Industrial Network Security for SCADA, Automation, Process Control and PLC Systems. Contents. 1 An Introduction to Industrial Network Security 1



Similar documents
Network Security. Tampere Seminar 23rd October Overview Switch Security Firewalls Conclusion

Security Design.

PROTECTING INFORMATION SYSTEMS WITH FIREWALLS: REVISED GUIDELINES ON FIREWALL TECHNOLOGIES AND POLICIES

CISCO IOS NETWORK SECURITY (IINS)

Securing Cisco Network Devices (SND)

Firewalls and VPNs. Principles of Information Security, 5th Edition 1

Introduction p. 2. Introduction to Information Security p. 1. Introduction

Network Security Administrator

CS 356 Lecture 19 and 20 Firewalls and Intrusion Prevention. Spring 2013

Secure Networking for Critical Infrastructure Using Service-aware switches for Defense-in-Depth deployment

NETWORK SECURITY (W/LAB) Course Syllabus

ACADEMIA LOCAL CISCO UCV-MARACAY CONTENIDO DE CURSO CURRICULUM CCNA. SEGURIDAD SEGURIDAD EN REDES. NIVEL I. VERSION 2.0

1. Cyber Security. White Paper Data Communication in Substation Automation System (SAS) Cyber security in substation communication network

Introduction to Cyber Security / Information Security

Basics of Internet Security

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. Chapter 5 Firewall Planning and Design

Network Access Security. Lesson 10

Security Technology: Firewalls and VPNs

WHITE PAPER. The Need for Wireless Intrusion Prevention in Retail Networks

Deploying secure wireless network services The Avaya Identity Engines portfolio offers flexible, auditable management for secure wireless networks.

Recommended IP Telephony Architecture

Cisco Certified Security Professional (CCSP)

Firewall Security. Presented by: Daminda Perera

Joseph Migga Kizza. A Guide to Computer Network Security. 4) Springer

Cisco Advanced Services for Network Security

BlackRidge Technology Transport Access Control: Overview

Developing Network Security Strategies

Cisco ASA. Administrators

FIREWALL CHECKLIST. Pre Audit Checklist. 2. Obtain the Internet Policy, Standards, and Procedures relevant to the firewall review.

JK0-022 CompTIA Academic/E2C Security+ Certification Exam CompTIA

Firewall Environments. Name

Network System Design Lesson Objectives

Lecture 02b Cloud Computing II

Security+ Guide to Network Security Fundamentals, Fourth Edition. Chapter 6 Network Security

SECURING AN INTEGRATED SCADA SYSTEM. Technical Paper April 2007

The following chart provides the breakdown of exam as to the weight of each section of the exam.

Network Security: A Practical Approach. Jan L. Harrington

OPC & Security Agenda

How To Pass The Information And Network Security Certificate

IINS Implementing Cisco Network Security 3.0 (IINS)

State of Texas. TEX-AN Next Generation. NNI Plan

FIREWALLS & CBAC. philip.heimer@hh.se

ACADEMIA LOCAL CISCO UCV-MARACAY CONTENIDO DE CURSO CURRICULUM CCNA. SEGURIDAD CCNA SECURITY. VERSION 1.0

Security Threats VPNs and IPSec AAA and Security Servers PIX and IOS Router Firewalls. Intrusion Detection Systems

Chapter 9 Firewalls and Intrusion Prevention Systems

NEW YORK INSTITUTE OF TECHNOLOGY School of Engineering and Technology Department of Computer Science Old Westbury Campus

THE BUSINESS CASE FOR NETWORK SECURITY: ADVOCACY, GOVERNANCE, AND ROI

Government of Canada Managed Security Service (GCMSS) Annex A-1: Statement of Work - Firewall

Securing Modern Substations With an Open Standard Network Security Solution. Kevin Leech Schweitzer Engineering Laboratories, Inc.

