Upload File

by jim white wiredcity, div. of osisoft copyright c 2004 osisoft inc. all rights reserved. cyber...

  • Home
  • Documents
  • By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools
14
By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools

Upload: peter-porter

Post on 03-Jan-2016

215 views

Category:

Documents


0 download

Report

Tags:

TRANSCRIPT

Page 1: By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools

By Jim WhiteWiredCity, Div. of OSIsoft

Copyright c 2004 OSIsoft Inc. All rights reserved.

Cyber Security Tools

Page 2: By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools

Security Tools

• The term “Tools”– Not a replacement for experienced

professionals (intelligence behind the wheel not under the hood)

– Not a substitute for good security policies and procedures

– Goals: Detect-Prevent-Delay-Mitigate

Page 3: By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools

Security Tools

• Proliferating with increase in attacks

• Many claim to be “ the holy grail”

• Some marketing as “ the security solution”

• How do they fit into a security strategy

Page 4: By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools

Security Service Model

Courtesy of NIST pub.800-33

Page 5: By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools

Security Tools

• Firewalls• Host/Network based Intrusion Detection • Intrusion Prevention Systems• Network Scanners• Security Event Management Systems• File Integrity Systems• Vulnerability Analyzers

Page 6: By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools

Intrusion Detection Systems (IDS)

• Most IDS look for signature based suspicious activity– Known published attack signatures (i.e.

viruses)• New IDS models based on anomaly

detection– Statistical

• Baseline operations• Develop behavior profile• Look for statistical differences• Look for abnormal behavior

– Packet signature or protocol anomalies

Page 7: By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools

Intrusion Detection

• Control Network - PLCs

Page 8: By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools

Intrusion Detection

• Control Network – SCADA System

Page 9: By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools

Intrusion Detection

• Control Network - DCS

Page 10: By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools

Intrusion Detection

• Cisco Firewall

Page 11: By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools

Intrusion Prevention System (IPS)

• Inline NIDS that acts like a bridge– Basically a NIDS with blocking capability of a

firewall– Sits between systems needing protection

– Unlike bridge, does packet content analysis for signatures

• Layer Seven switches– Looks at layer 7 info ( DNS,HTTP,SMTP) and

makes routing decisions– Good to protect against DOS attacks ( known

signatures)

Page 12: By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools

Intrusion Prevention System (IPS)

• Application Firewall /IDS– Typically loaded on host to be protected

• Comes with overhead that could be a management headache

– Customizable to look for application behavior• Memory management• API calls• Interaction between application and operating

system• Prevents by blocking unknown behavior

– Can be dangerous for control systems

Page 13: By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools

Vulnerability Scanners/Analyzers

• Passive fingerprinters– identifies host and devices on network– some will report services running

• Network vulnerability scanner– Views the network from a hacker’s perspective– Extremely noisy and prone to false positives– Dangerous

• Crashes target in many cases

Page 14: By Jim White WiredCity, Div. of OSIsoft Copyright c 2004 OSIsoft Inc. All rights reserved. Cyber Security Tools

IT Security Tools

• No Tool is “ The answer”

• Always use a layered approach– “Security–in-depth”

• Implement good policies and procedures before tools


Company Presentation - OSIsoft

Micro-UAV Challenges...Aero-dynamics & Aero-elasticity STC IR Signatures & Analysis STC . Land Div Weapons Combat Systems . Div . Cyber EW Div. collaborate . UNCLASSIFIED UNCLASSIFIED

Microgrid - OSIsoft

UsersConference2015 OSIsoft GopalKrishnanKeithPierce KeepingAssetsHealthyTakingActionBasedonRealtimeConditionMonitoring

INPEX Case Studies - OSIsoft

OSIsoft Development Directions, Mark Hughes OSIsoft Development Directions Mark Hughes

Reduce Maintenance Cost - OSIsoft

Sigmafine 4 - OSIsoft

OSIsoft Roadmap 2017 - cdn.osisoft.com · OSIsoft Roadmap 2017. NossaOur VisionVisão - Reminder 2. ... OSIsoft é o caminho para o dado operacional: Conectividade Notifications Event

Consurv OSIsoft Progress Report

Principal Cyber Security Manager @bryansowen · •Incident response at OSIsoft –Limited to PI System domain of expertise •3 case studies supporting large user communities –No

OSIsoft Cloud Services...Cloud Services Integrators #PIWorld ©2019 OSIsoft, LLC 5 OSIsoft Cloud Services Design OSIsoft Cloud Services is a newly developed, cloud native platform,

OSIsoft Thin Clients RtWebParts and RtBaselineServices Jay Lakumb OSIsoft, Inc

OCS for Developers - OSIsoft

Tamara Carbaugh, OSIsoft Ray Hall, OSisoft Copyright c 2004 OSIsoft Inc. All rights reserved. Applying Product Context to Manufacturing using RtPM and

OSIsoft Cyber Security 2016 Interface for Cisco Phone PI Interface for Metso maxDNA ... Training Requirements Design Implementation Verification Release ... OSIsoft Cyber Security

PI System Pervasive Data Collection - OSIsoft...• Brief history of OSIsoft ingress technologies • Embedded device landscape –Linux dominate • Cisco & OSIsoft joint project

Self-directed Analytics and Reporting with OSIsoft Cloud ...€¦ · OSIsoft Cloud Services Dustin Johnson & Don Morrison 1 . #PIWorld ©2019 OSIsoft, LLC OSIsoft and Seeq . #PIWorld

“The Brazilian OSIsoft”

RS ZA 2012 03 OSIsoft Data Centres - OSIsoft, Mark Petersoncdn.osisoft.com/corp/en/media/presentations/2012/RegionalSeminars/... · Mark Peterson OSIsoft. ... Establish real time

Enhancing Digital Oilfield - OSIsoft

#PIWorld 1 - OSIsoft...& 105 Minute Lunch Break #PIWorld ©2019 OSIsoft, LLC After Break 8 #PIWorld ©2019 OSIsoft, LLC 9 9 #PIWorld ©2019 OSIsoft, LLC Final Remarks 10 #PIWorld ©2019

INTRODUCING PI Server - OSIsoft

FIELD MOUS - OSIsoft

Copyright © 2007 OSIsoft, Inc. All Rights Reserved The OSIsoft Product Development Roadmap Bryan Owen, Cyber Security Manager

USERS CONFERENCE 2016 - OSIsoft

OSIsoft Cyber Security 2016 · Cyber Security is more of a Marathon than a Sprint ... PI Interface for IEEE C37.118 PI Interface for OPC HDA ... Server Compromise Coresight Server

OSIsoft vCampus

© 2008 OSIsoft, Inc. | Company Confidential Enterprise Agreement Services & Bristol-Myers Squibb: Devens Case Study Don Smith (OSIsoft) Todd Brown (OSIsoft)

SECURE DATA - OSIsoft

RLINK PM - OSIsoft

OSIsoft Users Conference 2015

Seminário Regional da OSIsoft do Brasil 2008. Curt Hertler OSIsoft, Cleveland, Ohio USA Seminário Regional da OSIsoft do Brasil 2008

Oliveiram Votorantim - OSIsoft

Cyber Security and Using OSIsoft to Become Compliant William E. McEvoy, Northeast Utilities Transmission Information Technology Business Service Manager