Upload File

network security lewis r. folkerth, p. e. consumers energy energy management systems...

15
Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems [email protected]

Upload: alexia-cook

Post on 14-Dec-2015

218 views

Category:

Documents


1 download

Report

Tags:

TRANSCRIPT

Page 1: Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems lrfolkerth@cmsenergy.com

Network Security

Lewis R. Folkerth, P. E.

Consumers Energy

Energy Management Systems

[email protected]

Page 2: Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems lrfolkerth@cmsenergy.com

Overview

• Why Network Security?

• Types of Security

• Network Configurations

• Intrusion Detection

• Maintaining Security

Page 3: Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems lrfolkerth@cmsenergy.com

Why Network Security?

• EMS as installed:– no outside connections

– no or limited dialup

– few threats

EM S

R TU

Page 4: Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems lrfolkerth@cmsenergy.com

Why Network Security?

• EMS today– Network connections

• Company

• Internet

– Dialup

– More threats• “Hackers”

• Competitors

• Terrorists

EM SH ub

C orporate N etw orks D ia lup

In ternet

Page 5: Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems lrfolkerth@cmsenergy.com

Types of Security

• Host Security– Passwords

– OS

– Vulnerability Analysis

– Intrusion Detection

• Network Security– Firewalls

– Packet Filtering

– Vulnerability Analysis

– Intrusion Detection

Page 6: Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems lrfolkerth@cmsenergy.com

Common EMS Network

R oute r

F irew a ll

In te rne t

S C A D A N e tw ork

E M S P C N e tw ork

C orpo ra te N e tw orks

Page 7: Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems lrfolkerth@cmsenergy.com

Add a Layer of Protection

S C A D A N e tw ork

E M S P C N e tw ork

C orpo ra te N e tw orks

R ou te r

F irew a ll

In te rne t

R ou te r

F irew a ll

Page 8: Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems lrfolkerth@cmsenergy.com

Add Intrusion Detection

S C A D A N e tw ork

E M S P C N e tw ork

C orpo ra te N e tw orks

R ou te r

F irew a ll

In te rne t

R ou te r

F irew a ll

S

A

S

SS

S - SensorA - Ana lysis System

Page 9: Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems lrfolkerth@cmsenergy.com

Isolate the Intrusion Detection

S C A D A N e tw ork

E M S P C N e tw ork

C orpo ra te N e tw orks

R ou te r

F irew a ll

In te rne t

R ou te r

F irew a ll

SA

SS

Page 10: Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems lrfolkerth@cmsenergy.com

Firewalls

• Commercial product is probably best

• Consider location when choosing brand and type– Parallel implementations

• Use same type and brand as main Internet firewall

– Series implementations• Use different brand from main firewall

Page 11: Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems lrfolkerth@cmsenergy.com

Packet Filtering

• Available in most routers

• Used where a firewall is overkill

• More difficult to maintain

Page 12: Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems lrfolkerth@cmsenergy.com

Vulnerability Analysis

• Host based– COPS (UNIX)

– ASET (Solaris)

– SCE (NT)

– Commercial

• Network Based– SATAN

– nmap

– Commercial

Page 13: Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems lrfolkerth@cmsenergy.com

Intrusion Detection

• Host Based– Tripwire (UNIX)– Commercial (Other)

• Network Based– SHADOW– Commercial

Page 14: Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems lrfolkerth@cmsenergy.com

Building an Intrusion Detection System (IDS)

• Obtain Software• Obtain Hardware

– Sensor Requirements– Analysis Station

Requirements

• Install the sensor– OS– tcpdump, libpcap, ssh,

SHADOW– Configure

• Install the analysis system– OS

– tcpdump, libpcap, ssh, apache, browser, SHADOW

– Configure

Page 15: Network Security Lewis R. Folkerth, P. E. Consumers Energy Energy Management Systems lrfolkerth@cmsenergy.com

Maintaining Security

• Keep up with the latest exploits

• Ongoing education

• Newsletters

• Incident Response Groups

• NIPC - Infragard


Marleen Lord-Lewis Vice-President, Business Development ... · Marleen Lord-Lewis Vice-President, Business Development National Energy Corporation of Trinidad & Tobago

Irish Activities in Energy Efficiency: Prof. J. Owen Lewis, Chief Executive, Sustainable Energy Authority of Ireland

Energy Efficiency -an architect’s perspective Professor J Owen Lewis UCD Energy Research Group EURIMA Congress, Budapest June 2007

Steven Lewis Global Facilities Engineering Manager · PDF fileSteven Lewis Global Facilities Engineering Manager. ... •Empower design engineers to reduce global energy use ... Semiconductor

California’s Energy Future - EPRIeea.epri.com/pdf/epri-energy-and-climate-change-research-seminar/... · • Nate Lewis • Lyn Orr • Jan Schori ... Enhanced geothermal systems

