Security for critical infrastructure SCADA systemsDownload Now
This "special to the web" White Paper provides a non-technical overview of critical infrastructure SCADA security and gives a background on SCADA systems and the history of critical infrastructure concern.By Andrew Hildick-Smith, SANS Institute
SUPERVISORY CONTROL and Data Acquisition (SCADA) systems and other similar control systems are widely used by utilities and industries that are considered critical to the functioning of countries around the world. Early in the history of SCADA systems the equipment and software was fairly obscure and network exposure to the world was limited. Over time a combination of factors drove vendors to adopting standard IT platforms and SCADA system owners to interconnect their systems to other networks. These changes plus other conditions have produced SCADA systems that are more vulnerable to attack.
This White Paper provides a non-technical overview of critical infrastructure SCADA security. It gives a background on SCADA systems and the history of critical infrastructure concern. The SCADA security threats, incidents and vulnerabilities are examined along with issues that impede security advances. Finally the broad range of security initiatives is discussed and observations and recommendations are made.