ICS Information Security

ICS Information Security Assurance Framework 21

March 17, 2020

What to Expect for ICS Security in the Coming Years

With the policy guidance of various ministries and commissions under the State Council, related  financial support, and the increased emphasis on ICS security by ICS enterprises, the ICS information security will get on the fast track of development. With the advancement of “one network, one database, and three platforms” proposed by the Ministry of Industry and Information Technology (MIIT), the introduction of Classified Protection of Information System Security 2.0 , and the introduction of Critical Information Infrastructure Security Protection Regulations , industrial security will see a very good opportunity for development. (more…)

ICS Information Security Assurance Framework 20

March 10, 2020

Petroleum and Petrochemical Industry

  • Overview

System introduction

Oil field exploitation is field work featuring strong fluidity, large quantities of scattered points, and a long distance. In the process of oil field exploitation, out of management requirements, the oil and gas management center connects to the gathering and transportation control center, gas processing plant control center, gas transmission initial station, and field control layer through an industrial network. Therefore, the system needs a large number of wired and wireless networks for data transmission and remote system management. (more…)

ICS Information Security Assurance Framework 19

March 6, 2020

Government Affairs

  • SCADA System Architecture Used in Water Affairs

The SCADA system used in water affairs mainly consists of the operator workstation, engineering workstation, SCADA system of the water intake pump room, SCADA system of the drug dosing room, SCADA system of the backwashing system, SCADA system of the water supply pump room, and SCADA system of the dewatering pump room. Figure 4.13 shows the architecture. (more…)

ICS Information Security Assurance Framework 18

March 4, 2020

Manufacturing Sector

  • Network Architecture of a Cigarette Factory

The network architecture of a cigarette factory consists of the production network and management network, as shown in Figure. (more…)

ICS Information Security Assurance Framework 17

February 17, 2020

Nuclear Power

The security scenario of the nuclear power plant is similar to that of the thermal power platform. For details, sees section 4.1.1. Generally, it contains the following contents: (more…)

ICS Information Security Assurance Framework 16

February 11, 2020

System Introduction

The computer monitoring system of the hydropower plant adopts a hierarchical distributed open system structure totally controlled by the computer, which consists of the main control layer of functions and the local control unit (LCU) layer of objects. The main control layer consists of the operator station, data server station, external communication station, internal communication station, engineering station, voice alert station, GPS time synchronization system, UPS power supply, and network devices. (more…)

ICS Information Security Assurance Framework 15

February 10, 2020

Wind Power

System Introduction

Based on computers, communication devices, and test control units, the wind power monitoring system provides a basic platform for real-time data collection, switch status monitoring, and remote control of wind power plants. It can work with detection and controls devices to form an arbitrarily complex monitoring system. It plays a vital role in the monitoring of wind power plants by helping enterprises eliminate information silos, reduce operating costs, improve production efficiency, and accelerate the speed of responding to anomalies in the process of power transformation and distribution. Figure 4.4 shows its system architecture Currently, the electric power monitoring system is vertically connected to dispatching planes 1 and 2 and the centralized control center of the wind power plant. (more…)

ICS Information Security Assurance Framework 14

February 7, 2020

ICS Security Solutions for Typical Industrial Scenarios

System Introduction

Based on computers, communication devices, and test control units, the electric power monitoring system provides a basic platform for real-time data collection, switch status monitoring, and remote control of thermal power plants. It can work with detection and controls devices to form an arbitrarily complex monitoring system. It plays a vital role in the monitoring of thermal power plants by helping enterprises eliminate information silos, reduce operating costs, improve production efficiency, and accelerate the speed of responding to anomalies in the process of power transformation and distribution. (more…)

ICS Information Security Assurance Framework 13

February 5, 2020

Policies for Building the Defense-in-Depth System for Industrial Control Networks

For the sake of ICS security protection, we can build a defense-in-depth system by implementing the following policies:

(more…)

ICS Information Security Assurance Framework 12

February 4, 2020

ICS Information Security Assurance Framework

ICS Security Assurance Principles

In response to related compliance requirements put forward by the industry and the country, the ICS information security assurance framework will be developed to combine both technology and management, taking full account of the enterprise’s business requirements and ICS operating characteristics. By switching ICS protection from deployment of security policies to that of security capabilities, such a framework aims to enable an all-around improvement in security technology and management capabilities for the purpose of integrating management, control, and defense. With this framework, enterprises’ security capabilities will gradually cover system go-live, operating, O&M, and inspection, achieving closed-loop security control and management for ICSs. (more…)