8. Firewall Design & Implementation

CCNA Security v1.0 Scope and Sequence

Implementing Cisco IOS Network Security v2.0 (IINS)

Chapter 12. Security Policy Life Cycle. Network Security 8/19/2010. Network Security

Chapter 11 Cloud Application Development

Implementing Cisco IOS Network Security

CCNA Security 2.0 Scope and Sequence

Enabling Multiple Wireless Networks on RV320 VPN Router, WAP321 Wireless-N Access Point, and Sx300 Series Switches

Link Layer and Network Layer Security for Wireless Networks

Link Layer and Network Layer Security for Wireless Networks

Network Security Topologies. Chapter 11

Are Second Generation Firewalls Good for Industrial Control Systems?

SNRS. Securing Networks with Cisco Routers and Switches. Length 5 days. Format Lecture/lab

Appendix A: Configuring Firewalls for a VPN Server Running Windows Server 2003

High Security Firewall: Prevent Unauthorized Access Using Firewall Technologies

What would you like to protect?

How To Pass A Credit Course At Florida State College At Jacksonville

Asheville-Buncombe Technical Community College Department of Networking Technology. Course Outline

ADDENDUM 12 TO APPENDIX 8 TO SCHEDULE 3.3

H.I.P.A.A. Compliance Made Easy Products and Services

SCADA SYSTEMS AND SECURITY WHITEPAPER

CCNA Security. IINS v2.0 Implementing Cisco IOS Network Security ( )

Tim Bovles WILEY. Wiley Publishing, Inc.

Security Awareness. Wireless Network Security

Industrial Firewalls Endpoint Security

Security + Certification (ITSY 1076) Syllabus

Firewall Introduction Several Types of Firewall. Cisco PIX Firewall

Computer Security: Principles and Practice

Secure Networks for Process Control

TABLE OF CONTENTS NETWORK SECURITY 1...1

Implementing Secured Converged Wide Area Networks (ISCW) Version 1.0

Chapter 4: Security of the architecture, and lower layer security (network security) 1

SonicWALL PCI 1.1 Implementation Guide

Considerations In Developing Firewall Selection Criteria. Adeptech Systems, Inc.

SFWR ENG 4C03 Class Project Firewall Design Principals Arash Kamyab March 04, 2004

Computer Security DD2395

Cisco Secure ACS. By Igor Koudashev, Systems Engineer, Cisco Systems Australia 2006 Cisco Systems, Inc. All rights reserved.

Firewall Architecture

A Network Design Primer

CH ENSA EC-Council Network Security Administrator Detailed Course Outline

Networking: EC Council Network Security Administrator NSA

- Introduction to PIX/ASA Firewalls -

IP Telephony Management

(d-5273) CCIE Security v3.0 Written Exam Topics

Local Area Networks (LANs) Blueprint (May 2012 Release)

Transcription:

Industrial Network Security for SCADA, Automation, Process Control and PLC Systems Contents 1 An Introduction to Industrial Network Security 1 1.1 Course overview 1 1.2 The evolution of networking 1 1.3 What is network security? 2 1.4 Why has security assumed more importance in recent times? 2 1.5 Security in the context of industrial automation systems 3 1.6 Information networks vs industrial networks - the similarities and differences 4 1.7 Organizational issues 4 1.8 Network security solutions 4 1.9 Wireless networks 5 1.10 Security testing 5 2 Networking Basics 7 2.1 Introduction 7 2.2 Network topologies 7 2.3 Medium Access Control 8 2.4 Ethernet 10 2.5 Networking components 14 2.6 Network architectures and protocols 15 2.7 The architecture of real time industrial networks 16

3 Network Threats, Vulnerabilities and Risks 19 3.1 Introduction 19 3.2 Security goal 20 3.3 Threats and underlying causes 21 3.4 Motivation for threats 22 3.5 Knowledge 22 3.6 Vulnerabilities 22 3.7 Network attacks 23 3.8 Security measures 26 3.9 Risks resulting from attacks 26 3.10 Attack scenarios in public utility systems 26 3.11 Common criteria based approach for analysis of threats and vulnerabilities 29 4 An Overview of IP network Security 31 4.1 Introduction 31 4.2 Why do networks become vulnerable? 32 4.3 Weaknesses in the TCP/IP protocol suite 33 4.4 Attack mechanisms 33 4.5 Preparing for an attack 34 4.6 Attack through unauthorized access 34 4.7 Attack the data (data diddling) 35 4.8 Attack the service through Denial of Service (DoS) 36 4.9 Vulnerabilities of OSI layers 38 4.10 Network security at the Transport layer 40 4.11 Network layer security 41 4.12 Data Link layer security 42

