Cargando…

Industrial network security : securing critical infrastructure networks for smart grid, SCADA, and other industrial control systems /

This book examines the unique protocols and applications that are the foundation of industrial control systems, and provides clear guidelines for their protection. It provides a thorough understanding of the unique challenges facing critical infrastructures, new guidelines and security measures for...

Descripción completa

Detalles Bibliográficos
Clasificación:Libro Electrónico
Autores principales: Knapp, Eric D. (Autor), Langill, Joel Thomas (Autor)
Formato: Electrónico eBook
Idioma:Inglés
Publicado: Waltham, MA : Syngress, [2015]
Edición:Second edition.
Temas:
Acceso en línea:Texto completo (Requiere registro previo con correo institucional)

MARC

LEADER 00000cam a2200000 i 4500
001 OR_ocn900652416
003 OCoLC
005 20231017213018.0
006 m o d
007 cr unu||||||||
008 150123s2015 maua ob 001 0 eng d
040 |a UMI  |b eng  |e rda  |e pn  |c UMI  |d COO  |d DEBBG  |d B24X7  |d STF  |d OCLCA  |d OCLCF  |d CEF  |d OCLCQ  |d AU@  |d OCLCO  |d OCLCQ 
020 |a 9780124201842 
020 |a 0124201849 
020 |a 0124201148 
020 |a 9780124201149 
020 |z 9780124201149 
029 1 |a DEBBG  |b BV042490924 
029 1 |a DEBSZ  |b 434841013 
029 1 |a GBVCP  |b 882844784 
035 |a (OCoLC)900652416 
037 |a CL0500000538  |b Safari Books Online 
050 4 |a TS156.8 
082 0 4 |a 670.42/7  |2 23 
049 |a UAMI 
100 1 |a Knapp, Eric D.,  |e author. 
245 1 0 |a Industrial network security :  |b securing critical infrastructure networks for smart grid, SCADA, and other industrial control systems /  |c Eric D. Knapp, Joel Thomas Langill. 
246 3 0 |a Securing critical infrastructure networks for smart grid, SCADA, and other industrial control systems 
250 |a Second edition. 
264 1 |a Waltham, MA :  |b Syngress,  |c [2015] 
264 4 |c ©2015 
300 |a 1 online resource (1 volume) :  |b illustrations 
336 |a text  |b txt  |2 rdacontent 
337 |a computer  |b c  |2 rdamedia 
338 |a online resource  |b cr  |2 rdacarrier 
588 0 |a Online resource; title from title page (Safari, viewed January 16, 2015). 
504 |a Includes bibliographical references and index. 
520 |a This book examines the unique protocols and applications that are the foundation of industrial control systems, and provides clear guidelines for their protection. It provides a thorough understanding of the unique challenges facing critical infrastructures, new guidelines and security measures for critical infrastructure protection, knowledge of new and evolving security tools, and pointers on SCADA protocols and security implementation. Topics Include: all-new real-world examples of attacks against control systems, and more diagrams of systems; expanded coverage of protocols such as 61850, Ethernet/IP, CIP, ISA-99, and the evolution to IEC62443, smart grid security; signature-based detection, exploit-based vs. vulnerability-based detection, and signature reverse engineering. --  |c Edited summary from book. 
505 0 |a Machine generated contents note: ch. 1 Introduction -- Book Overview and Key Learning Points -- Book Audience -- Diagrams and Figures -- The Smart Grid -- How This Book is Organized -- ch. 2 About Industrial Networks -- ch. 3 Industrial Cyber Security, History, and Trends -- ch. 4 Introduction to ICS and Operations -- ch. 5 ICS Network Design and Architecture -- ch. 6 Industrial Network Protocols -- ch. 7 Hacking Industrial Systems -- ch. 8 Risk and Vulnerability Assessments -- ch. 9 Establishing Zones and Conduits -- ch. 10 Implementing Security and Access Controls -- ch. 11 Exception, Anomaly, and Threat Detection -- ch. 12 Security Monitoring of Industrial Control Systems -- ch. 13 Standards and Regulations -- Changes Made to the Second Edition -- Conclusion -- ch. 2 About Industrial Networks -- The Use of Terminology Within This Book -- Attacks, Breaches, and Incidents: Malware, Exploits, and APTs -- Assets, Critical Assets, Cyber Assets, and Critical Cyber Assets 