Lewis Investigation Lewis Document

1 CIP-007-1 Systems Security Management A Compliance Perspective Lew Folkerth CIP Compliance Workshop Baltimore, MD August 19-20, 2009 © ReliabilityFirst

Lewis and Clark County Energy Conservation Initiatives Tri-County Small Efficiency Grant Program

Lewis... · Web viewFort Lewis College Control of Hazardous Energy Including Electrical Hazards Lockout/Tagout Program February, 2009

Making Clean Local Energy Accessible Now 12 June 2014 Community Microgrids Energy Storage Enabling the Modern Electricity System Craig Lewis Executive

RENEWABLE ENERGY AND STORAGE - Morgan Lewis

Energy and Telecommunications Interim Committee FAX (406 ...leg.mt.gov/content/Committees/Interim/2013-2014/Energy-and... · ROBYN DRISCOLL MARY MCNALLY JOY LEWIS, Secretary ALAN

PART L Problem or opportunity? Bill Wright Corporate Energy and Environment Manager, John Lewis plc

1 CIP-002-1 Critical Cyber Asset Identification A Compliance Perspective Lew Folkerth CIP Compliance Workshop Baltimore, MD August 19-20, 2009 © ReliabilityFirst

Lewis Lewis

Net-zero emissions energysystems - Energy Innovation · REVIEW SUMMARY ENERGY Net-zero emissions energysystems Steven J. Davis*, Nathan S. Lewis*, Matthew Shaner, Sonia Aggarwal,

Valence Electrons and Lewis Dot Structures. Orbitals – energy levels of electrons Electron Placement

Energy Tutorial: Solar Energy 101 - Stanford University ... · GLOBAL CLIMATE AND ENERGY PROJECT | STANFORD UNIVERSITY Energy Tutorial: Solar Energy 101 Professor Nate Lewis Chemistry

APM Conference Manchester: Creating a new energy platform for the UK - Anthony Lewis

Tyler Lewis Clean Energy Research Foundation Harnessing

Evaluation of the DECC/John Lewis energy labelling trial · 2014. 9. 3. · John Lewis were responsible for the operational side – ensuring rollout of the correct labels in stores,

Clean Energy and Bond Finance Initiative/CE+BFI - cdfa.net · Clean Energy And Bond Finance Initiative Task Force Call June 20, 2013 Lewis Milford, President Clean Energy Group Toby

Energy Performance Evaluation of Conference Paper · 2013. 9. 26. · Energy Performance Evaluation of a Low-Energy Academic Building . ABSTRACT . The Adam Joseph Lewis Center for

Lewis Energy Natural Gas Operations

COBRA “Something Old & Something New” October 12, 2006 Presented by: Paul J. Routh Weprin Folkerth & Routh LLC Attorneys at Law 3931 South Dixie Drive

Statement of Marlo Lewis 1 - Federation of American · PDF fileStatement of Marlo Lewis Senior Fellow Competitive Enterprise Institute Before the Select Committee on Energy Independence

6 Folkerth and Warnecke on SEWA

Lewis Milford President Clean Energy Group cleanegroup

Energy - Fort Lewis Collegefaculty.fortlewis.edu/LASHELL_B/energy.pdfDigestible Energy (DE) •G E - FE – Gross energy - Fecal energy (lost in feces) • What animal has available

Lewis Symbols and Structures - OpenStax CNX5.pdf/lewis-symbols-and...2 Lewis Structures WealsouseLewissymbolstoindicatetheformationofcoalenvtbonds, whichareshownin Lewis structures

Embodied Reading: A Multisensory Experiencekaikunze.de/papers/pdf/sanchez2016embodied.pdf · Folkerth nds that in theatre, meaning is time-immanent, fully perceived in an embod-ied

The Lewis Legacy - Lewis Family Descendantslewis-family-descendants.com › userfiles › image › LEWIS_FAMILY_N… · The Lewis Legacy Lewis Coat of Arms Kenmore Dear Lewis Family,

“Army Power & Energy · Army Power & Energy ILW Panel 2 . Assistant Secretary of the Army (Installations, Energy, ... CA JB Lewis-McChord, WA JB Lewis-McChord, WA West Point, NY

CHAIR’S LECTURE: CALIFORNIA ENERGY FUTURES STUDY RESULTS · CHAIR’S LECTURE: CALIFORNIA ENERGY FUTURES STUDY RESULTS July 15, ... Nate Lewis, Caltech ... Enhanced geothermal systems

Demonstration of the Ocean Energy (OE) Buoy at US Navy's Wave Energy … · 2019-12-02 · Demonstration of the Ocean Energy (OE) Buoy at US Navy's Wave Energy Test Site Author: Lewis