NIST TN 2283 (Initial Public Draft)
Cybersecurity for the Water and Wastewater Sector: Build Architecture. Operational Technology Remote Access
https://nvlpubs.nist.gov/nistpubs/TechnicalNotes/NIST.TN.2283.ipd.pdf
Reference
[1] NIST NCCoE (2023), “Cybersecurity for the Water and Wastewater Sector”
https://www.nccoe.nist.gov/sites/default/files/2023-06/securing-water-and-
wastewater-utilities-project-description-final.pdf
[2] CISA, (2021) “Ongoing Cyber Threats to U.S. Water and Wastewater Systems”,
https://media.defense.gov/2021/Oct/14/2002873650/-1/-1/0/CSA_ONGOING_CYBER_THREATS_TO_U.S._WATER_AND_WASTEWATER_SYSTEMS_20211014.PDF
[3] CISA, Improving Cybersecurity in Small and Medium-Sized US Water Utilities,
https://www.cisa.gov/sites/default/files/publications/nipp-challenge-awwa-cybersecurity-508.pdf
[4] Souppaya MP, Scarfone KA (2016) Guide to Enterprise Telework, Remote Access, and Bring Your Own Device (BYOD) Security. (National Institute of Standards and
Technology, Gaithersburg, MD), NIST Special Publication (SP) 800-46, Rev. 2.
https://doi.org/10.6028/NIST.SP.800-46r2
[5] Drinking Water Dashboard Help, United States Environmental Protection Agency,
Drinking Water Dashboard Help | ECHO | US EPA
[6] Information about Public Water Systems, United States Environmental Protection
Agency, Information about Public Water Systems | US EPA
[7] U.S. Water Supply and Distribution Factsheet | Center for Sustainable Systems
(umich.edu)
[8] Dragos, Inc. (n.d.) “5 Critical Controls for World-Class OT Cybersecurity” 5 Critical Controls for World-Class OT Cybersecurity | Dragos
[9] CISA, NSA, DoJ, MS-ISAC (2023) “Guide to Securing Remote Access Software”.
https://www.cisa.gov/sites/default/files/2023-06/Guide%20to%20Securing%20Remote%20Access%20Software_clean%20Final_508c.pdf
[10] Dragos, Inc. (2023) “Getting Started Secure Remote Access – Part 1”
[11] Mather, Stephen, “Introduction to ICS Security Part 3: Remote Access Best Practices,”The SANS Institute, October 1, 2021, Introduction to ICS Security Part 3 | SANS Institute
https://www.sans.org/blog/introduction-to-ics-security-part-3/
Bastion Host
A special purpose computer on a network where the computer is specifically designed and configured to withstand
attacks. [Bastion Host - Glossary | CSRC (nist.gov)]
Note: Wikipedia notes that securing remote access in the main use case for bastion hosts – which suggests
a Jump Server is a Bastion Host [Bastion host - Wikipedia]
Cryptographic Overlay Network
A cryptographic overlay network is an overlay network implemented using cryptography.
Jump Server
“… a system on a network used to access and manage devices in a separate security zone. A jump server is
a hardened and monitored device that spans two dissimilar security zones and provides a controlled means of
access between them.” [Jump server - Wikipedia]
Overlay Network
An overlay network is a virtual or logical network that is created on top of an existing physical network. [What is an
535
overlay network? (techtarget.com)]
参考資料
<この項は書きかけです。順次追記します。>
This article is not completed. I will add some words in order.
