Please enable JavaScript.
Coggle requires JavaScript to display documents.
OT/ICS (ICS Security Is differrent (network firewalls (French ANSSI…
OT/ICS
ICS Security Is differrent
require revalidation after applying security updates
network firewalls
French ANSSI standards
3 classes
reliability-critical
safety-critical
IT networks
rules
class 3 connect with other classes is forbidden
Firewalled connections between class 1 and class 2
are strongly discouraged.
hardware-enforced unidirectional communications between
ICS network and less-important networks
Gartner thought it is mistake to use IT risk assessment methodologies to assess OT risks
control-centric
hardware-enforced unidirectional
security gateway
hardware
Rx Module
TX module
fiber-optic cable
used to connnect
TX TR
ICS Cybersecurity
ICS 网络空间安全
ICS Cybersecurity programs should always be safe at both industrial sites and enterprise cybersecurity.
Safety and reliability operation is an imperative for industrial processes.
OT environments are designed for safety and reliability first
IIoT(Industrial Internet of Things)
IISF
Unidirectional CloudConnect
Unidirectional Security Gateway
Only receive data from Industrial Internet
Waterfall Security Solution
First priority
prevention human lives, environmental disaster and damaged physical equipment that cannot be restored from backups
Unidirectional Security Gateway
Preventing attacks
Perimeter security
物理机器安全
没有节点允许网络节点进行零日弱点漏洞测试
基于安全的设计,可以避免
已知的大部分漏洞
NIST
美国国家标准与技术研究院