Keysight‘s TAPS and NPBs Meet NERC CIP Standards For Threat Visibility&Detection for Critical Infrastructure
Grid modernization has created an explosion of network-connected equipment, exposing utilities to a wide range of potential threats from nation states, criminals, disgruntled employees, and accidental misconfiguration (which happens far more often than you might think). The problem isn't 'grid modernization' per se, but the 'explosion of network connected equipment', including SCADA equipment, which is exposing previously air gapped industrial control systems to the internet.
The Energy sector is particularly vulnerable to cyberattack because core cybersecurity strategies, like the use of SPAN ports as a means to direct bulk network data to security analysis systems, and physical air gaps to separate the Operational Technologies ('OT') network from the rest of the enterprise network have grown outdated.
When a human released a cyber worm known as 'Stuxnet' into a physically air gapped facility in 2010, it became obvious to the world that new cybersecurity strategies were needed.
NERC CIP
Soon, Critical Infrastructure operators will be expected to deploy threat visibility and detection technologies to support their incident response and recovery capabilities, as well as provide greater information sharing potential. It is one of several recent motions from the United States federal government to address: 1) threat detection and monitoring; 2) incident response and recovery; 3) information sharing; and 4) supply chain security. The Energy Sector is already subject to multiple NERC CIP standards so this isn't unexpected.
The North American Electric Reliability Corporation (NERC) is a regulatory authority whose mission is to assure the effective and efficient reduction of risks to the reliability and security of the grid. NERC's jurisdiction includes users, owners, and operators of the Bulk Electric System, which serves nearly 400 million people.
The NERC Critical Infrastructure Protection (CIP) standards include regulatory elements that make collecting and archiving network traffic more important than ever before. NERC CIP Standards require utilities to monitor network traffic data at the control center, the plant, and the substation. Utilities are subject to regular NERC Compliance audits and must also regularly conduct vulnerability assessments.
Network TAPs vs SPANs
Threat detection and monitoring begins with the addition of network TAPS in power plants and substations at multiple levels of the SCADA network. TAPS give OT personnel and network managers secure and ready access to data from critical infrastructure systems without adding to the compliance footprint or requiring network changes. TAPS provide a vital, non-invasive, network-friendly means to monitor and examine large quantities of network traffic. Unlike SPAN ports, TAPS present no load on the network, ensure that no packets are dropped, no changes occur to the timing of frame interactions, and valuable resources are not wasted examining duplicate packets.
Once TAPS are installed, Network Packet Brokers can capture, filter, aggregate, regenerate and efficiently route network traffic to security tools for inspection and incident response, creating a tightly integrated compliant security solution for utilities. Because KEYSIGHT's TAPS and NPBs capture all the network packets, (not just representative sample data) they create a complete historical archive of required data to meet strict NERC audit requirements.
The NERC Critical Infrastructure Protection (CIP) standards include regulatory elements that make collecting and archiving network traffic more important than ever before. NERC CIP Standards require utilities to monitor network traffic data at the control center, the plant, and the substation. Utilities are subject to regular NERC Compliance audits and must also regularly conduct vulnerability assessments.
- |
- +1 赞 0
- 收藏
- 评论 0
本文由董慧转载自Keysight,原文标题为:NERC CIP Standards For Threat Visibility & Detection for Critical Infrastructure,本站所有转载文章系出于传递更多信息之目的,且明确注明来源,不希望被转载的媒体或个人可与我们联系,我们将立即进行删除处理。
相关研发服务和供应服务
相关推荐
Keysight Enables Microamp Solutions to Accelerate Development of mmWave Radio Units for Private 5G Networks
Keysight Technologies announced that Microamp Solutions has selected Keysight Open Radio Architect (KORA) solutions to meet increasing demand for mmWave radio units in private 5G networks.
Keysight Cyber Training Simulator Provides Universities a Realistic Turnkey Cyber Range
Keysight Technologies has introduced Keysight Cyber Training Simulator (KCTS), a comprehensive, turnkey cyber range that simulates real-world traffic using the company‘s BreakingPoint solution.
Keysight Technologies Acquires Quantum Benchmar, Augmenting Keysight‘s Quantum Portfolio
Keysight Technologies, Inc. , a leading technology company that delivers advanced design and validation solutions to help accelerate innovation to connect and secure the world, announced today it has acquired Quantum Benchmark, a leader in error diagnostics, error suppression and performance validation software for quantum computing.
