| Industrial control system (ICS) is a general term used to describe the integration of hardware and software with network connectivity in order to support a country's critical infrastructure. ICS technologies include, but are not limited to, supervisory control and data acquisition (SCADA) and distributed control systems (DCS), industrial automation and control systems (IACS), programmable logic controllers (PLCs), programmable automation controllers (PACs), remote terminal units (RTUs), control servers, intelligent electronic devices (IEDs) and sensors. Historically, most machinery and engineering components used in manufacturing and the operation of power plants, water and wastewater plants, transport industries and other critical infrastructure were dumb -- and those that were computerized typically used proprietary protocols. The networks they belonged to were air-gapped and protected from the outside world. Security concerns about industrial control systems have changed over the years and components of today's ICSs are often connected directly or indirectly to the internet. In the United States, the Department of Homeland Security (DHS) has offered these recommendations for protecting industrial control systems: - Require multi-factor authentication and enforce the principle of least privilege (POLP).
- Use application approval listings to protect infrastructure from potentially harmful programming.
- Implement configuration management and patch management controls to keep control systems secure.
- Reduce attack surface areas by segmenting networks into logical parts and restricting host-to-host communication paths.
- Monitor traffic within the control network and on ICS perimeters.
- Require remote access to be operator controlled and time limited.
- Analyze access logs and verify all anomalies.
- Ensure the restore includes golden records so systems can be rolled back to last known good state.
Continue reading about industrial control system security... | 
Posts
No comments:
Post a Comment