Skip to Main Content
Cybersecurity of Industrial Systems
book

Cybersecurity of Industrial Systems

by Jean-Marie Flaus
July 2019
Intermediate to advanced content levelIntermediate to advanced
420 pages
8h 47m
English
Wiley-ISTE
Content preview from Cybersecurity of Industrial Systems

Appendix 4 ANSSI Security Measures

This appendix presents the measures proposed by the ANSSI guides (ANSSI 2013a; ANSSI 2013b). They are defined according to the class of the system (Chapter 6).

Recommendations are prefixed with an R and directives with a letter D.

A4.1. Organizational measures

A4.1.1. Knowledge of the industrial system

Table A4.1. Recommendations and guidelines for system knowledge

Roles and responsibilities C1 R1 – A cybersecurity chain of responsibility must be put in place. It should cover all systems. R2 – Responsibilities for cybersecurity should be clearly defined for each of the stakeholders regardless of the aspect concerned (development, integration, operation, maintenance, etc.).
C2 D3 – R1 is mandatory. D4 – R2 is mandatory.
C3 D5 – The identity and contact details of the person in charge of the cybersecurity chain of custody must be communicated to the cyber defense authority. D6 – The limits of liability must be reviewed periodically, at least once a year.
Mapping C1 R7 – Build a map:
  • – physical;
  • – logical (flow);
  • – of applications.
C2 D8 – Build a map:
  • – physical;
  • – logical (flow);
  • – related applications;
  • – of the system administration.
  • R9 – Review the mapping at least once a year and with each modification.
C3 D10 – R9 is mandatory.
Risk analysis C1 R11 – Carry out a risk analysis for cybersecurity, however brief.
C2 D12 – Carry out a risk analysis for cybersecurity according to a method chosen by the responsible entity. ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Cybersecurity for Industrial Control Systems

Cybersecurity for Industrial Control Systems

Tyson Macaulay, Bryan L. Singer
Handbook of SCADA/Control Systems Security

Handbook of SCADA/Control Systems Security

Robert Radvanovsky, Jacob Brodsky

Publisher Resources

ISBN: 9781786304216Purchase book