Industrial network security: Securing critical infrastructure networks for smart grid, scada, and other industrial control systems

Industrial Network Security: Securing Critical Infrastructure Networks for Smart Grid, SCADA, and Other Industrial Control Systems

Volumn , Issue , 2011, Pages 1-341

  Knapp, Eric ^a  

^a NONE

Author keywords

[No Author keywords available]

Indexed keywords

COMPLIANCE CONTROL; CRITICAL INFRASTRUCTURES; ELECTRIC POWER SYSTEM SECURITY; ELECTRIC POWER TRANSMISSION NETWORKS; NETWORK PROTOCOLS; PUBLIC WORKS; REGULATORY COMPLIANCE; RISK ASSESSMENT; SCADA SYSTEMS; SMART POWER GRIDS; TRANSMISSION CONTROL PROTOCOL;

COMPLIANCE OFFICERS; DEPLOYMENT AND CONFIGURATION; INDUSTRIAL CONTROL SYSTEMS; INDUSTRIAL NETWORKS; SECURITY CONTROLS; SECURITY MEASURE; SECURITY PRACTICE; TRANSMISSION CONTROL PROTOCOL/INTERNET PROTOCOLS;

NETWORK SECURITY;

EID: 84987813232     PISSN: None     EISSN: None     Source Type: Book    
DOI: 10.1016/B978-1-59749-645-2.00024-0     Document Type: Book

References (186)

