In another instance, a user can attempt to implement an incorrectly designated (e.g., mismarked) element within the process control system 200. For example, the mismarked element can have a physical indicia marked upon it which falsely indicates that the element is associated with the same OEM as the OEM of the other elements of the process control system 200. In such instances, the authentication process implemented by the process control system 200 can cause the user to be alerted that the element is counterfeit. This process can also promote improved security for the process control system 200, since counterfeit elements are often a vehicle by which malicious software can be introduced into the process control system 200. In embodiments, the authentication process provides a secure air gap for the process control system 200, ensuring that the secure industrial control system is physically isolated from insecure networks.

In implementations, the secure process control system 200 includes a key management entity 224. The key management entity 224 can be configured for managing cryptographic keys (e.g., encryption keys) in a cryptosystem. This managing of cryptographic keys (e.g., key management) can include the generation, exchange, storage, use, and/or replacement of the keys. For example, the key management entity 224 is configured to serve as a security credentials source, generating unique security credentials (e.g., public security credentials, secret security credentials) for the elements of the process control system 200. Key management pertains to keys at the user and/or system level (e.g., either between users or systems).