+ All Categories
Home > Documents > Accelerating Cyber Security Improvements for Critical … · 2017. 4. 6. · Accelerating Cyber...

Accelerating Cyber Security Improvements for Critical … · 2017. 4. 6. · Accelerating Cyber...

Date post: 25-Sep-2020
Category:

Documents
Upload: others
View: 2 times
Download: 0 times
Download Report this document
Share this document with a friend
1
Accelerating Cyber Security Improvements for Critical Infrastructure Control Systems J.E. Dietz, J. Lerums 1. Abstract Despite robust cybersecurity standards and vendor solutions, U.S. critical infrastructure experienced a 20% annual increase in cyber incidents during federal FY 2015. This study introduces operational concepts for accelerating necessary cyber security improvements. 2. Motivation Critical infrastructure control systems cyber attacks are no longer theoretical. On 12/23/14 over 200,000 Ukrainian electric customers lost power for over five hours due to a cyberattack. As with interruption of power, disruption of industrial control systems for other critical infrastructures (e.g. water, natural gas, transportation, manufacturing) could result in potentially catastrophic and cascading endangerment to life, safety, and health. 3. Problem Legacy industrial control systems without cyber security capabilities. Under pressure to do more with less, organizations have integrated their operational controls systems’ networks with their business networks as a means of improving efficiency. This has inturn exposed previously isolated control systems to cyber attacks. 4. Methodology Conduct a gap analysis of what is preventing acceleration of critical infrastructure cyber security improvements by applying DoD’s DOTMLPFP methodology to a state’s critical infrastructure utilities. 5. Findings Findings (Cont.) Identifying gaps is necessary but not sufficient to accelerate improvements in cybersecurity. Ensuring that cybersecurity organizational roles, responsibilities, synchronization, and timing are identified and executed. 6. Results/Conclusion – For one state’s critical infrastructure cybersecurity, standards, assessment tools, vendor solutions and facilities are sufficient. Cybersecurity organizations, training, and leadership is being addressed. There are shortfalls in qualified personnel and regulations. Accelerating cybersecurity improvements will be dependent upon execution of organizational roles, responsibilities, synchronization, and timing. 7. Future Work – Quantifying the number and types of vulnerable systems in the state’s critical infrastructure utilities. Identifying gaps in organizational roles, responsibilities, synchronization, and timing necessary to accelerate improvements.
Transcript
Page 1: Accelerating Cyber Security Improvements for Critical … · 2017. 4. 6. · Accelerating Cyber Security Improvements for Critical Infrastructure Control Systems J.E. Dietz, J. Lerums

Accelerating Cyber Security Improvements for Critical Infrastructure Control SystemsJ.E. Dietz, J. Lerums

1. Abstract ‐ Despite robust cybersecurity standards and vendor solutions, U.S. critical infrastructure experienced a 20% annual increase in cyber incidents during federal FY 2015. This study introduces operational concepts for accelerating necessary cyber security improvements.

2. Motivation ‐ Critical infrastructure control systems 

cyber attacks are no longer theoretical.  On 12/23/14 over 200,000 Ukrainian electric customers lost power for over five hours due to a cyber‐attack.  As with interruption of power, disruption of industrial control systems for other critical infrastructures (e.g. water, natural gas, transportation, manufacturing) could result in potentially catastrophic and cascading endangerment to life, safety, and health.

3. Problem ‐ Legacy industrial control systems without 

cyber security capabilities.  Under pressure to do more with less, organizations have integrated their operational controls systems’ networks with their business networks as a means of improving efficiency.  This has in‐turn exposed previously isolated control systems to cyber attacks.

4. Methodology ‐ Conduct a gap analysis of what is preventing acceleration of critical infrastructure cyber security improvements by applying DoD’s DOTMLPF‐P methodology to a state’s critical infrastructure utilities. 