1. Department of Homeland Security, Homeland security presidential directive 7: critical infrastructure identification, prioritization, and protection. , September, 2008 (cited: November 1, 2010).
2. U.S. Nuclear Regulatory Commission, The NRC: who we are and what we do. (cited: November 1, 2010).
3. Department of Homeland Security, Homeland security presidential directive/HSPD-7. Roles and responsibilities of sector-specific federal agencies (18)(d). , September 2008 (cited: November 1, 2010).
4. J. Arlen, SCADA and ICS for security experts: how to avoid cyberdouchery. in: Proc. 2010 BlackHat Technical Conference, July 2010.
5. National Institute of Standards and Technology, Special Publication 800-53 Revision 3. Recommended Security Controls for Federal Information Systems and Organizations, August 2009, Computer Security Division, Information Technology Laboratory, National Institute of Standards and Technology, Gaithersburg, MD 20899-8930.
6. U.S. Nuclear Regulatory Commission, Regulatory Guide 5.71 (New Regulatory Guide) Cyber Security Programs for Nuclear Facilities, January 2010, U.S. Nuclear Regulatory Commission, Washington, DC.
7. National Institute of Standards and Technology, Special Publication 800-53 Revision 3. Recommended Security Controls for Federal Information Systems and Organizations, August 2009, Computer Security Division, Information Technology Laboratory, National Institute of Standards and Technology, Gaithersburg, MD.
8. Department of Homeland Security, Risk-based performance standards guidance; chemical facility anti-terrorism standards, Department of Homeland Security, Office of Infrastructure Protection, Infrastructure Security Compliance Division, Washington, DC, May 2009.
9. ANSI/ISA-TR99.00.01-2007, Security technologies for industrial automation and control systems, 2007, International Society of Automation (ISA), Research Triangle Park, NC.
10. International Standards Organization, ISO/IEC 27002:2005. Information Technology-Security Techniques-Code of Practice for Information Security Management, ISO/IEC, Geneva, Switzerland, 2005.
11. North American Electric Corporation, Standard CIP-002-3, Cyber Security, Critical Cyber Asset Identification, North American Electric Corporation (NERC), Princeton, NJ, December 16, 2009.
12. U.S. Nuclear Regulatory Commission, Regulatory Guide 5.71 (New Regulatory Guide) Cyber Security Programs for Nuclear Facilities, U.S. Nuclear Regulatory Commission, Washington, DC, January 2010.
13. ANSI/ISA-TR99.00.01-2007, Security technologies for industrial automation and control systems, 2007, International Society of Automation (ISA), Research Triangle Park, NC.
14. North American Electric Corporation, Standard CIP-002-3, Cyber Security, Critical Cyber Asset Identification, North American Electric Corporation (NERC), Princeton, NJ, December 16, 2009.
15. J. Pollet, Red Tiger, Electricity for free? The dirty underbelly of SCADA and smart meters, in: Proc. 2010 BlackHat Technical Conference, Las Vegas, NV, July 2010.
16. M.J. McDonald, G.N. Conrad, T.C. Service, R.H. Cassidy, SANDIA Report SAND2008-5954, Cyber Effects Analysis Using VCSE Promoting Control System Reliability, Sandia National Laboratories Albuquerque, New Mexico and Livermore, California, September 2008.
17. A. Giani, S. Sastry, K.H. Johansson, H.Sandberg, The VIKING Project: An Initiative on Resilient Control of Power Networks, Department of Electrical Engineering and Computer Sciences, University of California at Berkeley, and School of Electrical Engineering, Royal Institute of Technology (KTH), Berkeley, CA, 2009.
18. K. Stouffer, J. Falco, K. Scarfone, National Institute of Standards and Technology, Special Publication 800-82 (Final Public Draft), Guide to Industrial Control Systems (ICS) Security, Computer Security Division, Information Technology Laboratory, National Institute of Standards and Technology Gaithersburg, MD and Intelligent Systems Division, Manufacturing Engineering Laboratory, National Institute of Standards and Technology Gaithersburg, MD, September 2008.
19. T. Smith, The Register. Hacker jailed for revenge sewage attacks. , October 31, 2001 (cited: November 3, 2010).
20. J. Meserve, http://CNN.com. Sources: Staged cyber attack reveals vulnerability in power grid.
21. , September 26, 2007 (cited: November 3, 2010).
