Application Whitelisting (AWL) can detect and give a wide berth to attempted execution of malware uploaded by harmful actors. The nature that is static of systems, such as for instance database servers and HMI computer systems, make these perfect prospects to perform AWL. Operators ought to make use of their vendors to baseline and calibrate AWL deployments. A
Companies should separate ICS companies from any untrusted sites, particularly the online. All ports that are unused be locked down and all sorts of unused solutions switched off. If a definite company requirement or control function exists, just allow real-time connectivity to outside companies. If one-way interaction can achieve an activity, utilize optical separation (“data diode”). Then use a single open port over a restricted network path if bidirectional communication is necessary.