编者按:
《NIST网络安全框架制造篇》为制造商管理网络安全风险提供了思路,可作为规划方案,指导读者如何识别机会,改善制造系统的网络安全状况。它根据特定的业务/任务目标,为安全活动划分了优先级,同时确定了哪些安全实践具有可操作性,可以为关键业务/任务目标提供支撑。
在指南第1卷-总体指导中:
- 第1节概述了《网络安全框架制造篇》目的与使用范围;
- 第2节简要介绍了制造系统;
- 第3节介绍了《网络安全框架制造篇》内容;
- 第4节阐述了该项目的《网络安全框架制造篇》实施方法;
- 第5节概述了满足《网络安全框架制造篇》中“低影响性”要求所需的政策和程序文件;
- 第6节介绍了满足《网络安全框架制造篇》中“低影响性”要求所需的技术能力;
- 第7节讨论了满足《网络安全框架制造篇》中“低影响性”要求的可能方案;
- 第8节概述了实施方案的实验室环境。
此篇连载内容为第7节: 能力与制造篇的对应关系
本节分析了实现各子类需求要采取的政策和程序(见第五节)和/或技术方案(见第六节),并列举了小型制造商实现这些需求可能要采取的方案。判断这些方案是否可行主要取决于成本、易用性以及要投入的工作量。表中所列举的可能方案仅为示例,并非全部。关于每个用例的实验室环境中实施的特定方案,我们将在卷2和卷3中介绍。
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-30-1024x393.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-68-1024x551.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-32-1024x386.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-33-1024x249.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-34-1024x363.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-35-1024x553.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-36-1024x255.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-37-1024x523.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-38-1024x391.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-39-1024x280.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-40-1024x589.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-41-1024x596.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-42-1024x608.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-43-1024x582.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-44-1024x168.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-45-1024x650.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-46-1024x361.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-47-1024x652.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-48-1024x527.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-49-1024x557.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-50-1024x640.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-51-1024x560.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-52-1024x636.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-53-1024x576.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-54-1024x602.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-55-1024x580.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-56-1024x597.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-57-1024x351.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-58-1024x383.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-59-1024x446.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-60-1024x558.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-61-1024x615.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-62-1024x584.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-63-1024x590.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-64-1024x500.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-65-1024x476.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-66-1024x194.png)
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/image-67-1024x57.png)
连载(三)完
下期连载内容:第8节 实验室环境概述
第8节将详细介绍位于马里兰州的盖瑟斯堡的国家标准和技术研究所(NIST)总部的实验室环境(即实验室)。该实验室具有联网服务器组成的共享基础设施、评测工具、工业机器人、硬件在环仿真器等技术,为在两个制造系统(过程控制系统(PCS)和协同机器人系统(CRS))上实现《制造篇》提供支持。
本指南第1卷—总体指导的英文原文可从以下地址免费获取:
https://doi.org/10.6028/NIST.IR.8183A-1
本指南其余两卷为:
NISTIR 8183A第2卷,网络安全框架制造篇低影响性示例实施指南:第2卷—流程型制造系统用例
https://doi.org/10.6028/NIST.IR.8183A-2
NISTIR 8183A第3卷,网络安全框架制造篇低影响性示例实施指南:第3卷—离散型制造系统用例
https://doi.org/10.6028/NIST.IR.8183A-3
译者声明:
![](https://blog.nsfocus.net/wp-content/uploads/2020/07/小蜜蜂翻译组.png)
小蜜蜂翻译组公益译文项目,旨在分享国外先进网络安全理念、规划、框架、技术标准与实践,将网络安全战略性文档翻译为中文,为网络安全从业人员提供参考,促进国内安全组织在相关方面的思考和交流。