ENISA publishes report on how to protect ICS-SCADA systems
- Published: Wednesday, 08 February 2017 07:23
ENISA has released a study on the ‘Communication network dependencies for ICS-SCADA Systems’. The report identifies good practices and recommendations to help the security of ICS-SCADA against cyber threats.
Opening ICS-SCADA systems and architectures to networks, and the Internet in particular, has extended their capabilities but also increased the threats to such systems.
ENISA’s study on communication network dependencies aims to help asset owners defend their critical infrastructures from emerging cyber threats. The main objective is to provide insight into the communication network interdependencies currently present in industrial infrastructures and environments, mapping critical assets, assessing possible attacks and identifying potential good practices and security measures to apply.
After having mapped the most critical assets through interviews with experts in the field, the three most worrying potential attack scenarios, considering their potential impact and the assets that could be affected, were developed. Taking into consideration the experts’ views on available standards, good practices and security measures, and a series of recommendations have been developed including, among others, the following:
- Include security as a main consideration during the design phase of ICS-SCADA systems;
- Establish brainstorming and communication channels for the different participants in the lifecycle of the devices to exchange needs and solutions;
- Include the periodic ICS-SCADA device update process as part of the main operations of the systems.