NIST(800-82) Industrial Control system(ICS) Security

NIST(800-82) Industrial Control system(ICS) Security

What is NIST?

What you’ll learn

  • About ICS(Industrial Control System).
  • IT security vs ICS security.
  • ICS challenges and How to protect ICS?.
  • How to build secure ICS.

Course Content

  • Introduction –> 4 lectures • 38min.
  • ICS Security Program –> 2 lectures • 20min.
  • ICS Security Architecture –> 13 lectures • 1hr 56min.

NIST(800-82) Industrial Control system(ICS) Security

Requirements

  • N/A.

What is NIST?

  • NIST stands for The National Institute of Standards and Technology.
  • It is part of U.S. department of commerce and was founded in 1901.
  • NIST is one of the nation’s oldest physical science laboratories.
  • Congress established the agency to remove a major challenge to U.S. industrial competitiveness at the time—a second-rate measurement infrastructure that lagged behind the capabilities of the United Kingdom, Germany, and other economic rivals.

What is ICS?

  • Supervisory control and data acquisition (SCADA) systems – are generally used to control dispersed assets using centralized data acquisition and supervisory control.
  • Distributed control systems (DCS) – are generally used to control production systems within a local area such as a factory using supervisory and regulatory control.
  • Programmable Logic Controllers (PLC) – are generally used for discrete control for specific applications and generally provide regulatory control.

ICS are used in industries such as electric, water and wastewater, oil and natural gas, transportation, chemical, pharmaceutical, pulp and paper, food and beverage, and discrete manufacturing (e.g., automotive, aerospace, and durable goods.)

ICS Security Design Considerations

  • Control Timing Requirements
  • Geographic Distribution
  • Hierarchy
  • Control Complexity
  • Availability
  • Impact of Failures
  • Safety

Security Objectives

  • Restricting logical access to the ICS network and network activity
  • Restricting physical access to the ICS network and devices
  • Protecting individual ICS components from exploitation
  • Restricting unauthorized modification of data
  • Detecting security events and incidents
  • Maintaining functionality during adverse conditions
  • Restoring the system after an incident