This report describes the generalized trends in vulnerabilities observed from control and automation IT systems used in critical infrastructures, as well as typical reasons for these security issues and an introduction to an effective mitigation strategy.
This White Paper discusses some of the options available to companies concerned with the threat of cyber attack and unauthorized network access to SCADA systems that monitor and control critical infrastructure.
Many industrial processing plants have already screened their facilities and operations for security vulnerability potential and are conducing SVA on the high priority concerns. So where do they go from here?
The first draft of the System Protection Profile for Industrial Control Systems, designed to present a cohesive, cross-industry, baseline set of security requirements for new industrial control systems, is available for download and review.
This guideline provides suggestions for an effective cyber security patch management strategy for control systems, addresses potential risks that can apply to some electricity sector organizations, and provides practices that can help mitigate the risks.
This "special to the web" White Paper provides a non-technical overview of critical infrastructure SCADA security and gives a background on SCADA systems and the history of critical infrastructure concern.
This special to the web briefing report from the Office of the Inspector General evaluates the impediments and barriers that prevent water systems and other Power-Gen plants from securing known SCADA vulnerabilities.
The sensitive nature of PLC and DCS devices requires a higher level of network segmentation and advanced defense solutions. This "special to the web" White Paper defines the problem and introduces a new approach to distributing a firewall throughout your SCADA and industrial networking environment.
Most papers written on wireless security concerns address corporate LAN access. This paper discusses both corporate and industrial wireless concerns but places an emphasis on the industrial automation wireless security aspects.