verticale

Functional safety and security: Holistic approach for a secure last line of defense

(in lingua inglese)

HIMA explains why plant operators should implement a holistic functional safety approach that ensures plant security in times of increasing cybercrime. A holistic approach to security should cover the core SIS, including final control elements, logic solver, and I/O module and sensors. It should also extend to the SIS environment, including the engineering station, asset management tools (AMS), handhelds, and field entry panels and HMIs.
Correlation of Safety & Automation Security
Segregation (The Onion Approach)
Defense in Depth
Coordination of Lifecycles
Combining Safety and Security

Scarica il PDF Scarica il PDF
Aggiungi ai preferiti Aggiungi ai preferiti


Atti di convegni o presentazioni contenenti case history
mcT Petrolchimico Milano novembre 2018 workshop

Pubblicato
da Alessio Rampini
mcT Petrolchimico Milano 2018Segui aziendaSegui




Settori: 

Parole chiave: 


Estratto del testo
Milano, 29 novembre 2018 Gli atti dei convegni e pi di 10.000 contenuti su www.verticale.net Holistic Approach for a
Secure
Last Line of Defense Heiko Schween Head of Automation Security mcT Petrolchimico 2018 2 Correlation of Safety & Automation Security Cybersecurity Safety and Security Industrial Control System SIS Functional
Safety
(Prevention) HIMA Paul Hildebrandt GmbH 2018 Both the IEC 61511 (safety) and
IEC 62443 (security) demand to
build systems in
multiple layers of protection. 'This concept is also known as Defense in the Depth Segregation (The Onion Approach) Process Control and Monitoring Prevention Mitigation Plant Emergency Response Community Emergency Response Basic process control system Monitoring systems (process alarms) Operator supervision Mechanical protection system Process alarms with operator corrective action Safety instrumented systems Mechanical mitigation systems Safety instrumented systems Operator supervision Evacuation procedures Emergency broadcasting HIMA Paul Hildebrandt GmbH 2018 3 Both the IEC 61511 (safety) and
IEC 62443 (security) demand to
build systems in
multiple layers of protection. 'This concept is also known as Defense in the Depth Segregation HIMA Paul Hildebrandt GmbH 2018 4 Both the IEC 61511 (safety) and
IEC 62443 (security) demand to
build systems in
multiple layers of protection. 'This concept is also known as 'the onion approach" Defense in Depth HIMA Paul Hildebrandt GmbH 2018 5 6 Coordination of Lifecycles HIMA Paul Hildebrandt GmbH 2018 Reviewed in Safety Lifecycle Intervals Safety Design Security Design Secure Safety Setup Security Setup Reviewed in Security Lifecycle Intervals 1. Updates in years
2. Focus on malfunctions
3. Looking at (own) operational experiences I. Updates in weeks II. Focus on vulnerabilities III. Looking at community experiences Security Domain Safety
Domain
Security Environment for Functional Safety 7 Principle 1: Protection of safety functions
Security effectively prevents safety against negative influences of threats.
Safety evaluations are based on the assumption of effective security
measures. Principle 2: Compatibility of implementations
Security does not interfere with safety and vice versa. Principle 3: Protection of security countermeasures
Safety implementations do not negatively impact the effectiveness of
security implementations. Source: IEC/TR 63069 Guiding principles of applying safety and security
IEC 61508 & IEC 62443
Combining Safety and Security HIMA Paul Hildebrandt GmbH 2018 HIMA Paul Hildebrandt GmbH 2018 8 Can an automation system
be 100% IT-Secure'
Hardwired System ' 100% Secure Lim it M onit or Out put M odule Lim it M onit or Out put M odule Lim it M onit or Out put M odule AN D Logic 2oo3 Logic D elay M odule AN D Logic Bloc k ing Elem ent Bloc k ing Elem ent Bloc k ing Elem ent Out put M odule F us e M odule F us e M odule M odbus C om . Logic modules Hardwired Logic Solvers HIMA Paul Hildebrandt GmbH 2018 10 Logic Solver 2
o
o
3 Example for high-integrity pressure protection systems (HIPPS) Where 100% IT Security Is Not a Myth HIMA Paul Hildebrandt GmbH 2018 11 www ZONE C MES Office Virtual Plant HMI ENG/MAIN Fieldbus HART 4..20 mA Level 0:
Instrumentation
Level 1:
Real-Time Data
Processing