22. North American Reliability Corporation, Press Release: NERC Issues AURORA Alert to Industry, October 14, 2010.
23. CBS News, Cyber war: sabotaging the system. , November 8, 2009 (cited: November 3, 2010).
24. McAfee Threat Center, Operation Aurora. (cited: November 4, 2010).
25. Industrial Control Systems Cyber Emergency Response Team (ICS-CERT), ICSA-10-238-01-STUXNET MALWARE MITIGATION, Department of Homeland Security, US-CERT, Washington, DC, August 26, 2010.
26. E. Chien, Symantec. Stuxnet: a breakthrough. , November 2010 (cited: November 16, 2010).
27. N. Falliere, L.O Murchu, E. Chien, Symantec. W32.Stuxnet Dossier, Version 1.1, October 2010.
28. N. Falliere, L.O. Murchu, E. Chien, Symantec, W32.Stuxnet Dossier, Version 1.3, October 2010.
29. Global Energy Cyberattacks: "Night Dragon," McAfee Foundstone Professional Services and McAfee Labs, Santa Clara, CA, February 10, 2011.
30. J. Pollet, Red Tiger, Understanding the advanced persistent threat, in: Proc. 2010 SANS European SCADA and Process Control Security Summit, Stockholm, Sweden, October 2010.
31. North American Reliability Corporation, NERC Releases Alert on Malware Targeting SCADA Systems, September 14, 2010.
32. J. Pollet, Red Tiger, Understanding the advanced persistent threat, in: Proc. 2010 SANS European SCADA and Process Control Security Summit, Stockholm, Sweden, October 2010.
33. K. Harms, Mandiant, Keynote on advanced persistent threat, in: Proc. 2010 SCADA Security Scientific Symposium (S4), Miami, FL, January 2010.
34. J. Pollet, Red Tiger, Understanding the advanced persistent threat, in: Proc. 2010 SANS European SCADA and Process Control Security Summit, Stockholm, Sweden, October 2010.
35. N. Falliere, L.O. Murchu, E. Chien, Symantec. W32.Stuxnet Dossier, Version 1.1, October 2010.
36. J. Pollet, Red Tiger, Understanding the advanced persistent threat, in: Proc. 2010 SANS European SCADA and Process Control Security Summit, Stockholm, Sweden, October 2010.
37. D. Stevens, Escape from PDF. , March 2010 (cited: November 4, 2010).
38. M86 Security Labs, PDF "Launch" Feature Used to Install Zeus. , April 14, 2010 (cited: November 4, 2010).
39. J. Conway, http://www.Sudosecure.net.
40. Worm-Able PDF Clarification. , April 4, 2010 (cited: November 4, 2010).
41. Cisco Systems, 2Q10 Global Threat Report, 2010.
42. Social Engineering Framework, Computer based social engineering tools: Social Engineer Toolkit (SET). .
43. J. Nazario, Arbor networks. Twitter-based Botnet Command Channel. , August 13, 2009 (cited: November 4, 2010).
44. J. Pollet, Red Tiger, Understanding the advanced persistent threat, in: Proc. 2010 SANS European SCADA and Process Control Security Summit, Stockholm, Sweden, October 2010.
45. D. Peterson, Italian researcher publishes 34 ICS vulnerabilities. Digital Bond. , March 21, 2011 (cited: April 4, 2011).
46. D. Peterson, Friday News and Notes. , March 25, 2011 (cited: April 4, 2011).
47. US Department of Homeland Security, US-CERT, Recommended Practice: Improving Industrial Control Systems Cybersecurity with Defense-In-Depth Strategies, Washington, DC, October 2009.
48. Screenshot, Mandiant’s Memoryze memory analysis software. (cited: October 26, 2010).
49. The Modbus Organization, Modbus Application Protocol Specification V1.1b. , December 2006 (cited: November 24, 2010).
50. J.T. Michalski, A. Lanzone, J. Trent, S. Smith, SANDIA Report SAND2007-3345: Secure ICCP Integration Considerations and Recommendations, Sandia National Laboratories, Albuquerque, New Mexico and Livermore, California, June 2007.
51. The DNP Users Group, DNP3 Primer, Revision A. , March 2005 (cited: November 24, 2010).
52. G.R. Clarke, Deon Reynders Practical Modern SCADA Protocols: DNP3, 60870.5 and Related Systems, Newnes, Oxford, UK and Burlington MA, 2004.
53. The DNP Users Group, DNP3 Primer, Revision A. , March 2005 (cited: November 24, 2010).
54. Digitalbond SCADAPEDIA, Secure DNP3. , August 2008 (cited: November 24, 2010).
55. The DNP Users Group, DNP3 Primer, Revision A. , March, 2005 (cited: November 24, 2010).
56. A.B.M. Omar Faruk, Testing & Exploring Vulnerabilities of the Applications Implementing DNP3 Protocol, KTH Electrical Engineering, Stockholm, Sweden, June 2008.
57. The OPC Foundation OPC Task Force, OPC Overview Version 1.0. , October 27, 1998 (cited: November 24, 2010).
