Division of Cyber Safety and Security Responsibilities Between Control System Owners and Suppliers

Abstract : The chapter discusses the important issue of responsibility for information and communications technology (ICT) – or cyber – safety and security for industrial control systems and the challenges involved in dividing the responsibility between industrial control system owners and suppliers in the Norwegian electric power supply industry. Industrial control system owners are increasingly adopting information and communications technologies to enhance business system connectivity and remote access. This integration offers new capabilities, but it reduces the isolation of industrial control systems from the outside world, creating greater security needs. The results of observation studies indicate that Norwegian power network companies and industrial control system suppliers have contributed to the creation of a culture that does not focus on information and communications systems safety and security. The increased use of standards and guidelines can help improve cooperation between industrial control system owners and suppliers. Norwegian industrial control system owners should also implement a culture change in their organizations and should attempt to influence the safety and security culture of their suppliers. Power network companies need to place information and communications systems safety and security on par with operational priorities and they need to become more vocal in demanding secure products from their suppliers.
Type de document :
Communication dans un congrès
10th International Conference on Critical Infrastructure Protection (ICCIP), Mar 2016, Arlington, VA, United States. IFIP Advances in Information and Communication Technology, AICT-485, pp.131-146, 2016, Critical Infrastructure Protection X. 〈10.1007/978-3-319-48737-3_8〉
Liste complète des métadonnées

Littérature citée [28 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01614867
Contributeur : Hal Ifip <>
Soumis le : mercredi 11 octobre 2017 - 14:59:58
Dernière modification le : mercredi 11 octobre 2017 - 15:01:14
Document(s) archivé(s) le : vendredi 12 janvier 2018 - 15:05:30

Fichier

 Accès restreint
Fichier visible le : 2019-01-01

Connectez-vous pour demander l'accès au fichier

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Ruth Skotnes. Division of Cyber Safety and Security Responsibilities Between Control System Owners and Suppliers. 10th International Conference on Critical Infrastructure Protection (ICCIP), Mar 2016, Arlington, VA, United States. IFIP Advances in Information and Communication Technology, AICT-485, pp.131-146, 2016, Critical Infrastructure Protection X. 〈10.1007/978-3-319-48737-3_8〉. 〈hal-01614867〉

Partager

Métriques

Consultations de la notice

27