当前位置:首页 > 报告详情

在工业网络中实施分段.pdf

上传人: 2*** 编号:138779 2023-06-03 80页 6.39MB

1、#CiscoLive#CiscoLiveAndrew McPhee,Industrial Security Solutions ManagerBRKIOT-2882BRKIOT-2882Implementing Segmentation in Industrial Networks 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEnter your personal notes hereCisco Webex App Questions?Use Cisco Webex App to chat

2、 with the speaker after the sessionFind this session in the Cisco Live Mobile AppClick“Join the Discussion”Install the Webex App or go directly to the Webex spaceEnter messages/questions in the Webex spaceHowWebex spaces will be moderated by the speaker until June 9,2023.1234https:/ 2023 Cisco and/o

3、r its affiliates.All rights reserved.Cisco PublicBRKIOT-28823Agenda 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicWhy Segmentation is ImportantOverview of Ciscos Industrial Security GuidelinesIEC 62443 Zones&ConduitsIdentifying the AssetsMacro vs Micro SegmentationImplementing Seg

4、mentation with Cisco Identity Services Engine(ISE)Q&ABRKIOT-28824Security can and should be simple!Why Segmentation is Important 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLive7Attack Techniques used to exploit the Industrial NetworkBRKIOT-2882Initial Access(TA0108)Discov

5、ery(TA0102)Lateral Movement(TA0109)Command and Control(TA0101)2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveJourney to Securing the Industrial NetworkBuild a Security Build a Security FoundationFoundation1 1Develop an Incident Develop an Incident Investigation&Investigat

6、ion&Response planResponse plan4 4Gain Visibility&Gain Visibility&Device PostureDevice Posture2 2Segment network Segment network into smaller trust into smaller trust zoneszones3 3Cisco Cyber VisionCisco Identity Services EngineITSensorZONE 1ZONE 2SensorSensorDefine the IT/OT Boundary with Cisco Secu

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
本文主要介绍了在工业网络中实施分段的重要性,以及如何使用思科的产品和服务来实现这一目标。主要内容包括: 1. 分段在工业网络安全中至关重要,可以有效抵御攻击者利用工业网络的初始访问、发现、横向移动、命令和控制等攻击技术。 2. 思科提出了一个基于IEC 62443标准和NIST零信任指导原则的分段模型,包括定义区域(Zones)和管道(Conduits),以及识别资产。 3. 思科Cyber Vision和Identity Services Engine (ISE)等产品可以提供网络的可见性和设备态势,从而驱动分段策略的实施。 4. 思科提出了宏观分段和微观分段的概念,其中宏观分段侧重于在区域之间实施最小权限原则,而微观分段则侧重于对特定设备实施更细粒度的访问控制。 5. 思科还强调了终端安全在工业网络中的重要性,并提出了使用USB“羊群”计算机来评估USB驱动器的建议。 6. 文章最后,作者总结了实施分段的关键要点,包括建立强大的安全边界、利用可见性驱动分段、微观分段与宏观分段相辅相成、不要过度复杂化安全措施,以及不要忘记关注用户。
工业网络安全为何重要? 如何使用Cisco设备实现网络分区? 如何在工业网络中实施微分段?
客服
商务合作
小程序
服务号
折叠