Ensuring cybersecurity of ACS TP energy company based on the construction of protected enclaves
DOI: 10.31673/2409-7292.2021.021112
DOI:
https://doi.org/10.31673/2409-7292.2021.021112Abstract
The paper presents basic information about systems and networks of automated process control systems and identifies trends in their modern development. New tasks of increase of their safety are formulated, both at the stage of the analysis of separate functional knots, and creation of system and a network as a whole according to technical requirements. Different types of constructions of protected enclaves are investigated and recommendations on their choice depending on the set technical requirements to the system and taking into account the criticality of the systems are made. The technology of enclave protection is studied taking into account the criticality of assets.
Keywords: Cybersecurity, SCADA, energy, ACS, automated control systems, enclaves.
References
1. Kim Zetter. Countdown to Zero Day. Stuxnet and the Launch of the World`s First Digital Weapon - Published in the United States by Crown Publishers, an imprint of the Crown Publishing Group, a division of Random House LLC, a Penguin Random House Company, New York. – 2016. – 319p.
2. Gabrielle Desarnaud. Cyber Attacks and Energy Infrastractures. Anticipating Risks - Etudes de l'Ifri – 2017.-60p.
3. Eric D. Knapp Industrial Network Security - 225 Wyman Street, Waltham, MA 02451, USA – 2015.- 360p.
4. APT-атаки на топливно-энергетический комплекс: обзор тактик и техник [Электронный ресурс] – Режим доступа: World Wide Web. – URL: https://www.ptsecurity.com/ru-ru/research/analytics/apt-attacks-energy-2019/
5. Почему защита АСУ ТП сегодня стала критически важной? [Электронный ресурс] – Режим доступа: World Wide Web. – URL: https://www.securitylab.ru/analytics/484730.php
6. Безопасность от кибератак и аварий в АСУ ТП [Электронный ресурс] – Режим доступа: World Wide Web. – URL: https://automation-system.ru/main/11-asutp/asu-tp/468-security-asutp.html
7. NERC Critical Infrastructure Protection (CIP), NERC CIP [Електронний ресурс] – Режим доступу: World Wide Web. – URL: https://www.nerc.com/pa/Stand/Pages/CIPStandards. aspx
8. NIST SP 800-82 [Електронний ресурс] – Режим доступу: World Wide Web. – URL: https://csrc.nist.gov/publications/detail/sp/800-82/archive/2011-06-09#:~:text=NIST%20Special%20Publication%20(SP)%20800,control%20system%20configurations%20such%20as
9. Nuclear Regulatory Commission Regulation 5.71 [Електронний ресурс] – Режим доступу: World Wide Web. – URL: https://www.nrc.gov/docs/ML0903/ML090340159.pdf
10. Довгуша І.М., Кітура О.В. Безпека автоматизованих систем управління технологічними процесами / Довгуша І.М., Кітура О.В. // Актуальні проблеми кібербезпки: всеукраїнська наукова конференція, тези доп. – К., 2020. С.91-92.
