Cybersecurity for Industrial Control Systems: SCADA, DCS, PLC, HMI, and SIS (Hardcover, UK)

Introduction
Where This Book Starts and Stops
Our Audience
What Is an Industrial Control System?
Is Industrial Control System Security Different Than Regular IT Security?
Where Are ICS Used?
ICS Compared to Safety Instrumented Systems
What Has Changed in ICS That Raises New Concerns?
Naming, Functionality, and Components of Typical ICS / SCADA Systems
Analogue versus IP Industrial Automation
Convergence 101: It’s Not Just Process Data Crowding onto IP

Convergence by Another Name
Taxonomy of Convergence
The Business Drivers of IP Convergence
Cost Drivers
Competitive Drivers
Regulatory Drivers
The Conflicting Priorities of Convergence
ICS Security Architecture and Convergence
The Discussions to Follow in This Book
Endnotes

Threats to ICS
Threats to ICS: How Security Requirements Are Different from ICS to IT
Threats to ICS
Threat-To and Threat-From
The Most Serious Threat to ICS
Hi-Jacking Malware
No Room for Amateurs
Taxonomy of Hi-Jacking Malware and Botnets
The Reproductive Cycle of Modern Malware
A Socks 4/Sock 5/HTTP Connect Proxy
SMTP Spam Engines
Porn Dialers
Conclusions on ICS Threats
Endnotes

ICS Vulnerabilities
ICS Vulnerability versus IT Vulnerabilities
Availability, Integrity, and Confidentiality
Purdue Enterprise Reference Architecture (PERA)1
Data at Rest, Data in Use, Data in Motion
Distinguishing Business, Operational, and Technical Features of ICS
ICS Vulnerabilities
Taxonomy of Vulnerabilities
ICS Technical Vulnerability Class Breakdown
IT Devices on the ICS Network
Interdependency with IT
Green Network Stacks
Protocol Inertia
Limited Processing Power and Memory Size
Storms/DOS of Various Forms
Fuzzing
MITM and Packet Injection
Summary
Endnotes

Risk Assessment Techniques
Introduction
Contemporary ICS Security Analysis Techniques
INL National SCADA Test Bed Program: Control System
Security Assessment
INL Vulnerability Assessment Methodology
INL Metrics-Based Reporting for Risk Ass
CCSP Cyber Security Evaluation Tool (CSET)8
Evolving Risk Assessment Processes
Security Assurance Level
SAL-Based Assessments
SAL Workflow
Future of SAL
Security OEE
Putting OEE Metrics Together
Network-Centric Compromise Indicators
Other Network Infrastructure That Can Be Used for Network-Centric Analysis and ICS Security
Network-Centric Assessment Caveats
Conclusion
Endnotes

What Is Next in ICS Security?
The Internet of Things (IOT)
IPv6
ICS v6 Test Lab Designs
IPv6 and ICS Sensors
A Few Years Yet…
Endnotes