Practical Industrial Cybersecurity - Ics, Industry 4.0, and Iiot

Read more

A practical roadmap to protecting against cyberattacks in industrial environments
 
In Practical Industrial Cybersecurity: ICS, Industry 4.0, and IIoT, veteran electronics and computer security author Charles J. Brooks and electrical grid cybersecurity expert Philip Craig deliver an authoritative and robust discussion of how to meet modern industrial cybersecurity challenges. The book outlines the tools and techniques used by practitioners in the industry today, as well as the foundations of the professional cybersecurity skillset required to succeed on the SANS Global Industrial Cyber Security Professional (GICSP) exam.
 
Full of hands-on explanations and practical guidance, this book also includes:
* Comprehensive coverage consistent with the National Institute of Standards and Technology guidelines for establishing secure industrial control systems (ICS)
* Rigorous explorations of ICS architecture, module and element hardening, security assessment, security governance, risk management, and more
 
Practical Industrial Cybersecurity is an indispensable read for anyone preparing for the Global Industrial Cyber Security Professional (GICSP) exam offered by the Global Information Assurance Certification (GIAC). It also belongs on the bookshelves of cybersecurity personnel at industrial process control and utility companies.
 
Practical Industrial Cybersecurity provides key insights to the Purdue ANSI/ISA 95 Industrial Network Security reference model and how it is implemented from the production floor level to the Internet connection of the corporate network. It is a valuable tool for professionals already working in the ICS/Utility network environment, IT cybersecurity personnel transitioning to the OT network environment, and those looking for a rewarding entry point into the cybersecurity field.

