers based on model checking with Hoare-style source code annotations require high effort and knowledge to discover possible weaknesses. Specifically, some vulnerabilities (e.g., related to bad randomness) are not detected by any of the tools. Formal verifiers perform better than automated analysis tools as they detect more vulnerabilities and are more reliable. One of the automated analysis tools was able to find only three out of 16 Access Control vulnerabilities. On the contrary, formal verifiers have a hundred percent detection rate for selected tests. As a case study with a smart contract without previously known vulnerabilities and for a more in-depth evaluation, we examine a smart contract using a two-phase commit protocol mechanism which is key in many smart contract applications. We use the presented tools to analyze and verify the contract. Thereby we come across different important patterns to detect vulnerabilities e.g. with respect to re-entrancy, and how to annotate a contract to prove that intended the restriction and requirements hold at any time.
  • Publication
    Integrated Model-Based Configuration of Production Systems - Reflection of ISO 19440 and MDA and MDI
    ( 2023)
    Knothe, Thomas
    ;
    Torka, Jan
    ;
    Gering, Patrick
    ;
    Jäkel, Frank-Walter
    Rising business competition leads to complexity because of increased number of product variants and customer-specific processes. Model-based approaches seem to be suitable for handling this kind of flexibility in networked production environments. In this paper, current approaches to the configuration of heterogeneous systems based on standard models are reflected, and an integrated model-based configuration approach using formalized modules is proposed and its application demonstrated.
  • Publication
    Decentralized, autonomous setup and access to data of independent partners in a hyper connected ecosystem
    ( 2023)
    Jäkel, Frank-Walter
    ;
    Eyser, Eckart
    ;
    Schwengber-Walter, Robert
    ;
    Harms, Robert
    ;
    Grunert, Kai
    The paper express results about a project on hyper-connected ecosystem of industrial networks and especially the services infrastructure developed during the project. A specific aspect is the concept and related feasibility study to establish an autonomous and distributed data management using the web presents of potential network partners. The question of the approach was “How to allow the accessibility of required information on demand everywhere and independent from a specific platform or cloud infrastructure for every partner or company within a business network”. It starts with the accessibility of information as a major asset for decision making. During the project, industry partners insist on reducing the preparation effort for participation in the partnership and therefore data provision had to be supported with services. The paper provides insides of the work done, the findings and results. The briefly described demonstrator illustrates the usage of the service prototypes and early application cases.
  • Publication
    Challenges and Opportunities of Enterprises Network Design and Services
    ( 2022)
    Jäkel, Frank-Walter
    Enterprise networks in terms of business partners cooperating to achieve common business objectives are challenged by communication and technical conditions. A usual way to manage these challenges is to look from a single enterprise perspective. If it is a large organisation it tries to force the partners to follow its strategy. In terms of small or medium size companies they try to follow standards or the requests of larger organisations. However, the investment to improve the business is located within single partners of the network. This raises the question of which technology and standard will be suitable in the future. The related technology changes can require high investments. The question arises which technology, standard, IT system, architecture, model should be used. The paper will discuss the use of enterprise models together with open source utilities to reduce the risk of loss of investments. Starting with the identification of requirements in the form of as-is models, the development of conceptual to-be models, the enrichment to implementation models and finally a realisation model that guides the implementation. In terms of a vision the paper will especially focus on the options for the software implementation and reduction of costs of change.
  • Publication
    The Use of Digital Twins to Overcome Semantic Barriers in Hyperconnected Ecosystems for Industry
    ( 2022)
    Jäkel, Frank-Walter
    ;
    Gering, Patrick
    ;
    Knothe, Thomas
    To establish business networks a match between businesses demands and potential partner information is required. Publicly available information on the Internet about companies, products and services usually don’t follow a common standard. The concept of a digital twin could be used to organise the different information and, in the future, to harmonise the way company data is made available on the web. Every company usually has a web presence, related documents, web pages and a trace on the web, which can be used for an initial structure of the digital twin. Hereby, first services for the correlations between partner companies and requirements can be designed. But it requires the management of legal aspects e.g. the access of bots to the public available information. The paper provides initial ideas and feasibility checks and it propose an evolution of the current heterogeneous content and structure of the data into a well-structured digital twin including content related ontologies to describe the company characteristics.
  • Publication
    Service Modelling Language Applied for Hyper Connected Ecosystem
    ( 2021)
    Jäkel, Frank-Walter
    ;
    Zelm, Martin
    ;
    Chen, David
    The paper elaborates the application of service modelling language for hyper-connected ecosystems. A specific target is to demonstrate the use of ISO 19440 standard together with a set of specialized service modelling constructs developed in the scope of CEN TC310/WG1. It presents a conceptual use case to model a 'Matching Service' and the service system required to provide the Matching Service in a service ecosystem. The purpose of this study is to test and demonstrate the use of a service modelling language related to ISO19440:2020 to describe in a formal and systematic way a service and its needed service system at business level for communication and validation. The paper first presents the motivation of the study and recalls related works. The service modelling language and the background of this work are discussed. The Matching service use case will be presented in detail and the concluding summary as well as some outlooks are given at the end of the paper.
  • Publication
    Hyperconnected Ecosystems für industrielle Netzwerke
    ( 2021)
    Jäkel, Frank-Walter
    ;
    Gering, Patrick
    ;
    Knothe, Thomas
    Das Hyperconnected Ecosystems für industrielle Netzwerke wird definiert als die Vernetzung aller relevanten Informationen und deren Erreichbarkeit jederzeit und von überall (hyperconnected). Barrieren zwischen Netzwerkpartnern bzgl. Datenbereitstellung und Zugriff werden reduziert und an aktuelle Anforderungen ausgerichtet. Die Evolution des Netzwerkes wird durch dessen dynamische Anpassbarkeit und flexible Einbindung von Diensten ermöglicht. Schlussendlich soll jede erforderliche Information an jedem Ort sofort in einer bearbeitbaren Form und möglichst ohne Aufwand verfügbar sein. Die Metapher des sozialen Netzwerks, in denen sich Partner finden und nach Bedarf Daten und Leistungen austauschen, dient als Basis für die Strukturen im Netzwerk. Dabei müssen industrielle Anforderungen nach Sicherheit, Souveränität und Transparenz integriert werden. Der Beitrag beschreibt die Vision eines Hyperconnected Ecosystem für industrielle Netzwerke und erste Ansätze zu dessen Umsetzung.
  • Publication
    Integrated enterprise modelling to achieve interoperability
    ( 2020)
    Jäkel, Frank-Walter
    The paper targets the use of an integrated enterprise modelling approach to analyse and overcome the gab of understanding of interoperability challenges across and between enterprises. It discusses the use of enterprise modelling to support the decision about new technologies identifying benefits in relation to the investment. This includes the potentials of the enterprise models to derive directly enterprise application services such as integrated management support or shop floor IT execution management. The goal is a review of these approaches in the discussion within the workshop âA Future Vision of Flexible Configurable Manufacturing in a Digitised Worldâ.
  • Publication
    OPC-UA based IIoT and CPS interoperability validation
    ( 2020)
    Jäkel, Frank-Walter
    The rise of Cyber Physical Systems (CPS), Industry 4.0 and Industrial Internet of Things (IIoT) leads to the connection of production facilities via intranet as well as to the Internet. Machines are now IoT objects. This enables new processes in terms of digitalization, but also challenges in terms of security, performance, robustness and interoperability. The related changes in technologies and communication opportunities is also effecting the enterprise organization. The paper describes test cases, application scenarios and tools for ensuring compliance between enterprise IT infrastructure and industrial internet of things components using OPC-UA.