ISA 99.00.01 : 2007

Foreword
Introduction
1 Scope
2 Normative References
3 Definitions
  3.1 Introduction
  3.2 Terms
  3.3 Abbreviations
4 The Situation
  4.1 General
  4.2 Current Systems
  4.3 Current Trends
  4.4 Potential Impact
5 Concepts
  5.1 General
  5.2 Security Objectives
  5.3 Defense in Depth
  5.4 Security Context
  5.5 Threat-Risk Assessment
  5.6 Security Program Maturity
  5.7 Policies
  5.8 Security Zones
  5.9 Conduits
  5.10 Security Levels
  5.11 Security Level Lifecycle
6 Models
  6.1 General
  6.2 Reference Models
  6.3 Asset Models
  6.4 Reference Architecture
  6.5 Zone and Conduit Model
  6.6 Model Relationships

ISA-TR99.00.01-2007, Security Technologies for Industrial Automation and Control Systems, provides a comprehensive review of cybersecurity technologies and countermeasures relevant to industrial automation and control systems (IACS), covering areas such as role-based access control, password and token authentication, biometric and location-based methods and the use of smart cards. This technical report details network and host-based firewalls, virtual LANs and encryption techniques, including symmetric and public key cryptography, along with VPN implementations. It also examines management tools like log auditing, virus detection, intrusion detection systems, vulnerability scanners, forensic analysis, host configuration management and automated software deployment. Additionally, ISA-TR99.00.01 emphasizes the importance of physical security measures and personnel security practices to defend against both technical and human vulnerabilities. Throughout this document, deployment considerations, known limitations and future directions are discussed, especially in relation to the constraints and needs of industrial control environments