Book Image

Industrial Cybersecurity

By : Pascal Ackerman
Book Image

Industrial Cybersecurity

By: Pascal Ackerman

Overview of this book

With industries expanding, cyber attacks have increased significantly. Understanding your control system’s vulnerabilities and learning techniques to defend critical infrastructure systems from cyber threats is increasingly important. With the help of real-world use cases, this book will teach you the methodologies and security measures necessary to protect critical infrastructure systems and will get you up to speed with identifying unique challenges.Industrial cybersecurity begins by introducing Industrial Control System (ICS) technology, including ICS architectures, communication media, and protocols. This is followed by a presentation on ICS (in) security. After presenting an ICS-related attack scenario, securing of the ICS is discussed, including topics such as network segmentation, defense-in-depth strategies, and protective solutions. Along with practical examples for protecting industrial control systems, this book details security assessments, risk management, and security program development. It also covers essential cybersecurity aspects, such as threat detection and access management. Topics related to endpoint hardening such as monitoring, updating, and anti-malware implementations are also discussed.
Table of Contents (19 chapters)
Title Page
About the Author
About the Reviewers
Customer Feedback

The ICS security bubble analogy

An analogy I like use during conversations with customers is what I call the ICS security bubble strategy:

The idea is that in order to defend systems that are either too old to be updated with the latest security controls or systems that cannot handle security controls because of limited device resources, it helps to visualize the security strategy for such devices to placing them in a soap or glass bubble. The systems and devices in the bubble trust each other and are allowed to communicate unrestricted among each other. In order to be placed inside the bubble, systems must be verified to be free of malicious content and of importance to the ICS function. Systems outside of the bubble will have to use controlled and monitored conduits to communicate with systems inside.  Any attempts to penetrate the bubble will cause it to pop or shatter, which is an easily detectable occurrence.

In this analogy, these are the observations:

  • The bubble represents the security...