Difference between revisions of "Industrial Automation Control System"
(→Russian Federation) |
|||
| Line 18: | Line 18: | ||
==== Russian Federation ==== | ==== Russian Federation ==== | ||
{{definition|A ''(critical)'' automated control system of production and technological processes of [[Critical Infrastructure|critical infrastructure]] of the Russian Federation is a set of hardware and software, information systems and information and telecommunication networks designed to meet the challenges of operational management and control of the various processes and technical objects in the organisation of production or process critical facility, a violation (or termination) of the operation which may [[harm]] the interests of the foreign policy of the Russian Federation, the cause of accidents and [[disaster|disasters]], riots, long stops transport, industrial or technological processes, disorganisation of institutions, businesses or organisations that material [[damage]] on a large scale, the death or serious injury of at least one person and (or) other severe consequences (further - serious consequences). <br /><br />автоматизированная система управления производственными и технологическими процессами критически важного объекта инфраструктуры Российской Федерации (далее - автоматизированная система управления КВО) - комплекс аппаратных и программных средств, информационных систем и информационно- телекоммуникационных сетей, предназначенных для решения задач оперативного управления и контроля за различными процессами и техническими объектами в рамках организации производства или технологического процесса критически важного объекта, нарушение (или прекращение) функционирования которых может нанести вред внешнеполитическим интересам Российской Федерации, стать причиной аварий и катастроф, массовых беспорядков, длительных остановок транспорта, производственных или технологических процессов, дезорганизации работы учреждений, предприятий или организаций, нанесения материального ущерба в крупном размере, смерти или нанесения тяжкого вреда здоровью хотя бы одного человека и (или) иных тяжелых последствий (далее - тяжкие последствия). <ref>[http://www.scrf.gov.ru/documents/6/113.html NATIONAL SECURITY OF RUSSIA - Information security (February 3, 2012, № 803)]</ref>}}<br /><br /> | {{definition|A ''(critical)'' automated control system of production and technological processes of [[Critical Infrastructure|critical infrastructure]] of the Russian Federation is a set of hardware and software, information systems and information and telecommunication networks designed to meet the challenges of operational management and control of the various processes and technical objects in the organisation of production or process critical facility, a violation (or termination) of the operation which may [[harm]] the interests of the foreign policy of the Russian Federation, the cause of accidents and [[disaster|disasters]], riots, long stops transport, industrial or technological processes, disorganisation of institutions, businesses or organisations that material [[damage]] on a large scale, the death or serious injury of at least one person and (or) other severe consequences (further - serious consequences). <br /><br />автоматизированная система управления производственными и технологическими процессами критически важного объекта инфраструктуры Российской Федерации (далее - автоматизированная система управления КВО) - комплекс аппаратных и программных средств, информационных систем и информационно- телекоммуникационных сетей, предназначенных для решения задач оперативного управления и контроля за различными процессами и техническими объектами в рамках организации производства или технологического процесса критически важного объекта, нарушение (или прекращение) функционирования которых может нанести вред внешнеполитическим интересам Российской Федерации, стать причиной аварий и катастроф, массовых беспорядков, длительных остановок транспорта, производственных или технологических процессов, дезорганизации работы учреждений, предприятий или организаций, нанесения материального ущерба в крупном размере, смерти или нанесения тяжкого вреда здоровью хотя бы одного человека и (или) иных тяжелых последствий (далее - тяжкие последствия). <ref>[http://www.scrf.gov.ru/documents/6/113.html NATIONAL SECURITY OF RUSSIA - Information security (February 3, 2012, № 803)]</ref>}}<br /><br /> | ||
| − | + | ==== United States ==== | |
| + | {{definition|''Control Systems'': Computer-based systems used within many infrastructure and industries to monitor and control sensitive processes and physical functions. These systems typically collect measurement and operational data from the field, process and display the information, and relay control commands to local or remote equipment or human-machine interfaces (operators). <ref>[http://www.dhs.gov/sites/default/files/publications/NIPP%202013_Partnering%20for%20Critical%20Infrastructure%20Security%20and%20Resilience_508_0.pdf NIPP 2013: Partnering for Critical Infrastructure Security and Resilience (2013)]</ref>}} Examples of types of control systems include SCADA systems, Process Control Systems, and Distributed Control Systems. <br /><br /> | ||
===Standard Definition=== | ===Standard Definition=== | ||