58. Digital Bond, British Columbia Institute of Technology, and Byres Research. OPC Security White Paper #2: OPC Exposed (Version 1-3c), Byres Research, Lantzville, BC and Sunrise, FL, November 13, 2007.
59. Microsoft Corporation, RPC Protocol Operation. (cited: November 4, 2010).
60. European Organization for Nuclear Research (CERN), A Brief Introduction to OPC™ Data Access. , November 11, 2000 (cited: November 29, 2010).
61. Digital Bond, British Columbia Institute of Technology, and Byres Research, OPC Security White Paper #1 Understanding OPC and How It Is Deployed (Version 1-3b), Byres Research, Lantzville, BC and Sunrise, FL, July 27, 2007.
62. Digital Bond, British Columbia Institute of Technology, and Byres Research. OPC Security White Paper #2: OPC Exposed (Version 1-3c), Byres Research, Lantzville, BC and Sunrise, FL, November 13, 2007.
63. ODVA, CIP Technology Overview. , 2010 (cited: November 24, 2010), Saarbrücken, Germany.
64. V.M. Igure, Security assessment of SCADA protocols: a taxonomy based methodology for the identification of security vulnerabilities in SCADA protocols, VDM Verlag Dr. Müller Aktiengesellschaft & Co. KG, 2008.
65. The EtherCAT Technology Group, Technical introduction and overview: EtherCAT-the Ethernet Fieldbus. , May 10, 2010 (cited: November 24, 2010).
66. P. Doyle, Introduction to Real-Time Ethernet II. The Extension: A Technical Supplement to Control Network, vol. 5, Issue 4, Contemporary Control Systems, Inc., Downers Grove, IL, July 2004.
67. Ethernet POWERLINK Standardization Group, CANopen. , 2009 (cited: November 24, 2010).
68. SERCOS International, Technology: Introduction to SERCOS interface. , 2010 (cited: November 24, 2010).
69. SERCOS International, Technology: Cyclic Operation. , 2010 (cited: November 24, 2010).
70. SERCOS International, Technology: Service & IP Channels. , 2010 (cited: November 24, 2010).
71. UCA® International Users Group, AMI-SEC Task Force, AMI System Security Requirements, UCA, Raleigh, NC, December 17, 2008.
72. National Institute of Standards and Technology, NIST Special Publication 1108: NIST Framework and Roadmap for Smart Grid Interoperability Standards, Release 1.0, February 2010.
73. UCA® International Users Group, AMI-SEC Task Force, AMI System Security Requirements, UCA, Raleigh, NC, December 17, 2008.
74. http://PLCTutor.com, Ladder logic.
75. , October 19, 2000 (cited: November 29, 2010).
76. P. Melore, PLC operations. , (cited: November 29, 2010).
77. P. Melore, The guts inside. , (cited: November 29, 2010).
78. http://PLCTutor.com, PLC operations.
79. , October, 19, 2000 (cited: November 29, 2010).
80. OSIsoft, OSIsoft company overview. , 2010 (cited: November 29, 2010).
81. J. Larson, Idaho National Laboratories, Control systems at risk: sophisticated penetration testers show how to get through the defenses, in: Proc. 2009 SANS European SCADA and Process Control Security Summit, October, 2009.
82. The Modbus Organization, Modbus application protocol specification V1.1b, Modbus Organization, Inc. Hopkinton, MA, December 2006.
83. E. Chien, Symantec. Stuxnet: a breakthrough. , November, 2010 (cited: November 16, 2010).
84. G. Locke, US Department of Commerce and Patrick D. Gallagher, National Institute of Standards and Technology, Smart Grid Cyber Security Strategy and Recommendations, Draft NISTIR 7628, NIST Computer Security Resource Center, Gaithersburg, MD, February 2010.
85. UCA® International Users Group, AMI-SEC Task Force, AMI system security requirements, UCA, Raleigh, NC, Dec 17, 2008.
86. Raymond C. Parks, SANDIA Report SAND2007-7327, Advanced Metering Infrastructure Security Considerations, Sandia National Laboratories, Albuquerque, New Mexico and Livermore, California, November 2007.
87. S. McClure, J. Scambray, G. Kurtz, Hacking Exposed: Network Security Secrets and Solutions, McGraw Hill, 1999.
88. Computer Based Social Engineering Tools: Social Engineer Toolkit (SET). 2010 (cited: December 23, 2010).
89. S. McClure, J. Scambray, G. Kurtz, Hacking Exposed: Network Security Secrets and Solutions, McGraw Hill, 1999.
90. http://nmap.org.
91. Introduction. , 2010 (cited: December 23, 2010).
92. http://nmap.org.
93. Nmap Reference Guide. , 2010 (cited: December 23, 2010).
94. S. McClure, J. Scambray, G. Kurtz, Hacking Exposed: Network Security Secrets and Solutions, McGraw Hill, 1999.
95. Rapid7 LLC. The Metasploit framework. , 2010 (cited: December 23, 2010).
