Browse Definitions :
Definition

ICS security (industrial control system security)

ICS security is the area of concern involving the safeguarding of industrial control systems, the integrated hardware and software designed to monitor and control the operation of machinery and associated devices in industrial environments.

Industrial control systems are used in machinery throughout a wide range of industries all around the world. The systems monitor, manage and administer everything from nuclear power plants and other utilities to HVAC installations, robotics and even prison cell doors.

Historically, these systems were not networked and lacked computing and communications technologies. A major focus of the burgeoning Internet of Things (IoT) – and the Industrial IoT in particular – is networking non-computing devices and making it possible for them to exchange data over the Internet. Although industrial control systems may not themselves be connected to the Internet, the human-machine interfaces (HMI) through which they are managed typically are.     

Industrial systems, including critical infrastructure, are increasingly being networked and outfitted with computing and communications technologies. The trend to IT/OT convergence means that systems used for data-centric computing -- IT systems -- are being integrated with the operational technology (OT) systems used to monitor events, processes and devices and make adjustments in enterprise and industrial operations.

Ironically, because ICS often support critical infrastructure, they cannot easily be taken down for security updates and so often remain unpatched and vulnerable. Furthermore, because the systems have very limited computing resources, they often lack the capacity to run antimalware software.

This was last updated in March 2016

Continue Reading About ICS security (industrial control system security)

SearchNetworking
  • virtual network functions (VNFs)

    Virtual network functions (VNFs) are virtualized tasks formerly carried out by proprietary, dedicated hardware.

  • network functions virtualization (NFV)

    Network functions virtualization (NFV) is a network architecture model designed to virtualize network services that have ...

  • overlay network

    An overlay network is a virtual or logical network that is created on top of an existing physical network.

SearchSecurity
  • X.509 certificate

    An X.509 certificate is a digital certificate that uses the widely accepted international X.509 public key infrastructure (PKI) ...

  • directory traversal

    Directory traversal is a type of HTTP exploit in which a hacker uses the software on a web server to access data in a directory ...

  • malware

    Malware, or malicious software, is any program or file that is intentionally harmful to a computer, network or server.

SearchCIO
  • security audit

    A security audit is a systematic evaluation of the security of a company's information system by measuring how well it conforms ...

  • chief transformation officer (CTO)

    Chief transformation officer is an executive role, often in the C-suite, that focuses on bringing about change as well as growth ...

  • data latency

    Data latency is the time it takes for data packets to be stored or retrieved. In business intelligence (BI), data latency is how ...

SearchHRSoftware
SearchCustomerExperience
  • implementation

    Implementation is the execution or practice of a plan, a method or any design, idea, model, specification, standard or policy for...

  • first call resolution (FCR)

    First call resolution (FCR) is when customer service agents properly address a customer's needs the first time they call.

  • customer intelligence (CI)

    Customer intelligence (CI) is the process of collecting and analyzing detailed customer data from internal and external sources ...

Close