The continuing trend in Industrial Automation and Control System (IACS) networking is the convergence of industrial automation technology with information technology (IT). With this in mind, industrial automation control system and information technology network engineers need to take steps to ensure appropriate IPS security and protect their assets. Increasingly, this involves a holistic, defence-in-depth approach, leading to a scalable, robust, secure and future-ready network infrastructure using standard networking and security technology.

A defence-in-depth industrial network security framework is most effective, as it addresses both internal and external security threats. A balanced framework will take in both technical and non-technical elements. As such, it reduces the risks to control system architectures, at the same time addressing the physical and procedural factors that can pose a threat to effective ICS security.

A best-practice industrial network security framework will be based on a well-defined set of security policies and procedures using established IT processes, while balancing the functional requirements of the industrial automation control application itself.

For many, EtherNet/IP provides the solution, helping them to enable convergence and ensure industrial network security through the use of standard Ethernet and Internet Protocol (IP) technology. EtherNet/IP, as a single industrial network technology familiar to users of ControlLogix control systems, can bring together multi-discipline applications, promoting better asset utilization and seamless sharing of information across the enterprise.

Rockwell Automation and Cisco have collaborated to develop Converged Plantwide Ethernet (CPwE) reference architectures to help engineers to design and deploy a robust industrial network security framework that helps operators to ensure effective protection for automated control systems. These manufacturing-focused reference architectures, comprised of the Rockwell Automation Integrated Architecture™ and Cisco’s Industrial Intelligence, provide users with the foundation for success to deploy the latest technology. They address the topics relevant to both engineering and IT professionals in securing their industrial automation control systems against internal and external threats. The white paper here provides an invaluable insight into the design challenges to consider.

Download white paper: Design Considerations for Securing Industrial Automation and Control System Networks