Level 2:
MMI /
Maintenance
Level 3:
Local Office
ERP (Local)
Level 4:
www
ERP (global)
SIS, HART Reactionless SIS ZONE D Security Zone Historian ZONE A ZONE B Zones & Conduits (IEC 62443) HIMA Paul Hildebrandt GmbH 2018 13 HIMA Security Environment for Functional Safety Plant Security Zone HIMA Secure Safety Core Gateway CPU I/O COM 4..20 mA HART Interface Proxy Filter DMZ HIMA DCS Information Domain HIMA HMI DCS ' Automation Domain Interface Proxy Filter 14 Cybersecure Down to Its Core HIMA Paul Hildebrandt GmbH 2018 HIMA Security Environment for Functional Safety Plant Security Zone HIMA Secure Safety Core Gateway CPU I/O COM 4..20 mA HART Interface Proxy Filter DMZ DCS Information Domain HIMA HMI DCS ' Automation Domain Interface Proxy Filter HIMA HIMax HIMatrix HIQuadX HIMA Security Environment for Functional Safety Plant Security Zone HIMA Secure Safety Core Gateway CPU I/O COM 4..20 mA HART Interface Proxy Filter DMZ HIMA DCS Information Domain H
I
M
A
H
M
I
DCS ' Automation Domain Interface Proxy Filter HIMA Security Environment for Functional Safety Plant Security Zone HIMA Secure Safety Core Gateway CPU I/O COM 4..20 mA HART Interface Proxy Filter DMZ HIMA DCS Informatio Domain H
I
M
A
H
M
I
DCS ' Automation Domain Interface Proxy Filter HIMA Paul Hildebrandt GmbH 2018 15 HIMA Security Measures PC Infrastructure Controller Hardware and Firmware Lifecycle Management Engineering Tool Communication Infrastructure SIS, HART SIS A A HIMA's Holistic Approach HIMA Paul Hildebrandt GmbH 2018 16 ' 100% HIMA software
' Extremely low software error rate (similar to military and aircraft)
' Automated code analysis
' Unused Ethernet ports locked physically
' No access to program code during operation
' No backdoors
' ' Controller Hardware and Firmware HIMA Paul Hildebrandt GmbH 2018 17 ' 100% HIMA software
' Two-factor authentication for project and controller data
' Diagnoses and time stamps cannot be deleted (audit trail)
' Key switches for RELOAD, FORCE, READ possible
' Monitoring of program changes
' Engineering data kept at Engineering Station
' Enforced change of passwords on site
' Well-defined user management including security admin role
' Function blocks can be locked / read-only
' ' Engineering Tool HIMA Paul Hildebrandt GmbH 2018 18 ' Secure BIOS Management
' Reduced access rights
' Only required Windows services activated
' Minimal set of application programs
' Intelligent password management
' No double-use of engineering and office laptops
' ' PC Infrastructure HIMA Paul Hildebrandt GmbH 2018 19 ' Separated protection layers between CPU and COM ' modules ' Proprietary and superior protocol for controller communication: SafeEthernet ' Achilles certificate by Wurldtech
' Separation of networks in each installation
' Tap-proof controller communication
' ' Communication Infrastructure HIMA Paul Hildebrandt GmbH 2018 20 HIMA Group Company ' ISO 27001 certification ongoing ' Security certification (Achilles, ISASecure, EDSA, TV, ') ' Need-to-know principle: Access to source code and internal documents strictly
restricted ' Separate development network ' Active collaboration in standardization committees like IEC and the Open Group Lifecycle Management Services for our customers ' Security is integral part of HIMA services and engineering ' Basic Security Check of HIMA safety systems ' System hardening of safety systems and safety system
environments HIMA Paul Hildebrandt GmbH 2018 21 ' HIMA is committed to providing secure safety solutions ' HIMA solutions are separate and independent ' HIMA is ready for digitization because we have our own ' Operating systems for our online platform ' Engineering tool, independent from standard IT ' SafeEthernet since 1997 ' To combine the advantages, we developed the HIMA Security Environment for Functional
Safety
Summary HIMA Paul Hildebrandt GmbH 2018 22 E-mail: himaitalia@hima.com
Website: www.hima.com HIMA ITALIA S.r.l. Via Trieste 26/28
20871 Vimercate - MB Phone: +39 039 5965510 Thank You.


In evidenza

SAP Italia
Trova il percorso di trasformazione digitale per la tua impresa: scarica gratis la survey SAP e IDC
Edison
Scopri le novità normative sull'ETS. Partecipa ai nostri seminari.

Articoli correlati

© Eiom - All rights Reserved     P.IVA 00850640186