Owner of the document requires that the content be not remodified or redistributed.
Share |



Lessons Learned From Cyber Security Assessments of SCADA and Energy Management Systems
Author:
Raymond K. Fink, David F. Spencer, Rita A. Wells
Year:
2006
Abstract:

The results for ten cyber security vulnerability assessments of process control, SCADA and energy management systems, or components of those systems were reviewed to identify common problem areas. The common vulnerabilities ranged from conventional IT security issues to specific weaknesses in control system protocols.

In each vulnerability category, relative measures were assigned to the severity of the vulnerability and ease with which an attacker could exploit the vulnerability. Suggested mitigations are identified in each category. Recommended mitigations have the highest impact on reducing vulnerability are listed for asset owners and system vendors.

Document Type:
Report
Source:
DOE - INL