Revision 10 ControlEdge HC900 Process & Safety Controller User and Installation Manual 41
May 2019
Unauthorized external access
This threat includes intrusion into the process control system from the business network and possibly an
intranet or the Internet.
Unauthorized external access can result in the following:
Loss of system availability
Incorrect execution of controls causing damage to the plant, or theft or contamination of product
Loss of prestige if the external access becomes public knowledge
Harm to personal safety or environment
Mitigation steps
Use a firewall for the business network to process control network interface to restrict access
from the business network to process control network.
Set the minimum level of privilege for all accounts, and enforce a strong password policy.
Unauthorized internal access
This threat encompasses unauthorized access from systems within the process control network. This
threat is the most difficult to counter since attackers may well have legitimate access to part of the system
and they simply want to exceed their permitted access.
Unauthorized internal access can result in the following:
Loss of system availability
Incorrect execution of controls causing damage to the plant, or theft or contamination of product
The capture, modification or deletion of data
Mitigation steps
Ensure PC security
Use physical security for process control network systems
Do not allow the use of unauthorized removable media
Use strong passwords on network equipment
Prevent the use of unauthorized laptops on the process control network
Use and enforce a strong password policy
Accidental system change
This threat encompasses inadvertent changes to executables or configuration files.
Accidental system change can result in the following:
Loss of system availability
Loss of data
Mitigation steps
Set the minimum level of privilege for all accounts and enforce a strong password policy.
To Next Page
Loading...
