The Purdue Model defines different levels for different types of systems. IEC 62443 provides guidance for defining zones and conduits based on the notion of security levels. We can use this to define that the IT systems should be separated from the OT systems, and that the OT zones and conduits need to provide capabilities to a certain level. However, is this enough to define if a SCADA server can be in the same zone with a dispatch workstation, or if the same SCADA frontend can communicate with both internal and external RTUs? In the webinar, we will analyze this question and look into a possible extended approach.
ENCS members can download the invitations for the architecture program webinars here.
The webinar slides and link to the recording can be found below: