Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Industrial Cybersecurity Efficiently secure critical infrastructure systems

Product type Paperback

Published in Oct 2017

Publisher Packt

ISBN-13 9781788395151

Length 456 pages

Edition 1st Edition

Concepts

Cybersecurity

Author (1):

Pascal Ackerman

View More author details

Table of Contents (13) Chapters

Preface

1. Industrial Control Systems

2. Insecure by Inheritance FREE CHAPTER

3. Anatomy of an ICS Attack Scenario

4. Industrial Control System Risk Assessment

5. The Purdue Model and a Converged Plantwide Ethernet

6. The Defense-in-depth Model

7. Physical ICS Security

8. ICS Network Security

9. ICS Computer Security

10. ICS Application Security

11. ICS Device Security

12. The ICS Cybersecurity Program Development Process

Common IT protocols found in the ICS

Although not directly industrial control protocols by themselves, the upcoming sections are a list of common IT protocols that can be found on OT networks. The list includes a summarization of their well-known vulnerabilities.

HTTP

Many ICS devices will have built-in diagnostic web pages and some form of web server to allow access to the diagnostic pages. HTTP is known to have the following vulnerabilities:

Vulnerable HTTP server application code
Hard coded credentials
SQL injection
Cross-site scripting
Broken authentication and session management
Insecure direct object references
Cross-site request forgery
Security misconfiguration
Insecure cryptographic storage
Failure to restrict URL...

You have been reading a chapter from

Industrial Cybersecurity

Published in: Oct 2017

Publisher: Packt

ISBN-13: 9781788395151

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Pascal Ackerman

Pascal Ackerman is a seasoned industrial security professional with a degree in electrical engineering and over 20 years of experience in industrial network design and support, information and network security, risk assessments, pentesting, threat hunting, and forensics. After almost two decades of hands-on, in-the-field, and consulting experience, he joined ThreatGEN in 2019 and is currently employed as managing director of threat services and research. His passion lies in analyzing new and existing threats to ICS environments and he fights cyber adversaries both from his home base and while traveling the world with his family as a digital nomad. Pascal wrote the previous edition of this book and has been a reviewer and technical consultant of many security books.

See other products by Pascal Ackerman