Challenges to Automating Security Configuration Checklists in Manufacturing Environments
Joshua Lubell, Timothy A. Zimmerman
Information technology is essential for today's manufacturing systems, making them more vulnerable to cybersecurity threats than ever before. This paper discusses the challenge of developing automatable configuration checklists for the manufacturing environment using the Security Content Automation Protocol (SCAP) family of standards. More use of SCAP in manufacturing environments would reduce security vulnerabilities and reduce the likelihood of damaging cyberattacks to manufacturing systems. However, complex relationships and dependencies between and among checklist rules, checking instructions, and software platforms make it difficult to reuse or repurpose existing SCAP-expressed checklist content. A review of recent and current research and technology development yields some potentially promising approaches to improving reuse.
Critical Infrastructure Protection XI. ICCIP 2017. IFIP Advances in Information and Communication Technology
and Zimmerman, T.
Challenges to Automating Security Configuration Checklists in Manufacturing Environments, Critical Infrastructure Protection XI. ICCIP 2017. IFIP Advances in Information and Communication Technology, Springer, Cham, -1, [online], https://doi.org/10.1007/978-3-319-70395-4_12
(Accessed December 8, 2023)