INDUSTRIAL CYBER SECURITY E INDUSTRIE4.0: OT DALLA FABBRICA CABLATA AI SISTEMI IN CLOUD Enzo M. Tieghi etieghi@servitecno.it ServiTecno www.servitecno.it
TECNOLOGIA + CONNECTIVITA = EFFICIENZA E VALORE Siamo pronti per questa iper-connessione?
I IT WHAT S THE BIG DIFFERENCE? OT O
IT Security = al sicuro i dati OT Security = proteggiamo critical assets RISCHIO e SAFETY Persone Ambiente Assets/Impianti UPTIME Qualità e Performance
IL CONTESTO E UNA SFIDA DIFFICILE ASPETTATIVE: produrre sempre 24x7 Vulnerabilità e Minacce non facilmente identificabili, e non vengono solo dai Sistemi Non si può sempre controllare l ambiente ed il contesto Impatti: Qualsiasi singolo incidente può essere un intoppo per l intero impianto e la produzione
La soluzione ideale di Cyber Security Industriale? Proteggere i CONTROL SYSTEMS per proteggere i CRITICAL ASSETS RESULT Protect critical assets without disruption INSPECT communications and commands ENFORCE policy for all processes PROTECT control systems and assets
INTERCONNECTIVITY RISK 7
Oil & Gas Manufacturing Healthcare Clinical Food & Beverage Chemical Power 8
Oil & Gas Food & Beverage Manufacturing Power Healthcare Clinical Chemical Enterprise Services Business Units Real Time Service Bus Outage Mgmnt Internet IT Priorities 1. Confidentiality 2. Integrity 3. Availability Technicians Vendors Real Time Service Bus Header Box IT Next Gen Firewall Internet Data Center Security Ops Center 9
Oil & Gas Food & Beverage Manufacturing Power Healthcare Clinical Chemical Enterprise Services Business Units Real Time Service Bus Outage Mgmnt Internet IT Priorities 1. Confidentiality 2. Integrity 3. Availability Loop Loop SCADA Data Core OT Priorities 1. Availability 2. Integrity 3. Confidentiality Technicians Vendors Real Time Service Bus Header Box IT Next Gen Firewall Internet Loop IT Next Gen Firewall PLC Data Center Security Ops Center Wind Control Microwave Engineering Work Stations Synchro- Phasor Microwave Protection Relay Modem Controller Controller Modem Network #1 Substation Network #2 Protection Network Controller OEM Pump Back Door 3 rd Party To: Business Enterprise Services 10
LEGEND Manufacturing Healthcare Clinical Oil & Gas IT Data Internet [ Identified OT Command] Unidentified OT Command Suspicious OT Command Chemical Food & Beverage Business Units Power Enterprise Services Real Time Service Bus SCADA Outage Mgmnt Yaw CCW Technicians Vendors IT Next Gen Firewall Real Time Service Bus Internet Loop Loop IT Next Gen Firewall Header Box Automatic Data Center Data Core Loop PLC Engineering Work Stations Wind Control Security Ops Center Microwave Controller Modem Brake Substation Modem Network #2 Protection Network Local Control Controller Status Pump OEM Protection Relay Network #1 Controller Microwave SynchroPhasor Acknowledge / Clear Back Door 3rd Party To: Business Enterprise Services 11
ATTACK SURFACE IT Proteggere i dati OT Proteggere critical assets Enterprise Network DMZ Primary control center SCADA Network Remote stations Internet DCS Local production
PLUG IT IN TODAY. SLEEP WELL TONIGHT. Wow, I didn t realize that all these things were talking on the network. Why is CRM3 constantly pinging S1? Scott, Technician Activating the white list is going to give them a lot more security. David, 3rd party Auditor We can t believe how painless that was. VP Engineering What are all those IP addresses and what are they doing on my network? Lead IEC Engineer Can you quote us 20 more sites? David, 3rd party Auditor
WURLDTECH ACHILLES TEST Achilles Test Platform Monitor key operating parameters Network parameters Operational parameters Characterize device faults Drive repeatable results Achilles Test Software Has capabilities similar to ATP Enables easy provisioning to developers via VMs Enables testing earlier in the product life cycle for time and money savings Page 14
OPERATIONS AND PRODUCTION. SECURED. Wurldtech Security Technologies Inc. reserves the right to make changes in specifications and features, or discontinue the product or service described at any time, without notice or obligation. These materials do not constitute a representation, warranty or documentation regarding the product or service featured. Illustrations are provided for informational purposes, and your configuration may differ. This information does not constitute legal, financial, coding, or regulatory advice in connection with your use of the product or service. Please consult your professional advisors for any such advice. Wurldtech is a trademark of General Electric Company. Other trademarks and logos are the property of their respective owners. Copyright 2016 Wurldtech Security Technologies Inc. All rights reserved.
Enzo M. Tieghi etieghi@servitecno.it ServiTecno www.servitecno.it