KEYSIGHT示波器选型表
KEYSIGHT示波器选型,高清晰度示波器、混合信号示波器、手持式示波器等,最大存储器深度120kpts-2Gpts。
|
产品型号
|
品类
|
描述
|
宽带(MHz、GHz、GBd)
|
最大存储器深度(kpts、Mpts、Gpts)
|
最大采样率(GSa/s、KHz)
|
操作系统
|
类型
|
|
DSAZ504A
|
示波器
|
Infiniium 示波器:50 GHz
|
50 GHz
|
2 Gpts
|
160 GSa/s
|
Windows 10
|
Real-Time
|
选型表 - KEYSIGHT 立即选型
KEYSIGHT数字万用表选型表
KEYSIGHT数字万用表选型,手持式数字万用表、USB 模块化数字万用表、手持式钳形表等,基本 1 年 DCV 精度0.00%-0.5%。
|
产品型号
|
品类
|
描述
|
Digits of Resolution
|
基本 1 年 DCV 精度
|
连通性
|
测量功能
|
|
34470A
|
数字万用表
|
数字万用表,七位半,Truevolt DMM
|
7 ½
|
0.0016%
|
LAN,USB,GPIB (optional)
|
DCV and ACV,DCI and ACI,2- and 4-wire Resistance,Frequency,Capacitance,Diode test,Continuity test,Temperature
|
选型表 - KEYSIGHT 立即选型
如何把KEYSIGHT示波器连接到matlab上?
怎么把KEYSIGHT示波器连接到matlab上呢?本文将讲解详细步骤。
Keysight解决方案选择矩阵完全支持您的Keysight解决方案
描述- KeysightCare解决方案提供全面支持,旨在帮助用户解决技术难题,优化工作流程。服务包括硬件和软件的集成支持,旨在提高市场投放速度,减少计划外停机和项目延误。服务分为基本和高级两个层次,提供快速响应、现场技术支持、软件更新和预防性维护等。
Keysight i3070 09.20pc软件修补程序
描述- Keysight Technologies发布了一款针对i3070测试系统的软件补丁,版本号为09.20pc,发布日期为2018年11月。该补丁适用于装有i3070 09.20p软件的测试系统或工作站,支持Windows 7或Windows 10操作系统。补丁主要解决了多个变更请求,包括改进故障显示、电容补偿、用户界面布局、IPG功能、错误消息、安全性和其他功能增强。安装补丁时需以管理员身份登录,并遵循屏幕上的安装说明。安装后,用户可以通过Korn Shell窗口检查软件版本。
圣罗莎的Keysight
描述- Keysight Technologies在Santa Rosa设有其智力中心,专注于高性能电子和通信测试产品及其相关技术。Santa Rosa位于旧金山北部55英里,太平洋海岸线东部30英里处,是一个艺术、文化和美食的交汇地。该校区拥有1300名员工,占地面积195英亩,提供户外工作区、步行道、运动场、健身设施、食堂和咖啡吧等。此外,Santa Rosa提供丰富的休闲活动,包括骑行、皮划艇、远足、滑雪等,以及世界级的葡萄酒产区。Keysight Technologies是一家平等机会雇主,欢迎有志之士加入。
用于Keysight EDA模拟器的Keysight EESOF EDA铸造和组件供应商库手册
描述- Keysight EEsof EDA提供广泛的晶圆厂工艺设计套件(PDKs)和组件供应商库,确保高精度设计。与众多晶圆厂和组件制造商合作,提供超过35个RFIC和MMIC晶圆厂PDKs,支持从原理图到设计规则检查(DRC)的完整设计流程。此外,Keysight EEsof EDA还提供超过10万个组件库,包括模拟电路、系统组件、无源组件和高速连接器,以及与HSPICE兼容的模型库,以支持高速串行数据链路设计。
PCN-Keysight
型号- U1281A/R-50C-011-5,U1281A/R-50C-011-3,U1231A/R-50C-011-3,U1272A,U1231A/R-50C-011-5,U1212A/R-50C-011-3,U1212A/R-50C-011-5,U1273A/R-50C-021-5,N4433A/R-50C-016-3,U1273A/R-50C-021-3,U1252B/R-50C-011-5,U1233A/R-50C-011-5,U1232A,U1252B,U1115A,U1233A/R-50C-011-3,U1252B/R-50C-011-3,U1212A,U1273AX,U1241C/R-50C-011-3,U1241C,U1242C/R-50C-011-3,U1281A,U1242C/R-50C-011-5,U1241C/R-50C-011-5,U1273AX/R-50C-016-3,U1242B/R-50C-011-MU-5,U1253B/R-50C-021-5,U1242B/R-50C-011-MU-3,U1273AX/R-50C-016-5,U1253B/R-50C-021-3,U1251B/R-50C-021-5,U1232