505 0 |a Note continued: Security Controls and Security Countermeasures -- Firewalls and Intrusion Prevention Systems -- Industrial Control System -- DCS or SCADA? -- Industrial Networks -- Industrial Protocols -- Networks, Routable Networks, and Nonroutable Networks -- Enterprise or Business Networks -- Zones and Enclaves -- Network Perimeters or "Electronic Security Perimeters" -- Critical Infrastructure -- Common Industrial Security Recommendations -- Identification of Critical Systems -- Network Segmentation/Isolation of Systems -- Defense in Depth -- Access Control -- Advanced Industrial Security Recommendations -- Security Monitoring -- Policy Whitelisting -- Application Whitelisting -- Common Misperceptions About Industrial Network Security -- Assumptions Made in This Book -- Summary -- Endnotes -- ch. 3 Industrial Cyber Security History and Trends -- Importance of Securing Industrial Networks -- The Evolution of the Cyber Threat -- APTs and Weaponized Malware 
505 0 |a Note continued: Still to Come -- Defending Against Modern Cyber Threats -- Insider Threats -- Hacktivism, Cyber Crime, Cyber Terrorism, and Cyber War -- Summary -- Endnotes -- ch. 4 Introduction to Industrial Control Systems and Operations -- System Assets -- Programmable Logic Controller -- Remote Terminal Unit -- Intelligent Electronic Device -- Human-Machine Interface -- Supervisory Workstations -- Data Historian -- Business Information Consoles and Dashboards -- Other Assets -- System Operations -- Control Loops -- Control Processes -- Feedback Loops -- Production Information Management -- Business Information Management -- Process Management -- Safety Instrumented Systems -- The Smart Grid -- Network Architectures -- Summary -- Endnotes -- ch. 5 Industrial Network Design and Architecture -- Introduction to Industrial Networking -- Common Topologies -- Network Segmentation -- Higher Layer Segmentation -- Physical vs. Logical Segmentation -- Network Services 
505 0 |a Note continued: Wireless Networks -- Remote Access -- Performance Considerations -- Latency and Jitter -- Bandwidth and Throughput -- Type of Service, Class of Service, and Quality of Service -- Network Hops -- Network Security Controls -- Safety Instrumented Systems -- Special Considerations -- Wide Area Connectivity -- Smart Grid Network Considerations -- Advanced Metering Infrastructure -- Summary -- Endnotes -- ch. 6 Industrial Network Protocols -- Overview of Industrial Network Protocols -- Fieldbus Protocols -- Modicon Communication Bus -- Distributed Network Protocol -- Process Fieldbus -- Industrial Ethernet Protocols -- Ethernet Industrial Protocol -- PROFLNET -- EtherCAT -- Ethernet POWERLINK -- SERCOS III -- Backend Protocols -- Open Process Communications -- Inter-Control Center Communications Protocol -- Advanced Metering Infrastructure and the Smart Grid -- Security Concerns -- Security Recommendations -- Industrial Protocol Simulators -- Modbus 
505 0 |a Note continued: DNP3/IEC 60870-5 -- OPC -- ICCP / IEC 60870-6 (TASE. 2) -- Physical Hardware -- Summary -- Endnotes -- ch. 7 Hacking Industrial Control Systems -- Motives and Consequences -- Consequences of a Successful Cyber Incident -- Cyber Security and Safety -- Common Industrial Targets -- Common Attack Methods -- Man-in-the-Middle Attacks -- Denial-of-Service Attacks -- Replay Attacks -- Compromising the Human-Machine Interface -- Compromising the Engineering Workstation -- Blended Attacks -- Examples of Weaponized Industrial Cyber Threats -- Stuxnet -- Shamoon/DistTrack -- Flame/Flamer/Skywiper -- Attack Trends -- Evolving Vulnerabilities: The Adobe Exploits -- Industrial Application Layer Attacks -- Antisocial Networks: A New Playground for Malware -- Dealing with an Infection -- Summary -- Endnotes -- ch. 8 Risk and Vulnerability Assessments -- Cyber Security and Risk Management -- Why Risk Management is the Foundation of Cyber Security -- What is Risk? 
505 0 |a Note continued: Standards and Best Practices for Risk Management -- Methodologies for Assessing Risk Within Industrial Control Systems -- Security Tests -- Establishing a Testing and Assessment Methodology -- System Characterization -- Data Collection -- Scanning of Industrial Networks -- Threat Identification -- Threat Actors/Sources -- Threat Vectors -- Threat Events -- Identification of Threats During Security Assessments -- Vulnerability Identification -- Vulnerability Scanning -- Configuration Auditing -- Vulnerability Prioritization -- Risk Classification and Ranking -- Consequences and Impact -- How to Estimate Consequences and Likelihood -- Risk Ranking -- Risk Reduction and Mitigation -- Summary -- Endnotes -- ch. 9 Establishing Zones and Conduits -- Security Zones and Conduits Explained -- Identifying and Classifying Security Zones and Conduits -- Recommended Security Zone Separation -- Network Connectivity -- Control Loops -- Supervisory Controls 
