Industrial Control System – Network Components
There are different network characteristics for each layer within a control system hierarchy. Network topologies across different ICS implementations vary with modern systems using Internet-based IT and enterprise integration strategies.
Control networks have merged with corporate networks to allow control engineers to monitor and control systems from outside of the control system network. The connection may also allow enterprise-level decision-makers to obtain access to process data. The following is a list [..]
ICS – Control Components
The following is a list of the major control components of an ICS:
- Control Server. The control server hosts the DCS or PLC supervisory control software that is designed to communicate with lower-level control devices. The control server accesses subordinate control modules over an ICS network.
- SCADA Server or Master Terminal Unit (MTU). The SCADA Server is the device that acts as the master in a SCADA system. Remote terminal units and [..]
ICS Operation
The basic operation of an ICS is shown in the figure below. Key components include the following:
- Control Loop. A control loop consists of sensors for measurement, controller hardware such as PLCs, actuators such as control valves, breakers, switches and motors, and the communication of variables. Controlled variables are transmitted to the controller from the sensors. The controller interprets the signals and generates corresponding manipulated variables, based on set points, which [..]
Industrial Control Systems
Industrial control system (ICS) is a general term that encompasses several types of control systems, including supervisory control and data acquisition (SCADA) systems, distributed control systems (DCS), and other control system configurations such as skid-mounted Programmable Logic Controllers (PLC) often found in the industrial sectors and critical infrastructures.
ICS are typically used in industries such as electrical, water and wastewater, oil and natural gas, chemical, transportation, pharmaceutical, pulp and paper, food [..]
Digital Data Preservation | Program CD and DVD Archiving
Do:
- Handle discs by the outer edge or the center hole.
- Use a non solvent-based felt-tip permanent marker to mark the label side of the disc.
- Keep dirt or other foreign matter from the disc.
- Store discs upright (book style) in plastic cases specified for CDs and DVDs.
- Return discs to storage cases immediately after use.
- Leave discs in their packaging (or cases) to minimize the effects of environmental changes.
- Open a recordable disc package only when [..]
The Elliptic Curve Digital Signature Algorithm (ECDSA)
Public-Key Cryptography Standard (PKCS)
Public-Key Cryptography Standard (PKCS) #1, RSA Cryptography Standard, defines mechanisms for encrypting and signing data using the RSA algorithm. PKCS #1 v2.1 specifies
two digital signature processes and corresponding formats:
- RSASSA-PKCS1-v1.5 and
- RSASSA-PSS.
Both signature schemes are Approved for use, but additional constraints are imposed beyond those specified in PKCS #1 v2.1.
- Implementations that generate RSA key pairs shall use the RSA criteria and the method in B.3.2 to generate those key [..]
RSA Key Pair Generation
An RSA key pair consists of an RSA private key, which is used to compute a digital signature, and an RSA public key, which is used to verify a digital signature. An RSA key pair used for
digital signatures shall only be used for digital signatures, not for other purposes (e.g., key establishment).
An RSA public key consists of a modulus n, which is the product of two positive prime integers [..]
DSA Signature Verification and Validation
Signature verification may be performed by any party (i.e., the signatory, the intended recipient or any other party) using the signatory’s public key. A signatory may wish to verify that the computed signature is correct, perhaps before sending the signed message to the intended recipient.
The intended recipient (or any other party) verifies the signature to determine its authenticity.
Prior to verifying the signature of a signed message, the domain parameters, and [..]
Digital Signatures – Key Pair Management
The secure use of digital signatures depends on the management of an entity’s digital signature key pair as follows:
- The validity of the domain parameters shall be assured prior to the generation of the key pair, or the verification and validation of a digital signature .
- Each key pair shall be associated with the domain parameters under which the key pair was generated.
- Key pairs shall only be used to generate [..]
The Digital Signature Algorithm (DSA)
DSA Parameters
A DSA digital signature is computed using a set of domain parameters, a private key x, a permessage secret number k, data to be signed, and a hash function. A digital signature is verified using the same domain parameters, a public key y that is mathematically associated with the private key used to generate the digital signature, data to be verified, and the same hash function that was used [..]