Browse Definitions :
Definition

ICS security (industrial control system security)

ICS security is the area of concern involving the safeguarding of industrial control systems, the integrated hardware and software designed to monitor and control the operation of machinery and associated devices in industrial environments.

Industrial control systems are used in machinery throughout a wide range of industries all around the world. The systems monitor, manage and administer everything from nuclear power plants and other utilities to HVAC installations, robotics and even prison cell doors.

Historically, these systems were not networked and lacked computing and communications technologies. A major focus of the burgeoning Internet of Things (IoT) – and the Industrial IoT in particular – is networking non-computing devices and making it possible for them to exchange data over the Internet. Although industrial control systems may not themselves be connected to the Internet, the human-machine interfaces (HMI) through which they are managed typically are.     

Industrial systems, including critical infrastructure, are increasingly being networked and outfitted with computing and communications technologies. The trend to IT/OT convergence means that systems used for data-centric computing -- IT systems -- are being integrated with the operational technology (OT) systems used to monitor events, processes and devices and make adjustments in enterprise and industrial operations.

Ironically, because ICS often support critical infrastructure, they cannot easily be taken down for security updates and so often remain unpatched and vulnerable. Furthermore, because the systems have very limited computing resources, they often lack the capacity to run antimalware software.

This was last updated in March 2016

Continue Reading About ICS security (industrial control system security)

SearchCompliance
  • ISO 31000 Risk Management

    The ISO 31000 Risk Management framework is an international standard that provides businesses with guidelines and principles for ...

  • pure risk

    Pure risk refers to risks that are beyond human control and result in a loss or no loss with no possibility of financial gain.

  • risk reporting

    Risk reporting is a method of identifying risks tied to or potentially impacting an organization's business processes.

SearchSecurity
  • Pretty Good Privacy (PGP)

    Pretty Good Privacy or PGP was a popular program used to encrypt and decrypt email over the internet, as well as authenticate ...

  • email security

    Email security is the process of ensuring the availability, integrity and authenticity of email communications by protecting ...

  • Blowfish

    Blowfish is a variable-length, symmetric, 64-bit block cipher.

SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • fault-tolerant

    Fault-tolerant technology is a capability of a computer system, electronic system or network to deliver uninterrupted service, ...

  • synchronous replication

    Synchronous replication is the process of copying data over a storage area network, local area network or wide area network so ...

SearchStorage
  • direct access

    In computer storage, direct access is the process of reading and writing data on a storage device by going directly to where the ...

  • kibi, mebi, gibi, tebi, pebi and exbi

    Kibi, mebi, gibi, tebi, pebi and exbi are binary prefix multipliers that, in 1998, were approved as a standard by the ...

  • holographic storage (holostorage)

    Holographic storage is computer storage that uses laser beams to store computer-generated data in three dimensions.

Close