Environmental Engineering Reference
In-Depth Information
practices, as well as approaches to assessment
of their performance. The focus is to improve
the confidentiality, integrity, and availability of
components or systems used for manufacturing or
control and to provide criteria for procuring and
implementing secure control systems. Such docu-
ments assist in improving of manufacturing and
control system electronic security, and can help
identify vulnerabilities and address them to reduce
the risk of compromising confidential information
or causing system degradation or failure.
Series of ISA-99 standards include the fol-
lowing standards aimed to describe design and
implementation process of security program for
manufacturing and control systems:
Technical reports contain:
• Recommendations for selection of technol-
ogies and measures of security assurance
of assets and also the description of such
technologies (including: authentication
and authorization; iltering, access lock
and control; audits, monitoring and detec-
tion; computer software; physical security
measures).
• Guideline on design of electronic security
program and also a recommended structure
and content of security plan.
There are no existing regulatory documents
that are specific about FPGA design practices.
First referenced document in a category related
to FPGA technology is NUREG/CR 7006, which
was prepared by US Nuclear Regulatory Commis-
sion (NRC), and represents an attempt to cover
existing gap.
This document is a comprehensive guidance
for the NRC staff to confirm that FPGA-based
safety systems are in conformance with the actual
NRC regulations (moreover, some FPGA-specific
review procedures and acceptance criteria during
NRC-friendly licensing process can be based on
this document). The document follows on the
investigation of existing regulatory documents
and standards related to design and review of
safety-related FPGA systems.
NUREG/CR 7006 discovers various specific
features of FPGA technology, including design
practices, which are classified into three major
groups - FPGA hardware design practices,
FPGA design entry methods, and FPGA design
methodologies. The document focuses on listing
and describing FPGA design practices that are
potentially unsafe as well as on suggesting, which
ones are acceptable for safety-critical designs.
•
ISA 99.00.01:
Scope, Concepts, Models
and Terminology.
•
ISA99.00.02:
EstablishingaManufacturing
and Control Systems Security Program.
•
ISA 99.00.03:
Operating Manufacturing
and Control Systems Security Program.
•
ISA 99.00.04:
Speciic Security
Requirements for Manufacturing and
Control Systems.
Key moments, related to cyber security of
manufacturing and control systems, and also
aspects of design and implementation of security
program are described.
In addition to the above standards the following
technical reports are developed:
•
ISA TR 99.00.01:
Technologies for
Protecting Manufacturing and Control
Systems.
•
ISA TR 99.00.02:
Integrating Electronic
Security into the Manufacturing and
Control Systems Environment.
Search WWH ::
Custom Search