96. B. Sterling, The advanced persistent threat attack. January 30, 2010 (cited: December 23, 2010).
97. http://www.zdnet.com/blog/security/shodan-search-exposes-insecure-scada-systems/7611.
98. S. McClure, J. Scambray, G. Kurtz, Hacking Exposed: Network Security Secrets and Solutions, McGraw Hill, 1999.
99. M. Franz, DNP3 Recon, Digital bond. , October 18, 2006 (cited December 23, 2010).
100. N. Falliere, L.O. Murchu, E. Chien, Symantec, W32.Stuxnet Dossier, Version 1.3, October 2010.
101. K. Stouffer, J. Falco, K. Scarfone, National Institute of Standards and Technology, Special Publication 800-82 (Final Public Draft), Guide to Industrial Control Systems (ICS) Security, Section 6.3.1 Identification and Authentication, September, 2008.
102. S. McClure, J. Scambray, G. Kurtz, Hacking Exposed: Network Security Secrets and Solutions, McGraw Hill, 1999.
103. K. Stouffer, J. Falco, K. Scarfone, National Institute of Standards and Technology. Special Publication 800-82 (Final Public Draft), Guide to Industrial Control Systems (ICS) Security, September 2008.
104. The SANS Institute, Top cyber security risks; executive summary. , 2010 (cited: December 23, 2010).
105. J. Pollet, Electricity for free? The dirty underbelly of SCADA and Smart Meters. Red Tiger Security. in: Proc. 2010 BlackHat Technical Conference, July, 2010.
106. United States Computer Emergency Readiness Team (US-CERT), Overview of cyber vulnerabilities. , 2010 (cited: December 23, 2010).
107. United States Computer Emergency Readiness Team (US-CERT), Overview of cyber vulnerabilities. , 2010 (cited: December 23, 2010).
108. http://Wi-Foo.com, Recon and attack tools. , 2006 (cited: December 23, 2010).
109. J. Larson, Idaho National Laboratories, Control systems at risk: sophisticated penetration testers show how to get through the defenses. in: Proc. 2009 SANS European SCADA and Process Control Security Summit, October, 2009.
110. S4 Briefings book (Wi-Fi jamming presentation).
111. United States Computer Emergency Readiness Team (US-CERT), Overview of cyber vulnerabilities. , 2010 (cited: December 23, 2010).
112. K. Stouffer, J. Falco, K. Scarfone, National Institute of Standards and Technology, Special Publication 800-82 (Final Public Draft), Guide to Industrial Control Systems (ICS) Security, September, 2008.
113. Rapid7, LLC, Press Release: Rapid7 acquires metasploit. , October 21, 2009 (cited: December 23, 2010).
114. P. Mell, T. Bergeron, D. Henning, Special Publication 800-40 Version 2, Creating a Patch and Vulnerability Management Program, National Institute of Standards and Technology (NIST), November, 2005.
115. D.P. Duggan, Sandia Report SAND2005-2846P, Penetration Testing of Industrial Control Systems, Sandia National Laboratories, March, 2005.
116. R. Deraison, R. Gula, T. Hayton, Passive vulnerability scanning introduction (revision 14), tenable network security, , October 13, 2009 (cited: December 23, 2010).
117. D.P. Duggan, Sandia Report SAND2005-2846P, Penetration Testing of Industrial Control Systems, Sandia National Laboratories, March, 2005.
118. Digital Bond SCADApedia, Bandolier and NERC CIP. , 2010 (cited: December 23, 2010).
119. Digital Bond, Bandolier. , 2010 (cited: December 23, 2010).
120. Control Systems Security Program (CSSP), Cyber Security Evaluation Tool: overview, United States Computer Emergency Readiness Team (US-CERT). , 2010 (cited: December 23, 2010).
121. P. Mell, T. Bergeron, D. Henning, Special Publication 800-40, Version 2, Creating a Patch and Vulnerability Management Program, National Institute of Standards and Technology (NIST), November, 2005.
122. K. Stouffer, J. Falco, K. Scarfone, National Institute of Standards and Technology, Special Publication 800-82 (Final Public Draft), Guide to Industrial Control Systems (ICS) Security, Section 6.3.1 Identification and Authentication, September, 2008.
123. U.S. Nuclear Regulatory Commission, Regulatory Guide 5.71 (New Regulatory Guide), Cyber Security Programs for Nuclear Facilities, January, 2010.
124. D. Taylor, Intrusion detection FAQ: are there vulnerabilities in VLAN implementations? VLAN Security Test Report, The SANS Institute. , July 12, 2000 (cited: January 19, 2011).
125. U.S. Nuclear Regulatory Commission, 73.54 Protection of digital computer and communication systems and networks. , March 27, 2009 (cited: January 19, 2011).
