Stuxnet and Industrial Control System Security

The Stuxnet virus has generated a lot of renewed interest in network security for industrial control systems. The following are some of the general tips that come from major controls manufacturers:

• Disable the Autoplay feature for CD players and for removable drives and implement a strict policy for the use of USB drives on all enterprise and control system networks
• Ensure all PCs run anti-virus and anti-malware software and keep definitions up to date
• Follow a regimented and timely patch management process
• Double-check before automatically following all Microsoft patch and workaround recommendations. Some Microsoft patches will interfere with control system communications.

Physical firewalls can be incorporated into networks to further improve your control system security. Use firewalls to create secure network compartments and create appropriate firewall rules that only allow authorized access to the secure compartment. Disable all unused switch ports, disallow all external drive usage, and eliminate unnecessary user access inside the secure compartment.

More information is available on Rockwell Automation controls on the Rockwell Automation website at http://www.rockwellautomation.com/solutions/security/ and in the Security Table of Contents note on the Knowledgebase.

More information about Siemens control systems can be found on the Siemens site at http://support.automation.siemens.com/WW/llisapi.dll?func=cslib.csinfo&lang=en&objid=43876783&caller=view.

Doug Brock has a broad range of factory automation and wholesale distribution experience and is an expert on the application of the Baldrige Criteria for continuous improvement efforts. www.dougbrock.com

Related posts:

1. Siemens Industrial Automation Systems Under Malware Threat
2. Siemens Touts Compact Design For New Sirius Industrial Controls
3. SoftDEL launches Aerodel Director – Industrial Wireless Network Management System