Skip to Main content Skip to Navigation
Conference papers

Division of Cyber Safety and Security Responsibilities Between Control System Owners and Suppliers

Abstract : The chapter discusses the important issue of responsibility for information and communications technology (ICT) – or cyber – safety and security for industrial control systems and the challenges involved in dividing the responsibility between industrial control system owners and suppliers in the Norwegian electric power supply industry. Industrial control system owners are increasingly adopting information and communications technologies to enhance business system connectivity and remote access. This integration offers new capabilities, but it reduces the isolation of industrial control systems from the outside world, creating greater security needs. The results of observation studies indicate that Norwegian power network companies and industrial control system suppliers have contributed to the creation of a culture that does not focus on information and communications systems safety and security. The increased use of standards and guidelines can help improve cooperation between industrial control system owners and suppliers. Norwegian industrial control system owners should also implement a culture change in their organizations and should attempt to influence the safety and security culture of their suppliers. Power network companies need to place information and communications systems safety and security on par with operational priorities and they need to become more vocal in demanding secure products from their suppliers.
Document type :
Conference papers
Complete list of metadatas

Cited literature [19 references]  Display  Hide  Download

https://hal.inria.fr/hal-01614867
Contributor : Hal Ifip <>
Submitted on : Wednesday, October 11, 2017 - 2:59:58 PM
Last modification on : Monday, May 6, 2019 - 2:26:17 PM
Long-term archiving on: : Friday, January 12, 2018 - 3:05:30 PM

File

434671_1_En_8_Chapter.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Ruth Skotnes. Division of Cyber Safety and Security Responsibilities Between Control System Owners and Suppliers. 10th International Conference on Critical Infrastructure Protection (ICCIP), Mar 2016, Arlington, VA, United States. pp.131-146, ⟨10.1007/978-3-319-48737-3_8⟩. ⟨hal-01614867⟩

Share

Metrics

Record views

97

Files downloads

344