Recommended Practice: Improving Industrial Control Systems Cybersecurity with Defense-In-Depth Strategies
U.S. Department of Homeland Security
- 出版商: CreateSpace Independ
- 出版日期: 2014-09-21
- 售價: $940
- 貴賓價: 9.5 折 $893
- 語言: 英文
- 頁數: 38
- 裝訂: Paperback
- ISBN: 1502446197
- ISBN-13: 9781502446190
-
相關分類:
控制系統 Control-systems、資訊安全
海外代購書籍(需單獨結帳)
相關主題
商品描述
Industrial control systems are an integral part of critical infrastructure, helping facilitate operations in vital sectors such as electricity, oil and gas, water, transportation, and chemical. A growing issue with cybersecurity and its impact on industrial control systems have highlighted some fundamental risks to critical infrastructures. To address cybersecurity issues for industrial control systems, a clear understanding of the security challenges and specific defensive countermeasures is required. A holistic approach, one that uses specific countermeasures to create an aggregated security posture, can help defend against cybersecurity threats and vulnerabilities that affect an industrial control system. This approach, often referred to as “defense-in-depth,” can be applied to industrial control systems and can provide for a flexible and useable framework for improving cybersecurity defenses. Concerns in regard to cybersecurity and control systems are related to both the legacy nature of some of the systems as well as the growing trend to connect industrial control systems to other networks. These concerns have lead to a number of identified vulnerabilities and have introduced new categories of threats that have not been seen before in the industrial control systems domain. Many of the legacy systems may not have appropriate security capabilities that can defend against modern day threats, and the requirements for availability can preclude using contemporary cybersecurity solutions. An industrial control system’s connectivity to a corporate, vendor, or peer network can exacerbate this problem. This book provides insight into some of the more prominent cyber risk issues and presents them in the context of industrial control systems. It provides commentary on how mitigations strategies can be developed for specific problems and provides direction on how to create a defense-in-depth security program for control system environments. The goal is to provide guidance regarding cyber mitigation strategies and how to apply them specifically to an industrial control systems environment.
商品描述(中文翻譯)
工業控制系統是關鍵基礎設施的重要組成部分,有助於促進電力、石油和天然氣、水、交通和化學等重要行業的運營。關於網絡安全及其對工業控制系統的影響的問題日益突出,凸顯了對關鍵基礎設施的一些基本風險。為了解決工業控制系統的網絡安全問題,需要清楚了解安全挑戰和具體的防禦對策。一種全面的方法,即使用特定的對策來創建綜合的安全姿態,可以幫助防禦影響工業控制系統的網絡安全威脅和漏洞。這種方法通常被稱為“深度防禦”,可以應用於工業控制系統,並為改善網絡安全防禦提供靈活和可用的框架。
對於網絡安全和控制系統的擔憂與一些系統的遺留性質以及將工業控制系統連接到其他網絡的趨勢有關。這些擔憂已經導致了許多已知的漏洞,並引入了在工業控制系統領域中以前未見過的新威脅類別。許多遺留系統可能沒有適當的安全功能來抵禦現代威脅,而可用性要求可能會阻礙使用當代網絡安全解決方案。工業控制系統與企業、供應商或同行網絡的連接可能會加劇這個問題。
本書提供了對工業控制系統中一些突出的網絡風險問題的見解,並將其放在工業控制系統的背景下進行討論。它對如何針對具體問題制定緩解策略提供了評論,並指導如何為控制系統環境創建深度防禦安全計劃。目標是提供有關網絡緩解策略以及如何將其具體應用於工業控制系統環境的指導。