Forensic-related Application Security Controls for RHEL in Critical Infrastructure

Industrial cyber security is an avid area of research. Incident response and forensic investigations are complex activities. Due to the complexity of critical infrastructures, such as Nuclear Power Plants (NPPs), preparation is vital. Manual approaches still tend to be favored mainly because of (physical) safety assurances. The tasks and actions required and the outcomes to expect need to be documented. Application Security Controls (ASCs) are a good way to document forensic controls for which an extended model is proposed. However, ASCs must be tested further on forensic applicability and there are also considerable alternatives. In terms of possible additional security measures and to apply the gained insights, one exemplary operational Instrumentation & Control (I&C) server system is analyzed in order to derive recommendations.

Bajramovic, Edita; Lainer, Andreas (2017): Forensic-related Application Security Controls for RHEL in Critical Infrastructure. INFORMATIK 2017. DOI: 10.18420/in2017_101. Gesellschaft für Informatik, Bonn. PISSN: 1617-5468. ISBN: 978-3-88579-669-5. pp. 987-999. 2nd GI/ACM Industry4.0 Security Standardisation Workshop on Industrial Automation and Control Systems (IACS). Chemnitz. 25.-29. September 2017

Schlagwörter

application security controls , forensics , critical infrastructure , RHEL , standards

DOI

10.18420/in2017_101

Sammlungen

P275 - INFORMATIK 2017

Komplettanzeige

Forensic-related Application Security Controls for RHEL in Critical Infrastructure

Volltext URI

Dokumententyp

Dateien

Zusatzinformation

Datum

Autor:innen

Zeitschriftentitel

ISSN der Zeitschrift

Bandtitel

Quelle

Verlag

Zusammenfassung

Beschreibung

Schlagwörter

Zitierform

DOI

Tags

Sammlungen