Management of Schemes and Threat Prevention in ICS Partner Companies Security  

作　　者：Sangdo Lee Jun-Ho Huh 

机构地区：[1]Cyber Security Center,Korea Midland Power Co.,Ltd.,Boryeong,Korea [2]Department of Data Informatics,(National)Korea Maritime and Ocean University,Busan,Korea

出　　处：《Computers, Materials & Continua》2021年第12期3659-3684,共26页计算机、材料和连续体（英文）

基　　金：This research was supported by the Energy Cloud R&D Program through the National Research Foundation of Korea(NRF)funded by the Ministry of Science,ICT(NRF2019M3F2A1073385).

摘　　要：An analysis of the recent major security incidents related to industrial control systems,revealed that most had been caused by company employees.Therefore,enterprise security management systems have been developed to focus on companies’personnel.Nonetheless,several hacking incidents,involving major companies and public/financial institutions,were actually attempted by the cooperative firms or the outsourced manpower undertaking maintenance work.Specifically,institutions that operate industrial control systems(ICSs)associated with critical national infrastructures,such as traffic or energy,have contracted several cooperative firms.Nonetheless,ICT’s importance is gradually increasing,due to outsourcing,and is the most vulnerable factor in security.This paper proposes a virtualized security management scheme for the resident cooperative firms in the industrial control infrastructure.Since such companies often cannot afford adequate investment in security,the scheme is to let an ICS company provide the virtualized system.One of its merits is the convenience of controlling a VDI server at the center.The cooperative firms were classified,based on their respective security levels,and statistics were collected throughout a four-year period for the results.This paper analyzes the policies and virtualization systems that have been applied to the security of the partner companies,which engaged in ICS security.A suitable model for ICS security was then proposed by analyzing their effects on the system efficiencies,based on the comparisons of the security inspection results obtained before and after virtualization.The proposed system is expected to contribute to industrial safety.

关 键 词：Nuclear power plant nuclear power plant security virtual machine SCADA ICS ISO27001 VDI based security software engineering 

分 类 号：TP3[自动化与计算机技术—计算机科学与技术]