==== ISA-62443-1-1 ==== | ==== ISA-62443-1-1 ==== | ||
| Line 47: | Line 48: | ||
[[Category:System]] | [[Category:System]] | ||
| − | {{#set:defined by=ISA|defined by=Lithuania|defined by=Russian Federation}} | + | {{#set:defined by=ISA|defined by=Lithuania|defined by=Russian Federation|defined by=United States}} |
Revision as of 00:43, 28 June 2015
Industrial control system (ICS) is a general term that encompasses several types of control systems, including supervisory control and data acquisition (SCADA) systems, Distributed Control Systems (DCS), and other \control system configurations such as skid-mounted Programmable Logic Controllers (PLC) often found in the industrial sectors and critical infrastructures. ICSs are typically used in industries such as electrical, water and wastewater, oil and natural gas, chemical, transportation, pharmaceutical, pulp and paper, food and beverage, and discrete manufacturing (e.g., automotive, aerospace, and durable goods). [1]
While control systems used in distribution and manufacturing industries are very similar in operation, they are different in some aspects. One of the primary differences is that DCS or |PLC-controlled sub-systems are usually located within a more confined factory or plant-centric area, when compared to geographically dispersed SCADA field sites. DCS and |PLC communications are usually performed using local area network (LAN) technologies that are typically more reliable and high speed compared to the long-distance communication systems used by SCADA systems. In fact, SCADA systems are specifically designed to handle long-distance communication challenges such as delays and data loss
posed by the various communication media used. DCS and PLC systems usually employ greater degrees of closed loop control than SCADA systems because the control of industrial processes is typically more complicated than the supervisory control of distribution processes. [1]
Contents
Definitions
National Definitions
Lithuania
Pramoninių procesų valdymo sistema – iš informacinėmis ir ryšių technologijomis grindžiamos įrangos sudaryta sistema, skirta technologiniams procesams stebėti ar valdyti pramonės, energetikos, transporto, vandens tiekimo paslaugų ir kituose ūkinės veiklos sektoriuose. [2]
Russian Federation
автоматизированная система управления производственными и технологическими процессами критически важного объекта инфраструктуры Российской Федерации (далее - автоматизированная система управления КВО) - комплекс аппаратных и программных средств, информационных систем и информационно- телекоммуникационных сетей, предназначенных для решения задач оперативного управления и контроля за различными процессами и техническими объектами в рамках организации производства или технологического процесса критически важного объекта, нарушение (или прекращение) функционирования которых может нанести вред внешнеполитическим интересам Российской Федерации, стать причиной аварий и катастроф, массовых беспорядков, длительных остановок транспорта, производственных или технологических процессов, дезорганизации работы учреждений, предприятий или организаций, нанесения материального ущерба в крупном размере, смерти или нанесения тяжкого вреда здоровью хотя бы одного человека и (или) иных тяжелых последствий (далее - тяжкие последствия). [3]
United States
Examples of types of control systems include SCADA systems, Process Control Systems, and Distributed Control Systems.
Standard Definition
ISA-62443-1-1
ISA-62443-3-3
Cyber Security Good Practice for Industrial Automation Control Systems
Global Conference on CyberSpace 2015 (GCCS2015)
Cyber Security of Industrial Control Systems [6]: Crucial processes in most critical infrastructures, and in many other organisations, rely on the correct and undisturbed functioning of Industrial Automation Control Systems. A failure of ICS may both cause critical services to fail and may result in safety risk to people and or the environment. Therefore, their cyber security and resilience is of utmost importance to society as a whole, to utilities and other critical infrastructure operators, and to organisations which use IACS. This good practice document provides private and public sector executives with an Executive Summary outlining the ICS risk and challenges. The document provides governmental policy-makers, technical managers, ICS suppliers and others involved in the ICS domain with background and security awareness information about the cyber security challenges for ICS. Moreover, the document provides a perspective for action and pointers to seventy relevant resources.
See also
Notes
- ↑ Jump up to: 1.0 1.1 K. Stouffer, J. Falco, K. Kent, Guide to Industrial Control Systems (ICS) Security, NIST Special Publication 800-82, June 2011
- Jump up ↑ LIETUVOS RESPUBLIKOS KIBERNETINIO SAUGUMO ĮSTATYMAS 2014 m. gruodžio 11 d. Nr. XII-1428 Vilnius
- Jump up ↑ NATIONAL SECURITY OF RUSSIA - Information security (February 3, 2012, № 803)
- Jump up ↑ NIPP 2013: Partnering for Critical Infrastructure Security and Resilience (2013)
- ↑ Jump up to: 5.0 5.1 ISA99 Committee Master Glossary.
- Jump up ↑ Luiijf and Te Paske (2015), Cyber Security of Industrial Control Systems
References
- ERNCIP's Thematic Group on Case Studies for the Cyber-Security of Industrial Automation and Control Systems [1]
