This week I was looking at Control Engineering e-magazine and noted that they had a survey on ICS security. The question posed was:
The poll result is shown in the graphic below and you can add your own vote at Link.
What disturbs me about the poll results is the majority of those responding to this unscientific survey have "...no idea such a resource was available." This tells me that the ICS security community needs to do more work publicizing its resources in order to help the field engineers make their ICS systems more secure.
So, to help in this regard, here are some resources you will find extremely useful in helping to better understand the current ICS security vulnerabilities and how to better defend your ICS networks:
Excellent "Textbooks" and Desk References:
- NIST 800-82, Guide to Industrial Controls Systems Security Rev. 1 (Free)
- Industrial Network Security by Eric D. Knapp
- ENISA Protecting Industrial Control Systems (Free)
- ICS-CERT Recommended Practices (Free)
- ICS-CERT List of ICS-Related Standards and Practices (Free)
Excellent Resources on ICS Security Vulnerabilities, Protective Actions
- ICS-CERT Advisories **
- ICS-CERT Alerts **
- ICS-CERT Monitor Newsletters **
- ICS-CERT Joint Security Awareness Reports (JSARs) **
- National SCADA Test Bed (NSTB)
- SANS ICS
- Tofino Security
- Digital Bond
What Else?There are many other resources that include vendor notifications and alerts as well as other resources from standards organizations such as ISA but the above list of links is an excellent starting point for you to gather references and subscribe to data feeds from ICS-CERT.
Overall, though, it is our job in the Security Community to help everyone realize what resources exist in the world to provide guidance on securing critical infrastructure and industrial control systems.