一覧
物理記事 上位100
https://qiita.com/kaizen_nagoya/items/66e90fe31fbe3facc6ff
量子(0) 計算機, 量子力学
https://qiita.com/kaizen_nagoya/items/1cd954cb0eed92879fd4
数学関連記事100
https://qiita.com/kaizen_nagoya/items/d8dadb49a6397e854c6d
統計(0)一覧
https://qiita.com/kaizen_nagoya/items/80d3b221807e53e88aba
品質一覧
https://qiita.com/kaizen_nagoya/items/2b99b8e9db6d94b2e971
言語・文学記事 100
https://qiita.com/kaizen_nagoya/items/42d58d5ef7fb53c407d6
医工連携関連記事一覧
https://qiita.com/kaizen_nagoya/items/6ab51c12ba51bc260a82
自動車 記事 100
https://qiita.com/kaizen_nagoya/items/f7f0b9ab36569ad409c5
通信記事100
https://qiita.com/kaizen_nagoya/items/1d67de5e1cd207b05ef7
日本語(0)一欄
https://qiita.com/kaizen_nagoya/items/7498dcfa3a9ba7fd1e68
英語(0) 一覧
https://qiita.com/kaizen_nagoya/items/680e3f5cbf9430486c7d
転職(0)一覧
https://qiita.com/kaizen_nagoya/items/f77520d378d33451d6fe
仮説(0)一覧(目標100現在40)
https://qiita.com/kaizen_nagoya/items/f000506fe1837b3590df
音楽 一覧(0)
https://qiita.com/kaizen_nagoya/items/b6e5f42bbfe3bbe40f5d
「@kazuo_reve 新人の方によく展開している有益な情報」確認一覧
https://qiita.com/kaizen_nagoya/items/b9380888d1e5a042646b
Qiita(0)Qiita関連記事一覧(自分)
https://qiita.com/kaizen_nagoya/items/58db5fbf036b28e9dfa6
鉄道(0)鉄道のシステム考察はてっちゃんがてつだってくれる
https://qiita.com/kaizen_nagoya/items/26bda595f341a27901a0
安全(0)安全工学シンポジウムに向けて: 21
https://qiita.com/kaizen_nagoya/items/c5d78f3def8195cb2409
一覧の一覧( The directory of directories of mine.) Qiita(100)
https://qiita.com/kaizen_nagoya/items/7eb0e006543886138f39
Ethernet 記事一覧 Ethernet(0)
https://qiita.com/kaizen_nagoya/items/88d35e99f74aefc98794
Wireshark 一覧 wireshark(0)、Ethernet(48)
https://qiita.com/kaizen_nagoya/items/fbed841f61875c4731d0
線網(Wi-Fi)空中線(antenna)(0) 記事一覧(118/300目標)
https://qiita.com/kaizen_nagoya/items/5e5464ac2b24bd4cd001
OSEK OS設計の基礎 OSEK(100)
https://qiita.com/kaizen_nagoya/items/7528a22a14242d2d58a3
Error一覧 error(0)
https://qiita.com/kaizen_nagoya/items/48b6cbc8d68eae2c42b8
++ Support(0)
https://qiita.com/kaizen_nagoya/items/8720d26f762369a80514
Coding(0) Rules, C, Secure, MISRA and so on
https://qiita.com/kaizen_nagoya/items/400725644a8a0e90fbb0
プログラマによる、プログラマのための、統計(0)と確率のプログラミングとその後
https://qiita.com/kaizen_nagoya/items/6e9897eb641268766909
なぜdockerで機械学習するか 書籍・ソース一覧作成中 (目標100)
https://qiita.com/kaizen_nagoya/items/ddd12477544bf5ba85e2
言語処理100本ノックをdockerで。python覚えるのに最適。:10+12
https://qiita.com/kaizen_nagoya/items/7e7eb7c543e0c18438c4
プログラムちょい替え(0)一覧:4件
https://qiita.com/kaizen_nagoya/items/296d87ef4bfd516bc394
Python(0)記事をまとめたい。
https://qiita.com/kaizen_nagoya/items/088c57d70ab6904ebb53
官公庁・学校・公的団体(NPOを含む)システムの課題、官(0)
https://qiita.com/kaizen_nagoya/items/04ee6eaf7ec13d3af4c3
「はじめての」シリーズ ベクタージャパン
https://qiita.com/kaizen_nagoya/items/2e41634f6e21a3cf74eb
AUTOSAR(0)Qiita記事一覧, OSEK(75)
https://qiita.com/kaizen_nagoya/items/89c07961b59a8754c869
プログラマが知っていると良い「公序良俗」
https://qiita.com/kaizen_nagoya/items/9fe7c0dfac2fbd77a945
LaTeX(0) 一覧
https://qiita.com/kaizen_nagoya/items/e3f7dafacab58c499792
自動制御、制御工学一覧(0)
https://qiita.com/kaizen_nagoya/items/7767a4e19a6ae1479e6b
Rust(0) 一覧
https://qiita.com/kaizen_nagoya/items/5e8bb080ba6ca0281927
小川清最終講義、最終講義(再)計画, Ethernet(100) 英語(100) 安全(100)
https://qiita.com/kaizen_nagoya/items/e2df642e3951e35e6a53
<この記事は個人の過去の経験に基づく個人の感想です。現在所属する組織、業務とは関係がありません。>
This article is an individual impression based on my individual experience. It has nothing to do with the organization or business to which I currently belong.
文書履歴(document history)
ver. 0.01 初稿 20240616
最後までおよみいただきありがとう4ざいました。
いいね 💚、フォローをお願いします。
Thank you very much for reading to the last sentence.
Please press the like icon 💚 and follow me for your happy life.