Recommended Practice: Improving Industrial Control Systems Cybersecurity with Defense-In-Depth Strategies
暫譯: 推薦實踐:透過深度防禦策略提升工業控制系統的網路安全性
U.S. Department of Homeland Security
- 出版商: CreateSpace Independ
- 出版日期: 2014-09-21
- 售價: $940
- 貴賓價: 9.5 折 $893
- 語言: 英文
- 頁數: 38
- 裝訂: Paperback
- ISBN: 1502446197
- ISBN-13: 9781502446190
-
相關分類:
控制系統 Control-systems、資訊安全
海外代購書籍(需單獨結帳)
相關主題
商品描述
Industrial control systems are an integral part of critical infrastructure, helping facilitate operations in vital sectors such as electricity, oil and gas, water, transportation, and chemical. A growing issue with cybersecurity and its impact on industrial control systems have highlighted some fundamental risks to critical infrastructures. To address cybersecurity issues for industrial control systems, a clear understanding of the security challenges and specific defensive countermeasures is required. A holistic approach, one that uses specific countermeasures to create an aggregated security posture, can help defend against cybersecurity threats and vulnerabilities that affect an industrial control system. This approach, often referred to as “defense-in-depth,” can be applied to industrial control systems and can provide for a flexible and useable framework for improving cybersecurity defenses. Concerns in regard to cybersecurity and control systems are related to both the legacy nature of some of the systems as well as the growing trend to connect industrial control systems to other networks. These concerns have lead to a number of identified vulnerabilities and have introduced new categories of threats that have not been seen before in the industrial control systems domain. Many of the legacy systems may not have appropriate security capabilities that can defend against modern day threats, and the requirements for availability can preclude using contemporary cybersecurity solutions. An industrial control system’s connectivity to a corporate, vendor, or peer network can exacerbate this problem. This book provides insight into some of the more prominent cyber risk issues and presents them in the context of industrial control systems. It provides commentary on how mitigations strategies can be developed for specific problems and provides direction on how to create a defense-in-depth security program for control system environments. The goal is to provide guidance regarding cyber mitigation strategies and how to apply them specifically to an industrial control systems environment.
商品描述(中文翻譯)
工業控制系統是關鍵基礎設施的重要組成部分,幫助促進電力、石油和天然氣、水、交通運輸及化學等重要領域的運作。隨著網路安全問題及其對工業控制系統的影響日益增加,突顯出對關鍵基礎設施的一些基本風險。為了解決工業控制系統的網路安全問題,需要清楚了解安全挑戰和具體的防禦對策。採取一種整體方法,即使用特定的對策來創建綜合的安全姿態,可以幫助防禦影響工業控制系統的網路安全威脅和漏洞。這種方法通常被稱為「深度防禦」,可以應用於工業控制系統,並提供一個靈活且可用的框架來改善網路安全防禦。
關於網路安全和控制系統的擔憂與某些系統的遺留性質以及將工業控制系統連接到其他網路的日益趨勢有關。這些擔憂導致了一些已識別的漏洞,並引入了在工業控制系統領域中前所未見的新類別威脅。許多遺留系統可能沒有適當的安全能力來防禦現代威脅,而可用性要求可能排除使用當代的網路安全解決方案。工業控制系統與企業、供應商或同行網路的連接可能會加劇這一問題。
本書提供了一些更突出的網路風險問題的見解,並將其置於工業控制系統的背景中。它對如何為特定問題開發緩解策略提供了評論,並指導如何為控制系統環境創建深度防禦安全計劃。目標是提供有關網路緩解策略的指導,以及如何將其具體應用於工業控制系統環境。