126. North American Reliability Corporation, Standard CIP-002-3. Cyber Security-Critical Cyber Asset Identification. , December 16, 2009 (cited: January 19, 2011).
127. North American Reliability Corporation, Standard CIP-005-3. Cyber Security-Electronic Security Perimeter(s). , December 16, 2009 (cited: January 19, 2011).
128. North American Reliability Corporation, Standard CIP-003-3. Cyber Security-Security Management Controls. , December 16, 2009 (cited: January 19, 2011).
129. North American Reliability Corporation, Standard CIP-005-3. Cyber Security-Electronic Security Perimeter(s). , December 16, 2009 (cited: January 19, 2011).
130. International Society of Automation, Standard ANSI/ISA-99.02.01-2009, Industrial Automation and Control System Security.
131. Department of Homeland Security, Risk-Based Performance Standards Guidance, Chemical Facility Anti-Terrorism Standards, May, 2009.
132. North American Reliability Corporation, Standard CIP-008-3. Cyber Security-Incident Reporting and Response Planning. , December 16, 2009 (cited: January 19, 2011).
133. International Society of Automation, Standard ANSI/ISA-99.02.01-2009, Industrial Automation and Control System Security.
134. Department of Homeland Security, Risk-Based Performance Standards Guidance, Chemical Facility Anti-Terrorism Standards, May, 2009.
135. U.S. Nuclear Regulatory Commission, Regulatory Guide 5.71 (New Regulatory Guide), Cyber Security Programs for Nuclear Facilities, January, 2010.
136. National Infrastructure Security Coordination Center, NISCC Good Practice Guide on Firewall Deployment for SCADA and Process Control Networks, British Columbia Institute of Technology (BCIT), February 15, 2005.
137. http://www.Snort.org, SNORT Users Manual 2.9.0.
138. , December 2, 2010 (cited: January 19, 2011).
139. NitroSecurity, Inc., Network Threat and Analysis Center, http://www.Nitrosecurity.com, January, 2011.
140. K. Stouffer, J. Falco, K. Scarfone, National Institute of Standards and Technology, Special Publication 800-82 (Final Public Draft), Guide to Industrial Control Systems (ICS) Security, Section 6.3.1 Identification and Authentication, September, 2008.
141. F. Salo, Anomaly Detection Systems: Context Sensitive Analytics. NitroSecurity, Inc. Portsmouth, NH, December 2009.
142. B. Singer, Correlating Risk Events and Process Trends. Proceedings of the SCADA Security Scientific Symposium (S4). Kenexis Security Corporation and Digital Bond Press, Sunrise, FL, 2010.
143. R. Kay, QuickStudy: event correlation. http://Computerworld.com
144. , July 28, 2003 (cited: February 13, 2011).
145. Softpanorama, Event correlation technologies. , January 10, 2002 (cited: February 13, 2011).
146. The MITRE Corporation, About CEE (common event expression). , May 27, 2010 (cited: February 13, 2011).
147. M. Leland, Zero-day correlation: building a taxonomy. NitroSecurity, Inc. , May 6, 2009 (cited: February 13, 2011).
148. The MITRE Corporation, About CEE (common event expression). , May 27, 2010 (cited: February 13, 2011).
149. A. Chuvakin, Content aware SIEM. , February 2000 (cited: January 19, 2011).
150. B. Singer, Correlating risk events and process trends. Proceedings of the SCADA Security Scientific Symposium (S4). Kenexis Security Corporation and Digital Bond Press, 2010, Sunrise, FL.
151. J.M. Butler. Benchmarking Security Information Event Management (SIEM). The SANS Institute Analytics Program, February, 2009.
152. Microsoft. Windows Management Instrumentation. , January 6, 2011 (cited: March 3, 2011).
153. National Institute of Standards and Technology, Special Publication 800-53 Revision 3. Recommended Security Controls for Federal Information Systems and Organizations, August, 2009.
154. http://sFlow.org.
155. Traffic Monitoring using sFlow. , 2003 (cited: March 3, 2011).
156. B. Singer, Kenexis Security Corporation, in: D. Peterson (Ed.), Proceedings of the SCADA Security Scientific Symposium, 2: Correlating Risk Events and Process Trends to Improve Reliability, Digital Bond Press, 2010.
157. Securonix, Inc., Securonix Indentity Matcher: Overview. , 2003 (cited: March 3, 2011).
158. A. Chuvakin, Content Aware SIEM. February, 2000 (cited: January 19, 2011).
159. M. Nicolett, K.M. Kavanagh, Magic quadrant for security information and event management, Gartner Document ID Number: G00176034, May 13, 2010.
