Guide to Industrial Control Systems (ICS) Security

Published: May 14, 2013


Keith A. Stouffer, Joseph A. Falco, Karen A. Scarfone


[Superseded by NIST SP 800-82 Rev. 2 (May 2015):] This document provides guidance on how to secure Industrial Control Systems (ICS), including Supervisory Control and Data Acquisition (SCADA) systems, Distributed Control Systems (DCS), and other control system configurations such as Programmable Logic Controllers (PLC), while addressing their unique performance, reliability, and safety requirements. The document provides an overview of ICS and typical system topologies, identifies typical threats and vulnerabilities to these systems, and provides recommended security countermeasures to mitigate the associated risks. [Supersedes NIST SP 800-82 (June 2011):]
Citation: Special Publication (NIST SP) - 800-82 Rev 1
Report Number:
800-82 Rev 1
Pub Type: NIST Pubs


Superseded by


Computer security, distributed control systems (DCS), industrial control systems (ICS), information security, network security, programmable logic controllers (PLC), risk management, security controls, supervisory control and data acquisition (SCADA) systems
Created May 14, 2013, Updated November 10, 2018