Capabilities Assessment for Securing Manufacturing Industrial Control Systems

Current Status

After reviewing public comments, the NCCoE has released a final project description Capabilities Assessment for Securing Manufacturing Industrial Control Systems. We are no longer accepting Letters of Interest from technology vendors as part of this project. Companies that have been selected to participate have signed a Cooperative Research and Development Agreement (CRADA; see an example) with NIST. 

Summary

Industrial Control Systems (ICS) monitor and control physical processes in many different industries and sectors, especially in manufacturing. A cyber attack directed at a manufacturing organization’s infrastructure could result in detrimental consequences to both human life and property. In collaboration with the NIST Engineering Laboratory (EL), the NCCoE will produce a series of reference designs demonstrating four cybersecurity capabilities for the manufacturing sector.

For this project, the NCCoE and EL will demonstrate behavioral anomaly detection and prevention mechanisms, to support a multifaceted approach of counteracting cyber attacks against ICS devices that provide the functionality necessary to run manufacturing processes.

The goal is to provide industry with detailed information to establish an anomaly detection and prevention capability in their own environments. By implementing behavioral anomaly detection tools, manufacturers are provided with a key security component that will aid in sustaining business operations, particularly those based on ICS.

This project will result in a NIST Cybersecurity Practice Guide and will be part one of a four-part series. While the reference design will focus on cybersecurity, the NCCoE example solution may also produce residual benefits to manufacturers for detecting anomalous conditions that are not security related. 

Questions? Comments? Reach us at manufacturing_nccoe@nist.gov.

Collaborating Vendors

Organizations participating in this project submitted their capabilities in response to an open call in the Federal Register for all sources of relevant security capabilities from academia and industry (vendors and integrators). The following respondents with relevant capabilities or product components (identified as “Technology Partners/Collaborators” herein) signed a Cooperative Research and Development Agreement to collaborate with NIST in a consortium to build this example solution.

CyberX logo
GuardX logo
OSISoft logo
SecureNok logo
Security Matters logo
Ultra Electronics 3eTi logo