160. J.M. Butler, Benchmarking Security Information Event Management (SIEM). The SANS Institute Analytics Program, February, 2009.
161. North American Electric Reliability Corporation. NERC CIP Reliability Standards, version 4. February 3, 2011 (cited: March 3, 2011).
162. M. Asante, NERC, Harder questions on CIP compliance update: ask the expert, 2010 SCADA and Process Control Summit, The SANS Institute, March 29, 2010.
163. North American Reliability Corporation, Standard CIP-001-4-Sabotage Reporting. , February 3, 2011 (cited: March 3, 2011).
164. North American Reliability Corporation, Standard CIP-002-4-Cyber Security-Critical Cyber Asset Identification. , February 3, 2011 (cited: March 3, 2011).
165. North American Reliability Corporation, Standard CIP-003-4-Cyber Security-Security Management Controls. , February 3, 2011 (cited: March 3, 2011).
166. North American Reliability Corporation, Standard CIP-004-4-Cyber Security-Personnel and Training. , February 3, 2011 (cited: March 3, 2011).
167. North American Reliability Corporation, Standard CIP-005-4-Cyber Security-Electronic Security Perimeter(s). , February 3, 2011 (cited: March 3, 2011).
168. North American Reliability Corporation, Standard CIP-006-4-Cyber Security-Physical Security of Critical Cyber Assets. , February 3, 2011 (cited: March 3, 2011).
169. North American Reliability Corporation, Standard CIP-007-4-Cyber Security-Systems Security Management. , February 3, 2011 (cited: March 3, 2011).
170. North American Reliability Corporation, Standard CIP-008-4-Cyber Security-Incident Reporting and Response Planning. , February 3, 2011 (cited: March 3, 2011).
171. North American Reliability Corporation, Standard CIP-001-9-Cyber Security-Recovery Plans for Critical Cyber Assets. , February 3, 2011 (cited: March 3, 2011).
172. Department of Homeland Security, Risk-Based Performance Standards Guidance; Chemical Facility Anti-Terrorism Standards, May 2009.
173. International Standards Organization/International Electrotechnical Commission (ISO/IEC), About ISO. http://www.iso.org/iso/about.htm (cited: March 21, 2011).
174. International Standards Organization/International Electrotechnical Commission (ISO/IEC), International ISO/IEC Standard 27002:2005 (E), Information Technology-Security Techniques-Code of Practice for Information Security Management, first edition 2005-06-15.
175. U.S. Nuclear Regulatory Commission, Regulatory Guide 5.71 (New Regulatory Guide) Cyber Security Programs for Nuclear Facilities, January 2010.
176. K. Stouffer, J. Falco, K. Scarfone, National Institute of Standards and Technology, Special Publication 800-82 (Final Public Draft), Guide to Industrial Control Systems (ICS) Security, September 2008.
177. The Unified Compliance Framework, What is the UCF? (cited: March 21, 2011).
178. The Common Criteria Working Group, Common Criteria for Information Technology Security Evaluation, Part 1: Introduction and General Model, Version 3.1, Revision 3 Final, July 2009.
179. The Common Criteria Working Group, Common Criteria for Information Technology Security Evaluation, Part 3: Security Assurance Components, Version 3.1, Revision 3 Final, July 2009.
180. National Institute of Standards and Technology, Information Technology Laboratory, Federal Information Processing Standards Publication 140-2, Security Requirements for Cryptographic Modules, May 25, 2001.
181. J. Larson, Idaho National Laboratories, Control systems at risk: sophisticated penetration testers show how to get through the defenses, in: Proc. 2009 SANS European SCADA and Process Control Security Summit, October, 2009.
182. J. Brodsky, A. McConnell, M. Cajina, D. Peterson, Security and reliability of wireless LAN protocol stacks used in control systems, in: Proc. SCADA Security Scientific Symposium (S4), Kenexis Security Corporation, 2010, Digital Bond Press.
183. J. Pollet, R. Tiger, Electricity for free? The dirty underbelly of SCADA and Smart Meters, in: Proc. 2010 BlackHat Technical Conference, July, 2010.
184. C. Sullo, http://CIRT.net. Default passwords. , October 4, 2007 (cited: March 15, 2011).
185. I. Spaanjaars, Regular expression for a strong password. , May 14, 2004 (cited: March 15, 2011).
186. J.M. Butler, Benchmarking security information event management (SIEM), The SANS Institute Analytics Program, February, 2009.