Control System Security: Threat Detection and Management in the Critical Infrastructure

Download Now Date Added: Oct 2009
Format: PDF

This whitepaper discusses how to implement a combination of Deep Packet Inspection (Intrusion Prevention and/or Application and Protocol Monitoring), Database Activity Monitoring, and Security Information & Event Management systems (SIEM) to secure the critical infrastructure. NitroSecurity's NitroView Enterprise Security Manager combines the necessary functions of SIEM, IPS, Database Monitoring, and Application Monitoring functions into a single solution, and is therefore highly suited for use in control system security. The implementation of adequate security and monitoring into these networks will further satisfy the specific regulatory compliance requirements of the North American Electric Reliability Corporation standards for Critical Infrastructure Protection (NERC-CIP).