GarrettCom Ethernet Networks and Web Management - Manuals

Page 2 - concentrated and widespread act of industrial sabotage might be.

1 INTRODUCTION This paper explores the state of network security options today at the Ethernet switch level and offers an elementary roadmap for industrial operations to plan for and deploy secure communications systems. Industrial systems need to take advantage of the advanced networking technologi...

Page 3 - available to protect against cyber invasion.; INDUSTRIAL SECURITY INITIATIVES; at overall security practices for industry. (See APPENDIX A); ETHERNET SECURITY – THE SWITCH VENDOR’S OPPORTUNITY

More and more industrial sites are taking advantage of Ethernet as a mature, end-to-end, standards- based networking, communications and data transmission protocol because it offers convenience and efficiency that bring higher performance and lower cost. In addition, the standards that are in place ...

Page 5 - ETHERNET SECURITY STANDARDS

be properly addressed, the benefits of controlling the functioning of equipment in remote locations such as power substations, and linking outlying facilities such as aircraft maintenance hubs and other far-flung industrial applications. Web access provides very significant efficiency improvements a...

Page 6 - the components of some of the most well-known security standards.; BEYOND THE SWITCH; planning – and in many cases, a different take on a security strategy.

(TLS). These features allow an Ethernet switch to handle HyperText Transfer Protocol Secure (HTTPS), the highest level of Web access security available. Other security strategies available to Ethernet equipment include port security, remote Telnet access security, password protection and remote unit...

Page 8 - APPENDIX A; BRIEF OVERVIEW OF SP99 AND PCSRF; authentication and authorization

APPENDIX A BRIEF OVERVIEW OF SP99 AND PCSRF At the vanguard of developing security guidelines for industrial control systems are the Instrumentation, Systems, and Automation Society (ISA) and the National Institute of Standards and Technology (NIST). ISA, through its SP99 committee, has published tw...

Page 10 - SNMP

APPENDIX B SECURITY STANDARDS IN USE IN ETHERNET INSTALLATIONS The protocols and standards listed below are readily available components that can be used to implement secure Ethernet networks in factories, power substations and other industrial sites. SNMP Simple Network Management Protocol, introdu...

Page 11 - SSL – Secure Socket Layer; industrial applications.

authorized manager, and that the message was not altered in transit. Note that the shared secret key between sending and receiving parties must be preconfigured by a configuration manager or a network manager, and loaded into the databases of the various SNMP managers and agents. A separate “privacy...

Page 12 - TLS – Transport Layer Security; session cannot be negotiated.; MAC Addressing; packets are dropped.; Remote Security; available at the individual switch.

11 TLS – Transport Layer Security TLS is a successor to SSL, using a wider variety of cryptographic algorithms for access security. It is standardized by the Internet Engineering Task Force (IETF). It is a protocol that provides secure communication over a TCP/IP connection such as the Internet. It ...