5 A Comprehensive Approach to Network Security Planning 45 5.1 Network security 45 5.2 A comprehensive approach to network security planning 46 5.3 Risk evaluation 46 5.4 Plan for preventive measures 47 5.5 Detection of an attack and response 49 5.6 Recovery plan 49 5.7 Prepare a security policy document 49 5.8 Dissemination and implementation 51 5.9 Auditing and monitoring of the policy 51 5.10 Special guidelines in respect of Industrial Automation networks 51 5.11 Negative aspects of Internet access 52 6 Securing a Network by Access Control 53 6.1 Introduction 53 6.2 What is ACL? 54 6.3 What is a firewall? 55 6.4 Type of firewalls 56 6.5 Packet filter firewalls 56 6.6 Stateful inspection firewalls 58 6.7 Application-proxy gateway firewalls 59 6.8 Dedicated proxy server 60 6.9 Hybrid firewalls 60 6.10 Security through NAT 60

6.11 Port Address Translation (PAT) 61 6.12 Host based firewalls 61 6.13 Personal firewall and firewall appliances 61 6.14 Guidelines for establishing firewalls 62 7 Authentication, Authorization, Accounting (AAA) and Encryption 65 7.1 Introduction 65 7.2 What is AAA? 65 7.3 Authentication 66 7.4 Authentication protocols 69 7.5 Authorization 72 7.6 Accounting 73 7.7 AAA Implementation using TACACS+ and RADIUS protocols 74 7.8 Use of the remote security database 76 7.9 Encryption 77 7.10 Encryption implementation 78 8 Intrusion Detection Systems 81 8.1 Who is an Intruder and what can he do? 81 8.2 Why do Intrusions happen? 81 8.3 What are Intrusion Detection Systems? 82 8.4 Network-based IDSs 82 8.5 Host based systems 85 8.6 Comparison of the two types of IDS 86 8.7 Choice of IDS system 86 8.8 Responding to an attack 86

9 VLANs 89 9.1 Introduction 89 9.2 The need for VLANs 89 9.3 Benefits of a VLAN 92 9.4 VLAN constraints 93 9.5 Operating principle of a VLAN 93 9.6 VLAN implementation methods 94 9.7 Method of connections 97 9.8 Filtering table 98 9.9 Tagging 98 10 VPNs and their Security 101 10.1 Introduction 101 10.2 The Internet and the new communication paradigm 102 10.3 What is a VPN? 103 10.4 Types of VPN 103 10.5 Requirements for designing a VPN system 103 10.6 Defining of policy 104 10.7 Functional requirements 105 10.8 Scalability 105 10.9 Manageability 107 10.10 Simplicity 108 10.11 Network infrastructure 109 10.12 Security 110 10.13 VPN protocols 112

11 Wireless networks and their security issues 119 11.1 Basics of wireless technologies 119 11.2 WLANs as per IEEE 802.11 119 11.3 Security risks 121 11.4 Implementation of security measures for industrial networks 122 12 Security Testing 127 12.1 Introduction 127 12.2 The need for security testing 127 12.3 Security testing over the life cycle of the system 128 12.4 Who will be responsible for security testing? 129 12.5 Testing techniques 129 12.6 Documentation 135 12.7 Prioritizing 135 Exercises 137 Appendix 1: 21 steps to improve cyber security of SCADA networks 153 Appendix 2: NISCC Good practice guide on firewall deployment for SCADA and process control networks 165 Appendix 3: Guidelines for deploying WPA and WPA2 207

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information