Introduction

In computer and networking environments, the term hardening refers to the process of making a component or system more secure. As you can see from the test objectives listed, this occurs in several different areas of the OT/IT network and at several different levels. In this chapter, we will explore tools and techniques associated with hardening various areas of the ICS.

• Endpoints
• Operating systems
• Applications
• Embedded ICS devices
• Networks
• Servers
• Network connectivity devices

Endpoint Security and Hardening

An endpoint is defined as a user computing device connected to a TCP/IP network that enables the user to access information across the network. This designation typically includes desktop and notebook computers, in addition to mobile computing devices such as tablets and smart phones.