Control
Páginas: 257 (64173 palabras)
Publicado: 10 de octubre de 2011
Special Publication 800-82
Guide to Industrial Control Systems (ICS) Security
Supervisory Control and Data Acquisition (SCADA) systems, Distributed Control Systems (DCS), and other control system configurations such as Programmable Logic Controllers (PLC)
Recommendations of the National Institute of Standards and Technology
Keith Stouffer Joe Falco Karen Scarfone
NIST SpecialPublication 800-82
Guide to Industrial Control Systems (ICS) Security
Supervisory Control and Data Acquisition (SCADA) systems, Distributed Control Systems (DCS), and other control system configurations such as Programmable Logic Controllers (PLC)
Recommendations of the National Institute of Standards and Technology
C O M P U T E R
S E C U R I T Y
Computer Security DivisionInformation Technology Laboratory National Institute of Standards and Technology Gaithersburg, MD 20899-8930 Intelligent Systems Division Engineering Laboratory National Institute of Standards and Technology Gaithersburg, MD 20899-8930
June 2011
U.S. Department of Commerce
Gary Locke, Secretary
National Institute of Standards and Technology
Patrick Gallagher, Director
GUIDETO INDUSTRIAL CONTROL SYSTEMS (ICS) SECURITY
Reports on Computer Systems Technology
The Information Technology Laboratory (ITL) at the National Institute of Standards and Technology (NIST) promotes the U.S. economy and public welfare by providing technical leadership for the nation’s measurement and standards infrastructure. ITL develops tests, test methods, reference data, proof ofconcept implementations, and technical analysis to advance the development and productive use of information technology. ITL’s responsibilities include the development of technical, physical, administrative, and management standards and guidelines for the cost-effective security and privacy of sensitive unclassified information in Federal computer systems. This Special Publication 800-seriesreports on ITL’s research, guidance, and outreach efforts in computer security and its collaborative activities with industry, government, and academic organizations.
National Institute of Standards and Technology Special Publication 800-82 Natl. Inst. Stand. Technol. Spec. Publ. 800-82, 155 pages (June 2011)
Certain commercial entities, equipment, or materials may be identified inthis document in order to describe an experimental procedure or concept adequately. Such identification is not intended to imply recommendation or endorsement by the National Institute of Standards and Technology, nor is it intended to imply that the entities, materials, or equipment are necessarily the best available for the purpose.
iii
GUIDE TO INDUSTRIAL CONTROL SYSTEMS (ICS)SECURITY
Acknowledgments
The authors, Keith Stouffer, Joe Falco, and Karen Scarfone of the National Institute of Standards and Technology (NIST), wish to thank their colleagues who reviewed drafts of this document and contributed to its technical content. The authors would particularly like to acknowledge Tim Grance, Ron Ross, Stu Katzke, and Freemon Johnson of NIST for their keen andinsightful assistance throughout the development of the document. The authors also gratefully acknowledge and appreciate the many contributions from the public and private sectors whose thoughtful and constructive comments improved the quality and usefulness of this publication. The authors would particularly like to thank the members of ISA99. The authors would also like to thank the UKNational Centre for the Protection of National Infrastructure (CPNI)) for allowing portions of the Good Practice Guide on Firewall Deployment for SCADA and Process Control Network to be used in this document as well as ISA for allowing portions of the ANSI/ISA99 Standards to be used in this document.
iv
GUIDE TO INDUSTRIAL CONTROL SYSTEMS (ICS) SECURITY
Table of Contents
Executive...
Guide to Industrial Control Systems (ICS) Security
Supervisory Control and Data Acquisition (SCADA) systems, Distributed Control Systems (DCS), and other control system configurations such as Programmable Logic Controllers (PLC)
Recommendations of the National Institute of Standards and Technology
Keith Stouffer Joe Falco Karen Scarfone
NIST SpecialPublication 800-82
Guide to Industrial Control Systems (ICS) Security
Supervisory Control and Data Acquisition (SCADA) systems, Distributed Control Systems (DCS), and other control system configurations such as Programmable Logic Controllers (PLC)
Recommendations of the National Institute of Standards and Technology
C O M P U T E R
S E C U R I T Y
Computer Security DivisionInformation Technology Laboratory National Institute of Standards and Technology Gaithersburg, MD 20899-8930 Intelligent Systems Division Engineering Laboratory National Institute of Standards and Technology Gaithersburg, MD 20899-8930
June 2011
U.S. Department of Commerce
Gary Locke, Secretary
National Institute of Standards and Technology
Patrick Gallagher, Director
GUIDETO INDUSTRIAL CONTROL SYSTEMS (ICS) SECURITY
Reports on Computer Systems Technology
The Information Technology Laboratory (ITL) at the National Institute of Standards and Technology (NIST) promotes the U.S. economy and public welfare by providing technical leadership for the nation’s measurement and standards infrastructure. ITL develops tests, test methods, reference data, proof ofconcept implementations, and technical analysis to advance the development and productive use of information technology. ITL’s responsibilities include the development of technical, physical, administrative, and management standards and guidelines for the cost-effective security and privacy of sensitive unclassified information in Federal computer systems. This Special Publication 800-seriesreports on ITL’s research, guidance, and outreach efforts in computer security and its collaborative activities with industry, government, and academic organizations.
National Institute of Standards and Technology Special Publication 800-82 Natl. Inst. Stand. Technol. Spec. Publ. 800-82, 155 pages (June 2011)
Certain commercial entities, equipment, or materials may be identified inthis document in order to describe an experimental procedure or concept adequately. Such identification is not intended to imply recommendation or endorsement by the National Institute of Standards and Technology, nor is it intended to imply that the entities, materials, or equipment are necessarily the best available for the purpose.
iii
GUIDE TO INDUSTRIAL CONTROL SYSTEMS (ICS)SECURITY
Acknowledgments
The authors, Keith Stouffer, Joe Falco, and Karen Scarfone of the National Institute of Standards and Technology (NIST), wish to thank their colleagues who reviewed drafts of this document and contributed to its technical content. The authors would particularly like to acknowledge Tim Grance, Ron Ross, Stu Katzke, and Freemon Johnson of NIST for their keen andinsightful assistance throughout the development of the document. The authors also gratefully acknowledge and appreciate the many contributions from the public and private sectors whose thoughtful and constructive comments improved the quality and usefulness of this publication. The authors would particularly like to thank the members of ISA99. The authors would also like to thank the UKNational Centre for the Protection of National Infrastructure (CPNI)) for allowing portions of the Good Practice Guide on Firewall Deployment for SCADA and Process Control Network to be used in this document as well as ISA for allowing portions of the ANSI/ISA99 Standards to be used in this document.
iv
GUIDE TO INDUSTRIAL CONTROL SYSTEMS (ICS) SECURITY
Table of Contents
Executive...
Leer documento completo
Regístrate para leer el documento completo.