List of contents

Introduction xxiii
 
Chapter 1 Industrial Control Systems 1
 
Introduction 2
 
Basic Process Control Systems 3
 
Closed- Loop Control Systems 5
 
Industrial Process Controllers 6
 
Supervisory Control and Data Acquisition Systems 20
 
System Telemetry 21
 
Utility Networks 23
 
OT/IT Network Integration 25
 
Industrial Safety and Protection Systems 28
 
Safety Instrument Systems 29
 
Review Questions 39
 
Exam Questions 41
 
Chapter 2 ICS Architecture 43
 
Introduction 44
 
Network Transmission Media 45
 
Copper Cabling 45
 
Fiber- Optic Cabling 46
 
Industrial Network Media Standards 49
 
Ethernet Connectivity 52
 
External Network Communications 53
 
Transmission Media Vulnerabilities 55
 
Field Device Architecture 56
 
PLC I/O Sections 58
 
PLC Implementations 62
 
Industrial Sensors 63
 
Final Control Elements/Actuators 71
 
Relays 73
 
Process Units 76
 
Industrial Network Protocols 79
 
Common Industrial Protocols 79
 
EtherNet/IP Protocol 79
 
Modbus 80
 
ProfiNet/ProfiBus 81
 
Dnp3 82
 
Iccp 83
 
Opc 83
 
BACnet 83
 
Enterprise Network Protocols 84
 
Tcp/ip 84
 
Dynamic Host Configuration Protocol 89
 
Review Questions 90
 
Exam Questions 91
 
Chapter 3 Secure ICS Architecture 95
 
Introduction 96
 
Boundary Protection 97
 
Firewalls 98
 
Proxies 104
 
Security Topologies 105
 
Network Switches 106
 
Routers 108
 
Security Zoning Models 109
 
Flat Network Topologies 113
 
Network Segmentation 122
 
Controlling Intersegment Data Movement 128
 
Tunneling 128
 
Wireless Networking 129
 
Wireless Sensors 131
 
Wireless Gateways 134
 
Modems 135
 
Review Questions 137
 
Exam Questions 139
 
Chapter 4 ICS Module and Element Hardening 143
 
Introduction 145
 
Endpoint Security and Hardening 145
 
User Workstation Hardening 145
 
BIOS Security Subsystems 147
 
Additional Outer Perimeter Access Hardening 148
 
Mobile Device Protection 154
 
OS Security/Hardening 155
 
File System Security 156
 
Operating System Security Choices 160
 
Linux SystemV vs Systemd 160
 
Hardening Operating Systems 162
 
Common Operating System Security Tools 162
 
Virtualization 169
 
Application Software Security 172
 
Software Exploitation 172
 
Information Leakage 173
 
Applying Software Updates and Patches 174
 
Database Hardening 174
 
SQL Injection 175
 
Anti-Malware 177
 
Antivirus 178
 
Anti-spyware 178
 
Anti- Malware: Sanitization 181
 
Embedded Device Security 182
 
Meters 184
 
Network Hardening 189
 
OT/IT Network Security 189
 
Server Security 191
 
Hardening the Server OS 193
 
Logical Server Access Control 194
 
Hardening Network Connectivity Devices 196
 
Review Questions 201
 
Exam Questions 202
 
Chapter 5 Cybersecurity Essentials for ICS 205
 
Introduction 207
 
Basic Security Tenets 208
 
Confidentiality, Integrity, and Availability 208
 
Availability in ICS Networks 209
 
Nonrepudiation 210
 
Principle of Least Privil

About the author

CHARLES J. BROOKS is the co-Owner and Vice President of Educational Technologies Group Inc and the co-Owner of eITPrep LLP. He oversees research and product development at those organizations and has authored several books, including the A+ Certification Training Guide and The Complete Introductory Computer Course. For the past eight years Charles has been lecturing and providing Instructor training for cybersecurity teachers throughout the U.S. and abroad. His latest projects have been associated with IT and OT cybersecurity courses and hands-on lab activities that include Cybersecurity Essentials - Concepts & Practices; Cybersecurity Essentials - Environments & Testing; and Industrial Network Cybersecurity.
PHILIP A. CRAIG JR is the founder of BlackByte Cyber Security, LLC, a consultancy formed to develop new cybersecurity tools and tactics for use in U.S Critical Infrastructure. He oversees research and product development for the U.S. Department of Energy (DOE), the Defense Advanced Research Projects Agency (DARPA), and the National Rural Electric Cooperative Association (NRECA), as well as providing expert knowledge in next generation signal isolation techniques to protect automated controls in energy generation, transmission, and distribution systems. Mr. Craig has authored regulation for both the Nuclear Regulatory Commission (NRC) and National Energy Reliability Corporation (NERC) and is an active cyber responder in federal partnerships for incident response.

Summary

A practical roadmap to protecting against cyberattacks in industrial environments

In Practical Industrial Cybersecurity: ICS, Industry 4.0, and IIoT, veteran electronics and computer security author Charles J. Brooks and electrical grid cybersecurity expert Philip Craig deliver an authoritative and robust discussion of how to meet modern industrial cybersecurity challenges. The book outlines the tools and techniques used by practitioners in the industry today, as well as the foundations of the professional cybersecurity skillset required to succeed on the SANS Global Industrial Cyber Security Professional (GICSP) exam.

Full of hands-on explanations and practical guidance, this book also includes:
* Comprehensive coverage consistent with the National Institute of Standards and Technology guidelines for establishing secure industrial control systems (ICS)
* Rigorous explorations of ICS architecture, module and element hardening, security assessment, security governance, risk management, and more

Practical Industrial Cybersecurity is an indispensable read for anyone preparing for the Global Industrial Cyber Security Professional (GICSP) exam offered by the Global Information Assurance Certification (GIAC). It also belongs on the bookshelves of cybersecurity personnel at industrial process control and utility companies.

Practical Industrial Cybersecurity provides key insights to the Purdue ANSI/ISA 95 Industrial Network Security reference model and how it is implemented from the production floor level to the Internet connection of the corporate network. It is a valuable tool for professionals already working in the ICS/Utility network environment, IT cybersecurity personnel transitioning to the OT network environment, and those looking for a rewarding entry point into the cybersecurity field.