当前位置:首页 > 报告详情

研讨会 - 复杂工业控制系统环境中的身份安全.pdf

上传人: 可*** 编号:991881 2025-12-07 56页 1.93MB

1、Securing Identities in Complex ICS EnvironmentsStephen MathezerOverview5 Critical Controls1.Overview of Identity in OT3.Centralized Identity5.Remote Access7.App.Identity Example9.Zero Trust2.Compliance4.Public Key Infrastructure6.Application Identity8.Device Identity10.5 Critical Controls for ICSCom

2、mon ICS Security ExposuresBusiness ICS ConnectivityRemote Access and Vendor ConnectionsInternet(authorized and unauthorized)Insufficient ICS SegmentationInsufficient Monitoring“Zero Trust”What is Zero Trust Mean Anyways Zero Trust Network Access(ZTNA)Firewall vendors People and identities are the si

3、ngle control pointIdentity vendors Never trust,always verify importance of identity verification identity and integrity of users and devicesChat GPTImplementing“Zero Trust”Many different approaches Often driven by capabilities rather than requirements or outcomes No shortage of guidance,everyone has

4、 an opinion But where can we start and what will work?NIST 800-207 Zero Trust Architectureleast privilege,per-request access decisions in the face of a network viewed as compromisedZero Trust Challenges for ICSLimited appetite and opportunity for changeWeve been operating for X years and nothing bad

5、 has happenedEvery site is uniqueOverall cybersecurity maturity is lowIncomplete asset inventoryLimited authentication/identity managementTechnical ChallengesOrganizationalChallengesNIST 800-207 Tenets of Zero TrustAll communication is secured regardless of locationAccess is granted on a per-session

6、 basisAccess is determined by dynamic policyIntegrity and security is monitored and measured for all assetsCollect info about assets,infrastructure,and communication to improve postureAll data sources and computing services are resourcesAuthentication and authorization are dynamic and strictly enfor

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
根据《Securing Identities in Complex ICS Environments》的内容,以下是全文关键点的概括: 1. **ICS安全挑战**:ICS(工业控制系统)面临网络分段不足、监控不足、远程访问和供应商连接等安全威胁。 2. **零信任模型**:采用“零信任”原则,强调“永不信任,始终验证”,通过最小权限访问决策来保护网络。 3. **关键控制措施**:包括最小化操作、事件响应、可防御架构、网络可见性和监控、安全远程访问和基于风险的漏洞管理。 4. **身份管理**:目标是控制数据、系统和通信,包括用户、应用、设备的身份验证和授权。 5. **集中式身份**:通过集中式身份管理,如Active Directory,提高密码安全性,减少本地和共享凭证,并实现单点登录。 6. **远程访问**:实施多因素认证、文件传输机制、详细审计和凭证管理,确保“零信任”访问。 7. **应用身份**:推动供应商支持集中式身份验证,解决应用认证和授权的挑战。 8. **设备身份**:通过网络级控制和设备/应用认证来管理设备身份,特别是在缺乏PKI支持的老旧设备中。 9. **合规性**:遵循IEC-62443和NERC CIP等标准,确保身份验证和授权的合规性。
"ICS环境中的身份验证挑战" ICS安全新篇章" "如何打造安全的ICS远程访问?"
客服
商务合作
小程序
服务号
折叠