5. Findings ‐

Findings (Cont.) ‐ Identifying gaps is necessary but not sufficient to accelerate improvements in cybersecurity.  Ensuring that cybersecurity organizational roles, responsibilities, synchronization, and timing are identified and executed.

6. Results/Conclusion – For one state’s critical infrastructure 

cybersecurity, standards, assessment tools, vendor solutions and facilities are sufficient.  Cybersecurity organizations, training, and leadership is being addressed.  There are shortfalls in qualified personnel and regulations.  Accelerating cybersecurity improvements will be dependent upon execution of organizational roles, responsibilities, synchronization, and timing.

7. Future Work – Quantifying the number and types of 

vulnerable systems in the state’s critical infrastructure utilities.  Identifying gaps in organizational roles, responsibilities, synchronization, and timing necessary to accelerate improvements.

Recommended
“Saving One Million Lives” Accelerating improvements in ... 0.pdf · NPHCDA National Primary Health Care Development Agency ... marches towards attaining Universal Health Coverage,

“Saving One Million Lives” Accelerating improvements in ... 0.pdf · NPHCDA National Primary Health Care Development Agency ... marches towards attaining Universal Health Coverage,

Documents

Ontario Energy Board Cyber Security Framework Accelerating ...stratejm.com/wp-content/uploads/2017/09/Stratejm...Operations Technology (OT), are most often implemented using SCADA-based

Ontario Energy Board Cyber Security Framework Accelerating ...stratejm.com/wp-content/uploads/2017/09/Stratejm...Operations Technology (OT), are most often implemented using SCADA-based

Documents

opencaselist13.paperlessdebate.com  · Web view1AC. Adv 1 - Arms Race. The cyber arms race is accelerating — major attacks are inevitable this year — the best data proves. Goldman

opencaselist13.paperlessdebate.com  · Web view1AC. Adv 1 - Arms Race. The cyber arms race is accelerating — major attacks are inevitable this year — the best data proves. Goldman

Documents

Accelerating Energy-Efficiency Improvements in Room Air ...Accelerating Energy-Efficiency Improvements in Room Air Conditioners in India: Potential, Costs-Benefits, and Policies Nikit

Accelerating Energy-Efficiency Improvements in Room Air ...Accelerating Energy-Efficiency Improvements in Room Air Conditioners in India: Potential, Costs-Benefits, and Policies Nikit

Documents

TRENDS IN ACCELERATING PERFORMANCE IMPROVEMENTS€¦ · ACCELERATING PERFORMANCE IMPROVEMENTS WITH MODERNIZED OPERATIONAL TECHNOLOGY IN THE INDUSTRIAL SECTOR PAGE 3 PREPARING FOR

TRENDS IN ACCELERATING PERFORMANCE IMPROVEMENTS€¦ · ACCELERATING PERFORMANCE IMPROVEMENTS WITH MODERNIZED OPERATIONAL TECHNOLOGY IN THE INDUSTRIAL SECTOR PAGE 3 PREPARING FOR

Documents

Delivering innovation that matters using cyber physical systems · patient-friendly and tailored… the greatest progress is being made where governments are accelerating innovation

Delivering innovation that matters using cyber physical systems · patient-friendly and tailored… the greatest progress is being made where governments are accelerating innovation

Documents

2017 Cost of Cyber Crime Study | Accenture · PDF file2017 COST OF CYBER CRIME STUDY > 3 Over the last two years, the accelerating cost of cyber crime means that it is now 23 percent

2017 Cost of Cyber Crime Study | Accenture · PDF file2017 COST OF CYBER CRIME STUDY > 3 Over the last two years, the accelerating cost of cyber crime means that it is now 23 percent

Documents

Resist Improvements needed for EUVL Extensionieuvi.org/TWG/Resist/2012/093012/9__Resist_for_EUVL_extension.pdf · Accelerating the next technology ... • Data here is not exactly

Resist Improvements needed for EUVL Extensionieuvi.org/TWG/Resist/2012/093012/9__Resist_for_EUVL_extension.pdf · Accelerating the next technology ... • Data here is not exactly

Documents

opencaselist13.paperlessdebate.com  · Web viewContention 1 is Arms Races. The cyber arms race is accelerating — major attacks are inevitable this year — the best data proves.

opencaselist13.paperlessdebate.com  · Web viewContention 1 is Arms Races. The cyber arms race is accelerating — major attacks are inevitable this year — the best data proves.

