C.H.I.P.S. HOME PAGE
SAFETY/SECURITY CATALOG
TITLE LIST
MANUAL ORDER FORM
ONLINE ORDER FORM
QUESTIONS COMMENTS

System Safety and Security book from C.H.I.P.S.
Cybersecurity for SCADA Systems
by William T. Shaw

Cybersecurity for SCADA Systems efficiently manages utility assets, refineries and other critical industrial segments, but protects SCADA networks from cyber attacks, hackers and even physical assault.

Cybersecurity for SCADA Systems provides:

  • Functional breakdown and explanation of the typical features, capabilities, and components of a SCADA system
  • IT and cybersecurity technology and terminology overview and explanation
  • Industry-specific as well as generalized discussion of SCADA vulnerabilities and available remediation strategies
  • Discussion of physical and electronic security issues and strategies

Contents

Introduction to SCADA Systems

The Technological Evolution of SCADA Systems

  • The Early History of SCADA—Mainframes
  • Minicomputers and Microprocessors
  • Central Architectures
  • Distributed Architectures
  • Client/Server Designs
  • Technological Convergence
  • Generalized Software Architecture

Remote Terminal Units

  • Basic Features and Functions
  • Smart RTU Technologies
  • Top-Down and Bottom-Up Configuration
  • The Emergence of PLCs
  • Legacy Protocols
  • Protocol Standards
  • IP-Ready RTUs and Protocols

Telecommunications Technologies

  • Voice-Grade (Analog) Telephony
  • Commercial Voice/Data Carriers
  • Options for Wireless Communications
  • Digital Networking Technologies
  • TCP/IP Networking
  • The Internet

Supervisory Control Applications

  • Operating Systems Utilities
  • SCADA System Utilities
  • Program Development Tools
  • Standardized APIs

Operator Interface

  • Access-Control Mechanisms
  • Standard System Displays
  • Site/Industry-Specific Displays
  • Historical Trending
  • Logs and Reports

Conventional Information Technology Security

  • Availability, Intregrity, and Confidentiality
  • Remote Access
  • TCP/IP Suite
  • Firewalls
  • Wireless LANs
  • Authentication and Validation
  • Encryption and Ciphers

Cybersecurity Principles, Processes, and Technologies

Identifying Cybersecurity Vulnerabilities

  • Threats and Threat Agents
  • Obvious Points of Attack and Vulnerability
  • Most Frequently Used Means of Attack
  • Probablility of Attack
  • Guesstimating the Impact of a Successful Attack
  • Risk Assessment

Classifying Cyber Atacks and Cyber Threats

  • Web Site/SQL Attacks
  • E-mail-Attacks
  • Malware
  • Remote Control/Usage
  • Zombie Recruitment
  • Firewall Configuration

Physical Security

  • Access Controls
  • Access Tracking
  • Illegal-Entry Alarms
  • Physical Isolation of Assets: Layers of Defense
  • Physical Protection of Materials and Information
  • Critical Ancillary Subsystems
  • Remote and Field Sites

Operational Security

  • Policies and Administrative Controls
  • Procedures
  • Operational Differences
  • Training
  • Recovery Procedures
  • Annual Review
  • Background Checks

Electronic/Systems Security

  • Removable Media
  • Mobile Electronics
  • Computer Systems

Electric Utility Industry-Specific Cybersecurity Issues

  • Substation Back Doors
  • IP to the Substation
  • TASE.2/ICCP Connections
  • UCA2.0 (IEC 61850)
  • DNP3.0
  • NERC 1200/1300 Compliance

Industrial Sectors

Water/Wastewater Industry--Specific Cybersecurity Issues

  • Licensed Radio Communications
  • Nonsecure Protocols
  • PLC Equipment as RTUs
  • Supervisory and Local Control Applications
  • Municipal LANs and WANs
  • Control Intrerfaces to Plant Control Systems
  • IP to the Field

Pipeline industry--Specific Cybersecurity Issues

  • Radio Communications
  • Smart RTUs
  • RTU Program Logic
  • Supervisory Control Applications
  • IP Along the Pipeline
  • Web Browsing and E-Mail Integration

The Emerging Cyber Threat to SCADA Systerms

SCADA Security Architectures

Commercial Hardware and Software Vulnerabilities

  • Operating System
  • TCP/IP
  • Web Site/Server
  • Relational Databases
  • OPC
  • DCOM
  • X-Window
  • Firewalls

Traditional Security Features of SCADA Systems

  • Procedures and Policies
  • User Access
  • System Configuration
  • Application Development
  • System Physical Security
  • Communications
  • Remote Access
  • Interoperability

Eliminating the Vulnerabilities of Traditional SCADA Systems

  • Technical Security Strategies
  • Nontechnical Approaches

Index

Appendexes

  • The Department of Energy's "21 Steps to Improved SCADA Security"
  • NERC 1300—Recommendations for Electric Utilities
  • Security Recommendations of the Instruments, Systems, and Automation Society and the American Gas Association
  • Industry and Government Security Recommendations
  • SCADA System Security Assessment Checklists

click here to see books • videos • cd-roms of related interest

ORDER NOW

Cybersecurtiy for SCADA Systems
by William T. Shaw
2006 • 562 pages • $88.00 + shipping
Texas residents please add 6.75 % sales tax

copyright © 1997-2007 Culinary and Hospitality Industry Publications Services