505 0 |a Note continued: Plant Level Control Processes -- Control Data Storage -- Trading Communications -- Remote Access -- Users and Roles -- Protocols -- Criticality -- Establishing Security Zones and Conduits -- Summary -- Endnotes -- ch. 10 Implementing Security and Access Controls -- Network Segmentation -- Zones and Security Policy Development -- Using Zones within Security Device Configurations -- Implementing Network Security Controls -- Selecting Network Security Devices -- Implementing Network Security Devices -- Implementing Host Security and Access Controls -- Selecting Host Cyber Security Systems -- External Controls -- Patch Management -- How Much Security is Enough? -- Summary -- Endnotes -- ch. 11 Exception, Anomaly, and Threat Detection -- Exception Reporting -- Behavioral Anomaly Detection -- Measuring Baselines -- Anomaly Detection -- Behavioral Whitelisting -- User Whitelists -- Asset Whitelists -- Application Behavior Whitelists -- Threat Detection 
505 0 |a Note continued: Event Correlation -- Correlating Between IT and OT Systems -- Summary -- Endnotes -- ch. 12 Security Monitoring of Industrial Control Systems -- Determining what to Monitor -- Security Events -- Assets -- Configurations -- Applications -- Networks -- User Identities and Authentication -- Additional Context -- Behavior -- Successfully Monitoring Security Zones -- Log Collection -- Direct Monitoring -- Inferred Monitoring -- Information Collection and Management Tools -- Monitoring Across Secure Boundaries -- Information Management -- Queries -- Reports -- Alerts -- Incident Investigation and Response -- Log Storage and Retention -- Nonrepudiation -- Data Retention/Storage -- Data Availability -- Summary -- Endnotes -- ch. 13 Standards and Regulations -- Common Standards and Regulations -- NERC CIP -- CFATS -- ISO/TEC 27002 -- NRC Regulation 5.71 -- NIST SP 800-82 -- ISA/IEC-62443 -- ISA 62443 Group 1 "General." 
505 0 |a Note continued: ISA 62443 Group 2 "Policies and Procedures" -- ISA 62443 Group 3 "System" -- ISA 62443 Group 4 "Component" -- Mapping Industrial Network Security to Compliance -- Industry Best Practices for Conducting ICS Assessments -- Department of Homeland Security (USA) / Centre for Protection of National Infrastructure (UK) -- National Security Agency (USA) -- American Petroleum Institute (USA) / National Petrochemical and Refiners Association (USA) -- Institute for Security and Open Methodologies (Spain) -- Common Criteria and FTPS Standards -- Common Criteria -- FIPS 140-2 -- Summary -- Endnotes -- Appendix A Protocol Resources -- Modbus Organization -- DNP3 Users Group -- OPC Foundation -- Common Industrial Protocol (CIP) / Open Device Vendor Association (ODVA) -- PROFD3US & PROFINET International (PI) -- Appendix B Standards Organizations -- North American Reliability Corporation (NERC) -- The United States Nuclear Regulatory -- Commission (NRC) 
505 0 |a Note continued: NRC Title 10 CFR 73.54 -- NRC RG 5.71 -- United States Department of Homeland Security -- Chemical Facilities Anti-Terrorism Standard (CFATS) -- CFATS Risk-Based Performance Standards (RBPS) -- International Society of Automation (ISA) -- International Organization for Standardization (ISO) and International Electrotechnical Commission (IEC) -- Appendix C NIST Security Guidelines -- National Institute of Standards and Technology, Special Publications 800 Series -- Glossary -- Endnotes. 
590 |a O'Reilly  |b O'Reilly Online Learning: Academic/Public Library Edition 
650 0 |a Process control  |x Security measures. 
650 0 |a Computer security. 
650 2 |a Computer Security 
650 6 |a Fabrication  |x Contrôle  |x Sécurité  |x Mesures. 
650 6 |a Sécurité informatique. 
650 7 |a Computer security.  |2 fast  |0 (OCoLC)fst00872484 
700 1 |a Langill, Joel Thomas,  |e author. 
776 0 8 |i Print version:  |a Knapp, Eric D.  |t Industrial network security : securing critical infrastructure networks for smart grid, SCADA, and other industrial control systems.  |b Second edition.  |d Waltham, Massachusetts : Syngress, ©2015  |h xix, 439 pages  |z 9780124201149 
856 4 0 |u https://learning.oreilly.com/library/view/~/9780124201149/?ar  |z Texto completo (Requiere registro previo con correo institucional) 
938 |a Books 24x7  |b B247  |n bks00077754 
994 |a 92  |b IZTAP