Tactics for Plant Security

June 5, 2008
The information technology (IT) department at an enterprise offers a range of ways to secure the plant network.

But not all of these tactics are appropriate for the plant. Control engineers have to pick and choose to make sure the network is secure, while also making sure security tactics don’t interfere with availability or safety. “When it comes to applying the tools of IT, there is a lot of stuff you can take advantage of, but you can’t blindly take it without understanding it,” says Todd Stauffer, PCS7 product manager at vendor Siemens Energy and Automation Inc., in Alpharetta, Ga.

Here are some of the security solutions delivered by the IT group—as well as some of the problems that come with these solutions.

• Patches. Because plants are using personal computers (PCs) and Microsoft Windows, patch updates are important. The only problem is that many plants can’t shut down during wee hours when the office patches are being upgraded.

• Demilitarized zones. This is how plants secured themselves in the past. When the plant is cut off from the business, there is little threat. The problem is, plants are more connected to the business than in the past, which makes it more difficult to create demilitarized zones.

• Role-based access. Only those with the need to access certain areas of the network are allowed on. Some companies determine access by job function.

• Password and user management. Similar to role-based access, this involves limiting the number of people who can access the network, and cutting off access the moment an employee is terminated.

• Firewalls. This common type of IT security fights intrusions.

• Virus scanners. This program checks for viruses and worms that can disrupt applications.

To view the accompanying article to this story,"Corporate IT Helps Plants with Security", go to www.automationworld.com/feature-4257 

Sponsored Recommendations

Why Go Beyond Traditional HMI/SCADA

Traditional HMI/SCADAs are being reinvented with today's growing dependence on mobile technology. Discover how AVEVA is implementing this software into your everyday devices to...

4 Reasons to move to a subscription model for your HMI/SCADA

Software-as-a-service (SaaS) gives you the technical and financial ability to respond to the changing market and provides efficient control across your entire enterprise—not just...

Is your HMI stuck in the stone age?

What happens when you adopt modern HMI solutions? Learn more about the future of operations control with these six modern HMI must-haves to help you turbocharge operator efficiency...

AVEVA™ System Platform: Smarter, Faster Operations for Enhanced Industrial Performance

AVEVA System Platform (formerly Wonderware) delivers a responsive, modern operations visualization framework designed to enhance performance across all devices with context-aware...