Print Email Facebook Twitter Assessing and Improving SCADA Security in the Dutch Drinking Water Sector Title Assessing and Improving SCADA Security in the Dutch Drinking Water Sector Author Luiijf, H.A.M. Ali, M. Zielstra, A. TNO Defensie en Veiligheid Contributor Setola, R. (editor) Geretshuber, S. (editor) Publication year 2009 Abstract International studies have shown that information security for process control systems, in particular SCADA, is weak. As many critical infrastructure (CI) services depend on process control systems, any vulnerability in the protection of process control systems in CI may result in serious consequences for citizens and society. In order to understand their strengths and weaknesses, the drinking water sector in The Netherlands benchmarked the information security of their process control environments. Large differences in their security postures were found. Good Practices for SCADA security were developed based upon the study results. This paper will discuss the simple but effective approach taken to perform the benchmark, the way the results were reported to the drinking water companies, and the way in which the SCADA security good practices were developed. Figures shown in this paper are based on artificially constructed data since the study data contain company and national sensitive information. Subject SafetyProcess control systemsInformation securityScadaCritical infrastructure protection To reference this document use: http://resolver.tudelft.nl/uuid:06fcc2af-443d-4eaf-b01a-3c5c3ad00219 DOI https://doi.org/10.1007/978-3-642-03552-4_17 TNO identifier 242066 Publisher Springer, Berlin Source Critical Information Infrastructure Security : Third International Workshop, CRITIS 2008, Rome, Italy, October13-15, 2008, 190-199 Series Lecture Notes in Computer Science (LNCS) Document type bookPart Files To receive the publication files, please send an e-mail request to TNO Library.