Main menu:

• Home
• S4 2009
• Consulting
  • SCADA Security
    • Security Assessments
    • Security Policy & Audit
    • Security Architecture
  • Application Assessments
  • Custom Security Services
• Research
• Events
• Subscribe
• About Us
• Resources

 

 

 

AAA  AAA 

Security Architecture

Security architecture decisions are critical. A poor security architecture can make it difficult or impossible to secure your network and require continuing costly investment in security products and services. Digital Bond’s network security architecture service focuses on defining technical security controls for the client’s control system LAN’s and WAN’s that build upon the existing infrastructure, systems, and policies, and enables a consistent and best practice level of security throughout the control system.

Digital Bond has three primary goals in the security architecture design:

1. Prevention: keeping the adversary out in the first place. Prevention applies to both internal and external threats, as well as networks, hosts, and applications.
2. Detection: recognizing specific instances of improper or unauthorized activities before extensive damage is done. Prompt detection allows the client to isolate an adversary, analyze the probable intent of the attack, and limit the damage when deployed in conjunction with a response.
3. Response: initiating specific actions to isolate or prevent further unauthorized activity and to recover from whatever damage has occurred. Response includes the containment of the compromise, repair of the vulnerability, recovery, and evidence collection for pursuing the attacker.

Our network security architectural approach will address the key aspects of the control system. These are likely to include:

• Network interfaces to the enterprise network and other non-SCADA networks
• Remote access for system administrators, support vendors and others
• Underlying network components that form the transport infrastructure
• Redundancy and recovery
• Network and security management
• User authentication and authorization management
• Critical systems and applications

Key Benefits

• Secure your network, applications and information to the appropriate level
• Identify a clear plan to securing future control system needs
• Save money in security product and life cycle costs 

Deliverables

Digital Bond will provide a security architecture document, technical and executive presentations, and a solutions matrix that will identify how the architecture provides the required protection for current and planned systems, applications, and information.