Most NetFlow monitoring architectures inherently support SCADA compliance efforts.  Before I digress on how, lets define what SCADA stands for: Supervisory Control And Data Acquisition. As the name indicates, it is not a full control system, but rather focuses on the supervisory level.  SCADA systems are used not only in most industrial processes: e.g. steel making, power generation (conventional and nuclear) and distribution, chemistry, but also in some experimental facilities such as nuclear fusion (e.g. CERN).

IPFIX and NetFlow collection and reporting supports SCADA software systems because it helps IT departments optimized network connection times between disparate hosts in near real time.  Because of this, it can help optimize network availability. Some NetFlow and IPFIX Analysis solutions support SCADA compliance efforts by:

  • Providing insight on busy connections where frivolous traffic could be removed resulting in optimized connections
  • Displaying mashups or dashboards that provide a console into potential network threats, congested links, top talkers, applications across thousands of routers and switches
  • Delivering details which enable administrators to collect profiles on specific hosts or applications Constantly collecting NetFlow – 7×24 and analyzing flows with forensic precision to uncover network communication threats. Using network behavior analysis, the NetFlow solution can take action.
  • Supporting efforts to meet the demands of NERC CIP and FISMA/NIST
  • Delivering the visibility, measurability and accountability mandated to maintain compliance with both PCI DSS (Payment Card Industry Data Security Standard) and PA DSS (Payment Application Data Security Standard).
  • Creating a Centralization of data across different physical and virtual networks

Similar to distributed NetFlow collectors, SCADA systems like to be centralized and strive to provide a HMI (Human Machine Interface) which presents the data in a graphical customizable interface:

NetFlow and SCADA

The gadgets in the above dashboard mashup can be imported into other systems via a URL.

We understand that the costs resulting from failure of a control system could be very high, for a few installations, even lives may be lost.  The calculated value of mean time to failure for superior reliability systems could be on order for centuries.

Mike Patterson author pic

Michael

Michael is one of the Co-founders and the former product manager for Scrutinizer. He enjoys many outdoor winter sports and often takes videos when he is snowmobiling, ice fishing or sledding with his kids. Cold weather and lots of snow make the best winters as far as he is concerned. Prior to starting Somix and Plixer, Mike worked in technical support at Cabletron Systems, acquired his Novell CNE and then moved to the training department for a few years. While in training he finished his Masters in Computer Information Systems from Southern New Hampshire University and then left technical training to pursue a new skill set in Professional Services. In 1998 he left the 'Tron' to start Somix which later became Plixer.

Related

Big Data

Sankey Flow Graph

One of the greatest benefits of NetFlow collection for traffic analysis, is we’re provided with the ability to visualize the…

Leave a Reply