Industrial Network Security: Securing Critical Infrastructure Networks for Smart Grid, SCADA, and Other Industrial Control Systems
Industrial Network Security: Securing Critical Infrastructure Networks for Smart Grid, SCADA, and Other Industrial Control Systems covers implementation guidelines for security measures of critical infrastructure. The book describes an approach to ensure the security of industrial networks by taking into account the unique network, protocol, and application characteristics of an industrial control system, along with various compliance controls. It offers guidance on deployment and configuration, and it explains why, where, and how security controls should be implemented. It also discusses common pitfalls and mistakes and how to avoid them. After reading this book, students will understand and address the unique security concerns that face the world's most important networks.
This book examines the unique protocols and applications that are the foundation of industrial control systems and provides comprehensive guidelines for their protection. Divided into 11 chapters, it explains the basics of Ethernet and Transmission Control Protocol/Internet Protocol (TCP/IP) networking communications and the SCADA and field bus protocols. It also explores industrial networks as they relate to "critical infrastructure" and cyber security; potential risks and consequences of a cyber attack against an industrial control system; compliance controls in relation to network security practices; industrial network protocols such as Modbus and DNP3; assessment of vulnerabilities and risk; how to secure enclaves; regulatory compliance standards applicable to industrial network security; and common pitfalls and mistakes, like complacency and deployment errors.
This book is a valuable resource for plant operators and information security analysts, as well as compliance officers who want to pass an audit with minimal penalties and/or fines. It will also appeal to IT and security professionals working on networks and control systems operations.
What people are saying - Write a review
Although many of the SCADA/control system and cyber security books currently available take a more IT-based approach to security, this does not mean that the work isn't worthwhile. Part of the problem that this community is facing, is that security implementations are relatively new, and progress to change moves exceedingly slow. And... there are very little agreed upon metrics for securing SCADA/control systems' environments, as there needs to be a starting point at which people can begin to build and establish best practices, methodologies, and protocols for securing our infrastructures' cyber systems. Like many of the other SCADA/control systems and cyber security books that are currently available, no one book is best at everything. This book is a good start.
As a fellow published author on the subject of critical infrastructure protection (not NERC CIP, but the real research pertaining to resiliency, redundancy, recovery and mitigation of all of our infrastructure), I have found that many topics continue to be a "moving target", of which, this is one of them. As a resource, you cannot go wrong with this book; there are plenty of good "nuggets" that are worth reading. Therefore, I would recommend this book.
9 Monitoring Enclaves