1 Framework for SCADA Security Policy Dominique Kilman Jason Stamp
[email protected] [email protected] Sandia National Laboratories Albuquerque, NM 87185-0785 Abstract – Modern automation systems used in infrastruc- 1.1. SCADA-Specific Security Administration ture (including Supervisory Control and Data Acquisition, or SCADA systems need a separate, SCADA specific secu- SCADA) have myriad security vulnerabilities. Many of these relate directly to inadequate security administration, which rity administration structure to ensure that all the special- precludes truly effective and sustainable security. Adequate ized features, needs, and implementation idiosyncrasies of security management mandates a clear administrative struc- the SCADA system are adequately covered. [2] contains a ture and enforcement hierarchy. The security policy is the table which lists the key differences in IT and SCADA sys- root document, with sections covering purpose, scope, posi- tem designs which can affect security and policy decisions. tions, responsibilities, references, revision history, enforce- Acceptable use of SCADA should be narrower than IT ment, and exceptions for various subjects relevant for system systems due to its different mission, sensitivity of data, and security. It covers topics including the overall security risk heightened criticality. SCADA systems are oftentimes used management program, data security, platforms, communica- to control time-critical functions. When time is an impor- tions, personnel, configuration management, audit- tant factor, some standard IT security practices may not be ing/assessment, computer applications, physical security, and manual operations. This article introduces an effective frame- appropriate for SCADA. For example, since anti-virus work for SCADA security policy. scanning can sometimes slow down a system, these may not be acceptable for some SCADA platforms.