Cybersecurity Framework

Framework for Improving Critical Infrastructure Cybersecurity

The National Institute of Standards and Technology (NIST) is the US government agency responsible for promoting U.S. innovation and industrial competitiveness. Under presidential executive order 13636, NIST was directed to develop a voluntary framework for reducing cyber risk to critical infrastructure. These federally endorsed best practices for private sector security were established to promote security within 16 specific sectors deemed critical to US economy including financial services, communications and energy. Enterprises are increasingly adopting these guidelines to achieve cost effective risk reduction and to demonstrate an effective security posture.

Secure Shell in Critical Infrastructure

The security controls specified within the NIST Federal Cybersecurity Framework require management, monitoring and control over Secure Shell infrastructure – including software, configurations and authorizations (keys).

The Overview

CYBERSECURITY FRAMEWORK                                            SECURE SHELL GUIDANCE

  • Identify 

    Map data flows and trust relationships enabled via Secure Shell.

  • Protect 

    Ensure all Secure Shell authorizations are established, monitored and maintained in accordance with access control policies in place for the organization.

  • Detect 

    Secure Shell access and changes to Secure Shell authorizations should be part of a continuous monitoring program.

  • Respond

    Ensure activity taking place within Secure Shell sessions are auditable and integrated with security event management system.

  • Recover

    Information system recovery and reconstitution should be able to re-establish a Secure Shell authentication infrastructure in the event of a compromise.