Industrial Automation and Control System Security Principles
Protecting the Critical Infrastructure
International Society for Automation
2. Auflage Juli 2016
602 Seiten, Softcover
Wiley & Sons Ltd
Industrial Automation and Control System Security Principles: Protecting the Critical Infrastructure, 2nd Edition
The use of cyber warfare as a prelude or substitute for conventional attacks has gone from conjecture to reality. The obvious targets of such assaults are a nation's defense establishment, critical infrastructure, corporate intellectual property, government databases, and production capabilities.
This text develops a novel approach to securing industrial automation and control systems by generating protection principles through merging and adapting the best industrial and governmental standards and practices. It:
* Merges the fundamentals of information system security and the unique requirements of industrial automation and control systems
* Outlines highly effective, structured defenses against real threats of cyberattack on critical infrastructure and essential manufacturing assets
* Presents a clear and implementable formula to defend crucial elements such as refineries, chemical plants, manufacturing operations, power plants, transportation systems, and pipelines
* Examines the extant and emerging standards and guidelines, including ANSI, ISA, IEC, NIST, and IEEE
* Addresses the unique requirements of industrial automation and control systems
Foreword xv
Preface xix
Chapter 1 Industrial Automation and Control System Fundamental Concepts 1
Chapter 2 Information System Security Technology 29
Chapter 3 Industrial Automation and Control System Culture versus IT Paradigms 65
Chapter 4 The Continuing Technological Evolution Affecting IAC Systems 85
Chapter 5 Risk Management for Industrial Automation and Control Systems 115
Chapter 6 IAC Systems Security Methodologies and Approaches 147
Chapter 7 Industrial Automation and Control System Security Training 217
Chapter 8 Industrial Automation and Control System Trends, Approaches, and Issues 245
Chapter 9 Emerging Approaches to Industrial Automation and Control System Security 281
Appendix A Review Questions and Answers 333
Appendix B ICS Supplemental Guidance for NIST SP 800-53 Security Controls 409
Glossary and Acronyms 497
Bibliography 563
Index 569
He coauthored the CISSP Prep Guide for John Wiley and Sons and is coauthor of the Wiley Advanced CISSP Prep Guide; the CISSP Prep Guide, Gold Edition; the Security + Certification Guide; the CISM Prep Guide; the CISSP Prep Guide: Mastering CISSP and ISSEP (Information Systems Security Engineering Professional), Second Edition; the Network Security Bible; the CISSP and CAP (Certification and Accreditation Professional) Prep Guide, Platinum Edition: Mastering CISSP and CAP; the Certified Ethical Hacker (CEH) Prep Guide; Cloud Computing Security; and Web Commerce Security. He is also the author of Securing SCADA Systems and of three textbooks in the areas of microcomputer system design, computer interfacing, and computer architecture. Dr. Krutz has seven patents in the area of digital systems and has published more than 30 technical papers. Dr. Krutz is also a Senior Fellow of the International Cyber Center of George Mason University. Dr. Krutz holds BS, MS, and PhD degrees in Electrical and Computer Engineering, is a Registered Professional Engineer in Pennsylvania, and is a Senior Life Member of the IEEE.