Maintworld 2/2017

More documents

Info

CYBERSECURITY Digital Automation System Maintenance and Cybersecurity – the Perfect Partnership? In the last years, the number of cyber-attacks has increased dramatically. In light of this, it is not surprising that organizations are increasingly looking to invest in cybersecurity. ROBERT VALKAMA, Senior information security consultant at Nixu Corporation, robert.valkama@nixu.fi WHAT DOES a cyber-attack mean to you? The term brings many different mental images; from pizza driven nerds in a dark basement to organized operations funded and supported by state level actors. The intents for attacks vary greatly; from opportunistic hacking or showing off for friends to pursue of financial benefit and to well organized disruption of a specific physical function. Even in the best-case scenario, cyber-attacks in industrial automation are highly inconvenient. An example of such a scenario would be an inadvertent attack, where malware intended for ordinary ICT systems enters a production environment, causing disruptions 40 maintworld 2/<strong>2017</strong> and production downtime. Example of this type of an attack is a crypto malware infecting the HMI systems. In the worstcase scenario, the attack is intentional and causes total destruction, incurring substantial replacement and recovery costs both in terms of time and money, i.e. jeopardizing safety. Despite the intent of the attack, there are steps that can be taken in order to make it harder for the adversary to succeed in the attack. Securing industrial systems requires both technical and administrative controls to be put in place (essentially in the same way as securing ICT systems, but with slightly different emphasis), and in many cases, these controls also benefit the maintenance of the systems. Mutual benefits When it comes to automation systems, the goals of cybersecurity and maintenance are practically the same: ensuring error-free production and safety. The essence of automation systems is that they operate in the right way at the right time. In some industries, automation system’s cybersecurity also includes protecting intellectual property. In practical terms, this means protecting manufacturing processes’ run parameters from information leaks. Cybersecurity controls can also have
CYBERSECURITY substantial benefits for maintenance. For example, asset and configuration management, systems hardening and security monitoring. Asset and configuration management is one of the corner stones in cybersecurity. Without accurate knowledge of the environment, it is very hard to reliably secure it. A complete, accurate and up to date documentation of the systems in an easily accessible (queried) format is required in order to be able to rapidly respond and investigate the potential impact of newly discovered vulnerabilities on the protected environment. A traditional blue print type of documentation is usually not sufficient for this, as they don’t contain important and needed information of the digital devices like, used software and versions, firmware versions, configuration information etc. This information is essential for example when conducting vulnerability assessments, but it will also streamline fault diagnosis. System hardening (removing or disabling superfluous software) is primarily intended to reduce the relevant system’s attack surface, but can also have the additional benefit of removing potentially faulty software from the relevant system. This, in turn, reduces the need for unnecessary maintenance. Cybersecurity monitoring is another function that can be easily utilized in maintenance. These tools focus on keeping track of an automation system’s network traffic and scouring its logs. They are intended to identify exceptions or changes, which means that they can also be configured to monitor maintenance-relevant information, combining and centralizing two separate functions. Monitoring tools can be configured to generate maintenance-related alarms or events when ASSET AND CONFIGURATION MANAGEMENT IS ONE OF THE CORNER STONES IN CYBERSECURITY. an exception is detected in the same way cybersecurity-related alarms and events are generated. This is especially beneficial in multivendor environments where automation systems from several suppliers are used. In multivendor environments the different systems may be monitored separately, using their own diagnostic tools, but a common overview is not available. Depending on the environment and personnel size the monitoring may also be limited to post incident resolution, or “extinguishing fires” as some may refer to it. With good and high quality monitoring the maintenance of the digital assets is shifted towards a preventive maintenance mode, where incidents are identified before they cause any process disruptions. Discover the hidden treasure in Maintenance Discover the hidden treasure in Maintenance There is value hidden in every maintenance organization. All companies have the potential to further improve, either by reducing costs, improve safety, work on the lifetime extension of machinery or by smart maintenance solutions that improves uptime. The question is where maintenance managers should be looking to fi nd these areas of improvement and where they need to start. You will fi nd the answer to this question at Mainnovation. With Value Driven Maintenance ® and the matching tools like the VDM Control Panel, the Process Map and our benchmark data base myVDM.com, we will help you to discover the hidden treasure in your company. Do you want to discover the hidden treasure in your maintenance organization? Go to www.mainnovation.com CONTROLLING MAINTENANCE, CREATING VALUE.
Page 1 and 2: 2/2017 www.maintworld.com maintenan
Page 3 and 4: FLEXIBLE PROGRAMS Tailor a program
Page 5 and 6: IN THIS ISSUE 2/2017 10 In mountain
Page 7 and 8: INDUSTRIAL INTERNET and complex inf
Page 10 and 11: TECHNOLOGY Crews at Turkey’s Karg
Page 12: TECHNOLOGY In squeezing or blocky g
Page 15 and 16: CONDITION MONITORING And what is ma
Page 17 and 18: Be a LUBExpert ® A COMPLETE ULTRAS
Page 19 and 20: CONDITION XXXXXXXXXXXXXX MONITORING
Page 21 and 22: Master the Language of Your Machine
Page 23 and 24: Power Up Your Skills Open Courses i
Page 25 and 26: XXXXXXXXXXXXXX If we can agree, in
Page 27 and 28: Assess risk based on failure severi
Page 29 and 30: VIBRATION XXXXXXXXXXXXXX DIAGNOSTIC
Page 31 and 32: There are actually three certaintie
Page 33 and 34: ASSET MANAGEMENT Figure 1 Figure 2
Page 35 and 36: ADVERTORIAL to a high thermal sensi
Page 37 and 38: CMMS Picture: The BSI has publish
Page 39: SECURITY “The FLIR PT-602CZ multi
Page 44 and 45: CONDITION MONITORING High energy pr
Page 46 and 47: CONDITION MONITORING On-board sound
Page 48: HSE Text: Ellen den Broeder-Ooijeva
Page 51 and 52: Successful reliability programs hav

Maintworld 2/2017

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?