|
The goal of the DHS National Cyber Security Division's CSSP is to reduce control system risks within and across all critical infrastructure sectors by coordinating efforts among federal, state, local, and tribal governments, as well as control systems owners, operators and vendors. The CSSP coordinates activities to reduce the likelihood of success and severity of impact of a cyber attack against critical infrastructure control systems through risk-mitigation activities. These risk-mitigation activities have resulted in the following tools:
To obtain additional information or request involvement or assistance, contact cssp@hq.dhs.gov. Article in Government Technologyhighlights new ICSJWG
The U.S. Department of Homeland Security has created a collaborative venture for public-and private-sector organizations in order to nip problems in the bud that are associated with industrial control systems--at least the ones that can be nipped by computer. The Control Systems Security Program (CSSP), offered by the Department of Homeland Security's National Cybersecurity Division, has created the Industrial Control Systems Joint Working Group (ICSJWG) to allow the federal government to work with vendors and state and local agencies to address high-tech issues in their operations. For more information, go to http://www.govtech.com/gt/articles/625825 [Date: 09 March 2009]. Recommended Practice for Patch Management of Control Systems Patch management of industrial control systems is critical to resolve security vulnerabilites and functional issues. The objective of a patch management program is to create a consistently configured environment that is secure against known vulnerabilities in operating system and application software. However, a single solution does not exist that adequately addresses the patch management processes of both traditional information technology (IT) data networks and industrial control systems (ICSs). While IT patching typically requires relatively frequent downtime to deploy critical patches, any sudden or unexpected downtime of ICSs can have serious operational consequences. As a result, there are more stringent requirements for patch validation prior to implementation in ICS networks. The Department of Homeland Security (DHS) Control Systems Security Program (CSSP) recognizes that control systems owners/operators should have an integrated plan that identifies a separate approach to patch management for ICS. This document specifically identifies issues and recommends practices for ICS patch management in order to strengthen overall ICS security. |
What's New
The CSSP announces the Industrial Control Systems Joint Working Group (ICSJWG).
Listen to Digital Bond's Dale Peterson interview Sean McGurk, the Director of the DHS Control System Security Program. GE Fanuc Proficy HMI/SCADA iFIX uses insecure authentication techniques AREVA e-terrahabitat SCADA systems vulnerabilities added to Vulnerability Notes A presentation on the Cyber Security Procurement Language for Control Systems was given at the SANS Process Control & SCADA Security Summit 2009. Download the presentation that was given and/or the document itself. February 5, 2009 GoAhead Webserver Information Disclosure Vulnerability added to Vulnerability Notes February 5, 2009 Rockwell Automation ControlLogix 1756-ENBT/A EtherNet/IP Bridge URL Redirection Vulnerability added to Vulnerability Notes February 5, 2009 Rockwell Automation ControlLogix 1756-ENBT/A EtherNet/IP Bridge Cross-site Scripting Vulnerability added to Vulnerability Notes February 5, 2009 Automated Solutions Modbus TCP Slave ActiveX Control Vulnerability added to Vulnerability Notes January 28, 2009 HighlightsRecommended Practice: Creating Cyber Forensics Plans for Control Systems This document addresses the issues encountered in developing and maintaining a cyber forensics plan for control systems environments. This recommended practice supports forensic practitioners in creating a control systems forensics plan, and assumes evidentiary data collection and preservation using forensic best practices. The goal of this recommended practice is not to reinvent proven methods, but to leverage them in the best possible way. As such, the material in this recommended practice provides users with the appropriate foundation to allow these best practices to be effective in a control systems domain. ReportingThe CSSP is interested in learning of suspicious cyber incidents which occur within or may have an impact on the control systems environment. Use the buttons to the left to report cyber-related incidents and vulnerabilities to the Control Systems Security Center at US-CERT.
|
Get Adobe Reader