An introduction to Security in Control Systems. Includes a brief description of what a Control System is, and what the basic constraints that are encountered when attempting to secure these systems

4. Why they are different?

5. Key attributes

7. Hosts & Operating Systems

8. Applications & Vendors

10. Web Resources

11. Aus Gov Resources

13. (Penetration) Testing

14. Vendor Relationships

15. Information/Software stores

17. Strengths and weaknesses of normal CS design

18. Useful non-technical controls

20. Intro to Control Systems Security PART 1 – UNDERSTANDING CONTROL SYSTEMS

22. Road Infrastructure, Fleet Management, etc

24. DCS (Distributed Control System)

25. PCS (Process Control System)

26. EMS (Emergency Management System)

27. AS (Automated System)

28. SIS (Safety Instrumentation System) And any other automated control system.

32. Stable

33. Well documented

34. Old & un-patched systems

35. Isolated*

36. Internally redundant

37. Small*

38. Rare/Obscure Customised Applications

39. Self Contained

42. Disclosure

43. Denial of Access Insults to the System Insults to the data Generated by the system, and USED by the business

47. Design assumptions have proved inaccurate

48. Networks already experience many transient failures

49. Custom or insecure network protocols

50. Immature network tunnelling/bridging techniques.

52. Well Known & Stable operation

53. Custom/Uncommon software

54. Generally well documented

56. Gateway Access Controls

58. Intro to Control Systems Security PART 2 – PROTECTIONS FOR CONTROL SYSTEMS

60. Process

62. Assess

63. Review All the standard security tools, processes and concepts apply. Security is a Process not a Product

65. Give them somewhere 'safe' to play.

66. Already have a “safety culture”. Add “systems security increases your safety”.

67. Operators know how their systems work.

69. System owner

71. Incident & Anomaly Reporting

73. Related & Ancillary packages

74. Operating System Updates

75. Protections – Technical Defence in Depth

77. Increases time-to-compromise

78. Decreases vulnerable devices at each step

79. Isolates fragile devices

80. Not applicable on some older legacy networks

81. Difficult to retro-fit

84. ARP security

86. File Integrity Checking

87. Process Privilege Escalation

88. Host-Based IPS

89. Host Firewalls

90. Host Authentication (Active Directory)

91. Centralised Logging

93. Default database/application/server passwords

94. Vulnerable web services

98. Network Access Control Policy

99. 3 rd Party access and Remote Access Policies

101. Change Management

103. NISTA 52

105. Router/Switch/Firewall configuration Audit

107. Configuration Testing &

108. Gateway traffic analysis

110. Source Code

112. Authentication Systems (AD, LDAP, DB etc)

115. Network Separation

116. Network Modelling &

117. Network Anomaly Detection & IDS

118. Testing (Penetration & Compliance)

119. Auditing (Policies, Controls & Processes)

120. Stay (as) current (as you can be)

122. NIST SP 800-82 – Guide for Industrial Control Systems (ICS) Security

124. DHS CSSP - Control Systems Defence in Depth Strategies

125. http://www.us-cert.gov/control_systems/practices/documents/Defense_in_Depth_Oct09.pdf

127. Department of Broadband, Communication and the Digital Economy

128. Department of the Attorney General

130. US Department of Homeland Security & US Department of Energy

131. UK Centre for the Protection of National Infrastructure

133. DHS Cyber Security Evaluation Tool (CSET) http://www.us-cert.gov/control_systems/satool.html

134. SANS http://sans.org.au/

135. CPNI SCADA Guidelines & Recommendations http://www.cpni.gov.uk/scada

137. Firewalls

138. Intrusion Management: Detection vs. Prevention

139. Penetration Testing

140. ISA95 – Control Hierachy Levels

141. ISA95 – IT Systems View