OT-Cybersecurity Tools and useful documents:
Download Pdf
2. Link to NIST: National Institute of Standards and Technology (NIST SP800-82 Rev.2, 2015):
Guide to Industrial Control Systems (ICS) Security.
4 Link to NIST: Cybersecurity Framework Manufacturing Profile Low Impact Level Example Implementations Guide Released September 30, 2019, Updated October 28, 2019, Goto NIST.
5. Currently IEC certification to the IEC 62443 series is provided under the IECEE System and more information about this can be found here or Goto IECEE
Onderzoek ICS TNO 2019-R11304:
Download Pdf
7. Link to: NCSC.NL – ICS/SCADA
8. Link to NCSC.NL (2015): ICT-Beveiligingsrichtlijnen voor Webapplicaties (6 docs)
9. Link to: NCSC.NL Factsheet 2016: ‘Uw ICS/SCADA- en gebouwbeheersystemen online’
10. Link to: US-Cert (2005): Backdoors and Holes in Network Perimeters: A Case Study for Improving Your Control System Security
11. Link to: DHS, ICS-Cert (2011): Catalog of Control Systems Security: Recommendations for Standards Developers
12. Link to: DHS, ICS-Cert (2009): Developing an Industrial Control Systems Cybersecurity Incident Response Capability
13. Link to: DHS, NCCIC/ICS-CERT (2014, 2015 and 2016): Industrial Control Systems Assessment Summary Reports (These reports provide a yearly summary of the US, to allow End-users proactively understand their vulnerability to cyber threats and measure their ICS security posture against accepted industry standards).
14. Link to: DHS, ICS-Cert: Cyber Security Procurement Language for Control Systems (2009) and Cybersecurity Procurement Language for Energy Delivery Systems (2014)
15. Link to: DHS, ICS-Cert (2011): Common Cyber Security Vulnerabilities in Industrial Control Systems
16. Link to: DHS, ICS-Cert (2010): Configuring and Managing Remote Access for Industrial Control Systems
17. Link to: DHS ICS-Cert: Recommended Practice: Improving Industrial Control Systems Cybersecurity with Defense-In-Depth Strategies
18. Link to: DHS ICS-Cert: Recommended Practices (8 practices)
- Updating Antivirus in an Industrial Control System – 2018
Full Updating Antivirus in an Industrial Control System document - Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies – 2016
Defense-in-Depth document - Creating Cyber Forensics Plans for Control Systems – 2008
Cyber Forensics Plan document - Developing an Industrial Control Systems Cybersecurity Incident Response Plan – 2009
Incident Response Plan document - Recommended Practice Case Study: Cross-Site Scripting – 2007
Cross-Site Scripting Case Study document - Patch Management for Control Systems – 2008
Patch Management document - Securing Control System Modems – 2008
Securing Control System Modems document - Remote Access for Industrial Control Systems – 2010
Remote Access document
19. Link to: DHS ICS-Cert 2008: Creating Cyber Forensics Plans for Control Systems
20. Link to: CPNI.UK 2019: IoT and ICS
21. Link to: NCSC.UK 2019: 10 steps to cyber security
22. Link to: NCSC.UK 2019: Advice & Guidance
23. Link to NCSC.UK: NCSC UK Common Cyber Attacks
24. Link to NCSC.UK: NCSC UK Cyber Security Small Business Guide 1.3
25. Link to: Swedish Civil Contingencies Agency (MSB) 2014: Guide to Increased Security in Industrial Information and Control Systems
26. Link to OPAF: OPA The Open Process Automation™ Business Guide (Ref: G182)
27. Link to OPAF: OPAS Part-1 p190-1 (Sample extract)
28. Link to OPAF: The Open Group Library (must login to download)
29. Link to McAfee: McAfee Labs report threats Aug 2019
.
Control & Automation Tools:
2. Site: Instrumentation Tutorials | Inst Tools
3. 17 Equations That Changed the World
.
.