A/DST,U1241B/R-50C-011-5,U1242B/R-50C-011-3,U1241B/R-50C-011-3,U1242B/R-50C-011-5,U1241B,U1273A,U1253B,U1252B/R-50C-021-3,U1213A,U1177A/AB0,U1251B/R-50C-021-3,U1252B/R-50C-021-5,U1233A,U1177A/AB2,U1282A/R-50C-011-3,U1282A/R-50C-011-5,U1282A,U1213A/R-50C-011-3,U1272A/R-50C-021-5,U1213A/R-50C-011-5,U1211A/R-50C-011-3,N4433A/R-50C-011-3,U1273AX/R-50C-021-3,U1272A/R-50C-021-3,N4433A/R-50C-011-5,U1211A/R-50C-011-5,U1253B/R-50C-011-5,U1251B/R-50C-011-5,U1253B/R-50C-011-3,U1252B/R-50C-016-3,U1117A,U1273AX/R-50C-021-5,U1252B/R-50C-016-5,U1232A/R-50C-011-5,U1242C,U1242B,N4433A,U1232A/R-50C-011-3,U1251B/R-50C-011-3,U1231A/DST,U1273A/R-50C-011-5,U1271A/R-50C-011-5,U1253B/DST,U1271A,U1272A/R-50C-011-5,U1251B,U1271A/R-50C-011-3,N4433A/R-50C-021-3,33210U,N4433A/R-50C-021-5,U1272A/R-50C-011-3,U1273A/R-50C-011-3,N4433A/R-50C-016-5,U1118A,U1273AX/R-50C-011-MU-3,U1273AX/R-50C-011-3,U1273AX/R-50C-011-5,U1273AX/R-50C-011-MU-5,U1231A,U1252B/R-50C-011-MU-3,U1252B/R-50C-011-MU-5,U1211A
Keysight EESOF EDA:有源混频器设计
描述- 本文介绍了使用Keysight EEsof EDA的Advanced Design System (ADS)设计低功耗单晶体管有源混频器的方法。内容包括设计步骤、仿真设置和数据展示。文章详细描述了电路规格、器件选择、设备模型验证、偏置网络设计、混频器匹配电路设计、混频器转换增益与LO驱动电平的关系、混频器转换增益与RF信号电平的关系以及混频器布局创建等过程。
型号- MMBR941
Keysight D9010CAUC CAUI-4测试应用程序
描述- 该资料详细介绍了Keysight D9010CAUC CAUI-4测试应用的使用方法,包括安装测试应用和许可证、准备测量、配置测试应用、配置开关矩阵、配置信号路径、进行测量和生成报告等步骤。资料涵盖了测试应用的硬件和软件要求、测试流程、测试参数配置、结果分析和报告生成等内容。
型号- D9010CAUC
SMAC控制中心安装
描述- SMAC Control Center 安装指南:双击安装文件,按照指示进行安装。若出现提示信息,则需要安装 Microsoft .NET Framework 4 Client Profile,可从指定链接下载。
Keysight 85024A高频探头
描述- 本指南为Keysight 85024A高频探头提供了用户和服务指南,包括产品描述、规格特性、安装、操作、性能测试和维护信息。指南强调了静电放电(ESD)防护的重要性,并提供了操作前的注意事项和操作说明。此外,还包括了探头的性能测试方法和维护信息,以确保探头满足其保证的规格。
型号- 85054B,85024A-001,11881-60001,11524A,08405-40003,85024-60013,85024-60014,11880-60001,85024-60015,85024-60016,1250-1477,5060-0549,8710-1806,85024A,41800-61672,11881-20007,10229A,85024-63071
现货市场
服务
提供是德(Keysight),罗德(R&S)测试测量仪器租赁服务,包括网络分析仪、无线通讯综测仪、信号发生器、频谱分析仪、信号分析仪、电源等仪器租赁服务;租赁费用按月计算,租赁价格按仪器配置而定。
提交需求>
朗能泛亚提供是德(Keysight),罗德(R&S)等品牌的测试测量仪器维修服务,包括网络分析仪、无线通讯综测仪、信号发生器、频谱分析仪、信号分析仪、电源等仪器维修,支持一台仪器即可维修。
提交需求>
授权代理品牌:集成电路
授权代理品牌:分立元件
授权代理品牌:接插件及结构件
授权代理品牌:部件、组件及配件
授权代理品牌:电源及模块
授权代理品牌:电子材料
授权代理品牌:仪器仪表及测试配组件
授权代理品牌:电工工具及材料
授权代理品牌:机械电子元件
授权代理品牌:加工与定制
我要提问
登录 | 立即注册
提交评论