Documents

Accelerating Energy Efficiency Improvements in Room Air ...this report, we assess the technical feasibility and costs and benefits of accelerating the efficiency ... This document

Accelerating Energy Efficiency Improvements in Room Air ...this report, we assess the technical feasibility and costs and benefits of accelerating the efficiency ... This document

Documents

C d Cyber Incident Sharing Center (CISC) · 2019-08-15 · CSA Cloud Cyber Incident Sharing Center Cloud adoption is progressing at an accelerating pace. We are concerned that the

C d Cyber Incident Sharing Center (CISC) · 2019-08-15 · CSA Cloud Cyber Incident Sharing Center Cloud adoption is progressing at an accelerating pace. We are concerned that the

Documents

CYBER SECURITY OPERATIONS CENTRE - C-MRiC … · 2. Business requirements should drive cyber security strategy, and CSOC capabilities & scope. 3. Continuous improvements , including

CYBER SECURITY OPERATIONS CENTRE - C-MRiC … · 2. Business requirements should drive cyber security strategy, and CSOC capabilities & scope. 3. Continuous improvements , including

Documents

ACCELERATING NUTRITION IMPROVEMENTS IN … IMPROVEMENTS IN SUB-SAHARAN AFRICA ... The scale-up component of Accelerating Nutrition Improvements in sub-Saharan Africa ... nutrition

ACCELERATING NUTRITION IMPROVEMENTS IN … IMPROVEMENTS IN SUB-SAHARAN AFRICA ... The scale-up component of Accelerating Nutrition Improvements in sub-Saharan Africa ... nutrition

Documents

ACCELERATING LATTICE QCD MULTIGRID ON GPUS USING … · MULTIGRID FUTURE WORK • Absolute Performance tuning, e.g., half precision on coarse grids • Strong scaling improvements:

ACCELERATING LATTICE QCD MULTIGRID ON GPUS USING … · MULTIGRID FUTURE WORK • Absolute Performance tuning, e.g., half precision on coarse grids • Strong scaling improvements:

Documents

2017 Cost of Cyber Crime Study | Accenture€¦ · 2017 COST OF CYBER CRIME STUDY > 3 Over the last two years, the accelerating cost of cyber crime means that it is now 23 percent

2017 Cost of Cyber Crime Study | Accenture€¦ · 2017 COST OF CYBER CRIME STUDY > 3 Over the last two years, the accelerating cost of cyber crime means that it is now 23 percent

Documents

Accelerating your law firm’s response to cyber threats · cyber-attacks? Managed Detection and Response (MDR) integrates the dedicated experts, technology and intelligence needed

Accelerating your law firm’s response to cyber threats · cyber-attacks? Managed Detection and Response (MDR) integrates the dedicated experts, technology and intelligence needed

Documents

ecd.usaid.gov · Web viewAdditionally, improvements were made in family doctor and nursing skills, and independent family medicine practices were introduced. Armenia will be accelerating

ecd.usaid.gov · Web viewAdditionally, improvements were made in family doctor and nursing skills, and independent family medicine practices were introduced. Armenia will be accelerating

Documents

ABB Ability™ cyber security services - library.e.abb.com · activity, security vulnerabilities and best practice improvements within your system. Respond Incident response We can

ABB Ability™ cyber security services - library.e.abb.com · activity, security vulnerabilities and best practice improvements within your system. Respond Incident response We can

Documents