Book Image

Industrial Cybersecurity

By : Pascal Ackerman
Book Image

Industrial Cybersecurity

By: Pascal Ackerman

Overview of this book

With industries expanding, cyber attacks have increased significantly. Understanding your control system’s vulnerabilities and learning techniques to defend critical infrastructure systems from cyber threats is increasingly important. With the help of real-world use cases, this book will teach you the methodologies and security measures necessary to protect critical infrastructure systems and will get you up to speed with identifying unique challenges.Industrial cybersecurity begins by introducing Industrial Control System (ICS) technology, including ICS architectures, communication media, and protocols. This is followed by a presentation on ICS (in) security. After presenting an ICS-related attack scenario, securing of the ICS is discussed, including topics such as network segmentation, defense-in-depth strategies, and protective solutions. Along with practical examples for protecting industrial control systems, this book details security assessments, risk management, and security program development. It also covers essential cybersecurity aspects, such as threat detection and access management. Topics related to endpoint hardening such as monitoring, updating, and anti-malware implementations are also discussed.
Table of Contents (19 chapters)
Title Page
About the Author
About the Reviewers
Customer Feedback

Endpoint hardening

An integral part of ICS computer security is endpoint hardening. Endpoint hardening aims at narrowing the attack surface of the endpoint as well as limiting the impact of a potential compromise of the endpoint.

Narrowing the attack surface

Narrowing the attack surface of an endpoint involves disabling any unused features, and options. The smaller the attack surface of a system, the fewer potential security vulnerabilities there will be for the attacker to find. This exercise comes down to going through all your systems and disabling unused and unwanted Windows services, uninstalling unused applications, and getting rid of installed example scripts, programs, databases, and other files. These activities are typically performed at the time of endpoint deployment and should be a scheduled exercise, performed on a regular basis after the endpoint is deployed.

Limiting the impact of a compromise

Limiting the impact of a security breach of the endpoint, for example, when a system...