	US 12,407,527 B2
	Host, method and system for the securely executing control applications
Nils Baur, Erlangen (DE); Stephan Höme, Schwabach (DE); and Harald Albrecht, Nuremberg (DE)
Assigned to Siemens Aktiengesellschaft, Munich (DE)
Filed by Siemens Aktiengesellschaft, Munich (DE)
Filed on Mar. 29, 2023, as Appl. No. 18/127,756.
Claims priority of application No. 22165876 (EP), filed on Mar. 31, 2022.
Prior Publication US 2023/0318854 A1, Oct. 5, 2023
Int. Cl. H04L 9/40 (2022.01); G06F 21/44 (2013.01); H04L 9/32 (2006.01)

CPC H04L 9/3268 (2013.01) [G06F 21/44 (2013.01); H04L 9/3247 (2013.01)]

15 Claims

1. A method for securely executing control applications provided via software-implemented containers which are each loadable into a container runtime environment set up on a host and are executable in the host, the method comprising:

calculating, by a check component of a respective host, a respective check identifier via host-specific features and via features of a respective control application;

communicating the respective check identifier and an initial application certificate of the control application to a registration component;

verifying, by the registration component, the respective check identifier and the initial application certificate and, in cases of a positive verification result, creating a device configuration certificate and an application instance certificate and communicating said created device configuration certificate and said created application instance certificate to the host;

authorizing linkage of the created application instance certificate with the respective control application via the created device configuration certificate; and

authorizing execution of the container providing the respective control application on the host by the created application instance certificate.