RSSInterested in linking to "How to improve network security"?
You may use the Headline, Deck, Byline and URL of this article on your Web site. To link to this article, select and copy the HTML code below and paste it on your own Web site.
How to improve network security
There's no such thing as a 100% secure control system, but learning and understanding the risks associated with security standards, and how to mitigate them are a start. Check out this to-do list.
09/16/2006
To cast your vote, log in or become a member. This quick, one-time registration gives you access to members-only site benefits.
1 vote
|
RELATED ARTICLE |
|
Fence Me In: Common Sense Security
|
- Understand that there’s no such thing as a 100% secure system, unless it’s buried in a vault, still in the box, unplugged, and unconfigured.
- Educate operators to look for operational anomalies. These are usually the first indication that something is wrong.
- Learn and understand the risks associated with security standard you’ve implemented, and how to mitigate them.
- Get control system engineers and IT synchronized, and working in the same department.
- Create polices and procedures that include an organizational tree, which describes mitigation and alert vectors to be used if a breach or threat is found.
- Schedule risk analyses on an ongoing basis.
- Incorporate change control into the above procedures.
- Know who to contact and what to do in case of a breach or attack.
- Create a single-point failure matrix.
- Follow current industry guidance and Microsoft domain isolation guidance, which presently has a patch that to allow a mostly one-button setup in XP-2K3 systems, and will be included as a one-button setup in a Longhorn/Vista domain.
- During critical junctures of possible attacks or potential threats, pulling the plug on the outside world can be effective if the control system can be reduced to a single point of access.
To cast your vote, log in or become a member. This quick, one-time registration gives you access to members-only site benefits.
1 vote
ControlGlobal.com is exclusively dedicated to the global process automation market. We report on developing industry trends, illustrate successful industry applications, and update the basic skills and knowledge base that provide the profession's foundation.
