Framework for Improving Critical Infrastructure Cybersecurity
The National Institute of Standards and Technology (NIST) is the US government agency responsible for promoting U.S. innovation and industrial competitiveness. Under presidential executive order 13636, NIST was directed to develop a voluntary framework for reducing cyber risk to critical infrastructure. These federally endorsed best practices for private sector security were established to promote security within 16 specific sectors deemed critical to US economy including financial services, communications and energy. Enterprises are increasingly adopting these guidelines to achieve cost effective risk reduction and to demonstrate an effective security posture.
Secure Shell in Critical Infrastructure
The security controls specified within the NIST Federal Cybersecurity Framework require management, monitoring and control over Secure Shell infrastructure – including software, configurations and authorizations (keys).
CYBERSECURITY FRAMEWORK SECURE SHELL GUIDANCE
Map data flows and trust relationships enabled via Secure Shell.
Ensure all Secure Shell authorizations are established, monitored and maintained in accordance with access control policies in place for the organization.
Secure Shell access and changes to Secure Shell authorizations should be part of a continuous monitoring program.
Ensure activity taking place within Secure Shell sessions are auditable and integrated with security event management system.
Information system recovery and reconstitution should be able to re-establish a Secure Shell authentication infrastructure in the event of a compromise.