• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>56th annual ISA POWID symposium >Securing Critical Control Systems in the Power Industry
【24h】

Securing Critical Control Systems in the Power Industry

机译:确保电力行业的关键控制系统

获取原文
获取原文并翻译 | 示例
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

It has become almost a weekly occurrence to read about some new cyber security attack, whether it isrnintended to obtain private information or to deliberately bring down a particular company’s network.rnHowever, cyber security attacks are just not limited to IT networks. With the advent of Stuxnet, cyberrnsecurity attacks on control and SCADA systems have become a reality. The threat of cyber securityrnattacks on our nation’s critical control systems infrastructure, which includes our power generationrnfacilities, presents yet another challenge to utility directors and staff. We will discuss what the federalrngovernment is doing about cyber security and the impact of the latest Presidential Executive Order.rnAs part of the growing need for cyber security, the types of malwares and viruses that have beenrndesigned to attack SCADA systems (such as Stuxnet and Flame) will be examined. To address thernneed to secure our critical control systems, the paper will discuss the latest standards, regulations andrnguidelines that can be applied to the power industry. The discussion will focus on the NERC CIPrnVersion 5 standards and the ISA99, Industrial Automation and Control Systems Security standards.rnBased on the ISA99 standards and Department of Homeland Security guidelines, there are a number ofrnbest practices that engineers can employ in designing control systems networks and end users canrnimplement for existing systems. These include authentication and auditing, intrusion detection, andrndefense-in-depth strategies including firewalls and virtual private networks (VPNs). We will focus onrnthese best practices and how they are applicable to the Version 5 NERC-CIP standards.
机译:不论是要获取私人信息还是有意破坏特定公司的网络,阅读一些新的网络安全攻击几乎已经成为每周一次。然而,网络安全攻击不仅限于IT网络。随着Stuxnet的出现,对控制和SCADA系统的网络安全攻击已成为现实。网络安全对美国关键控制系统基础架构的攻击,包括我们的发电设施,给公用事业主管和员工带来了又一个挑战。我们将讨论联邦政府在网络安全方面所做的工作以及最新的总统行政命令的影响。作为对网络安全日益增长的需求的一部分,旨在攻击SCADA系统的恶意软件和病毒类型(例如Stuxnet和Flame) )将被检查。为了满足确保关键控制系统安全的需求,本文将讨论可应用于电力行业的最新标准,法规和准则。讨论将集中在NERC CIPrnVersion 5标准和ISA99,工业自动化与控制系统安全标准。基于ISA99标准和国土安全部的准则,工程师可以在设计控制系统网络时采用许多最佳实践。最终用户可以为现有系统实现。这些措施包括身份验证和审核,入侵检测以及包括防火墙和虚拟专用网络(VPN)在内的深度防御策略。我们将重点关注这些最佳实践以及它们如何适用于版本5 NERC-CIP标准。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号