{"title":"整合OT数据采集设备的网络弹性策略","authors":"Noe Nevarez","doi":"10.52096/usbd.7.30.33","DOIUrl":null,"url":null,"abstract":"Operational Technology (OT), Industrial Control Systems (ICS), and Supervisory Control and Data Acquisition (SCADA) devices have been around in some form since the 1960s and they control specific functions in many critical industries such as electrical power generation, oil refineries, and water treatment plants. Since most are integrated with IT-based protocols (e.g., TCP/IP), there has been an explosion of OT control systems to provide meaningful information to businesses. While OT and IT speak a common language, this has exposed OT to much more Cyber Attacks that were once applied only to IT-based systems. Data Acquisition Devices (DAS), such as those manufactured by Moxa, now have ethernet ports to provide this link between both networks. The combination of new ethernet-capable OT devices, and those using upgraded converters (e.g., Moxa) for older OT devices, has primarily increased the attack surface. This study proposes a secure layered architecture that can be deployed to limit security threats for ethernet-capable (DAS) devices. The current state of many organizations is the lack of visibility of their OT assets and a knowledge gap on how to secure them. Keywords—Control systems, Cyber attacks, Cybersecurity resilience, Operational technology","PeriodicalId":30893,"journal":{"name":"International Journal of Social Sciences Educational Studies","volume":"41 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2023-07-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Integrating Cyber Resilience Strategies for OT Data Acquisition Devices\",\"authors\":\"Noe Nevarez\",\"doi\":\"10.52096/usbd.7.30.33\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Operational Technology (OT), Industrial Control Systems (ICS), and Supervisory Control and Data Acquisition (SCADA) devices have been around in some form since the 1960s and they control specific functions in many critical industries such as electrical power generation, oil refineries, and water treatment plants. Since most are integrated with IT-based protocols (e.g., TCP/IP), there has been an explosion of OT control systems to provide meaningful information to businesses. While OT and IT speak a common language, this has exposed OT to much more Cyber Attacks that were once applied only to IT-based systems. Data Acquisition Devices (DAS), such as those manufactured by Moxa, now have ethernet ports to provide this link between both networks. The combination of new ethernet-capable OT devices, and those using upgraded converters (e.g., Moxa) for older OT devices, has primarily increased the attack surface. This study proposes a secure layered architecture that can be deployed to limit security threats for ethernet-capable (DAS) devices. The current state of many organizations is the lack of visibility of their OT assets and a knowledge gap on how to secure them. Keywords—Control systems, Cyber attacks, Cybersecurity resilience, Operational technology\",\"PeriodicalId\":30893,\"journal\":{\"name\":\"International Journal of Social Sciences Educational Studies\",\"volume\":\"41 1\",\"pages\":\"\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2023-07-30\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"International Journal of Social Sciences Educational Studies\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.52096/usbd.7.30.33\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Social Sciences Educational Studies","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.52096/usbd.7.30.33","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Integrating Cyber Resilience Strategies for OT Data Acquisition Devices
Operational Technology (OT), Industrial Control Systems (ICS), and Supervisory Control and Data Acquisition (SCADA) devices have been around in some form since the 1960s and they control specific functions in many critical industries such as electrical power generation, oil refineries, and water treatment plants. Since most are integrated with IT-based protocols (e.g., TCP/IP), there has been an explosion of OT control systems to provide meaningful information to businesses. While OT and IT speak a common language, this has exposed OT to much more Cyber Attacks that were once applied only to IT-based systems. Data Acquisition Devices (DAS), such as those manufactured by Moxa, now have ethernet ports to provide this link between both networks. The combination of new ethernet-capable OT devices, and those using upgraded converters (e.g., Moxa) for older OT devices, has primarily increased the attack surface. This study proposes a secure layered architecture that can be deployed to limit security threats for ethernet-capable (DAS) devices. The current state of many organizations is the lack of visibility of their OT assets and a knowledge gap on how to secure them. Keywords—Control systems, Cyber attacks, Cybersecurity resilience, Operational technology
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
