WEBVTT 1 00:00:00.000 --> 00:00:01.320 In this lesson, 2 00:00:01.320 --> 00:00:05.820 we will learn about operational technology or OT. 3 00:00:05.820 --> 00:00:08.700 Operational technology is the hardware 4 00:00:08.700 --> 00:00:11.293 and software systems that are often part 5 00:00:11.293 --> 00:00:13.770 of a critical infrastructure. 6 00:00:13.770 --> 00:00:18.060 OT or operational technology monitors and controls 7 00:00:18.060 --> 00:00:21.600 the physical processes within the infrastructure 8 00:00:21.600 --> 00:00:24.570 and requires robust security measures 9 00:00:24.570 --> 00:00:28.470 to protect against disruptions and unauthorized access 10 00:00:28.470 --> 00:00:30.675 because of the critical processing 11 00:00:30.675 --> 00:00:33.510 that they monitor and control. 12 00:00:33.510 --> 00:00:37.140 Operational technology examples include heating, 13 00:00:37.140 --> 00:00:41.280 ventilation, and air conditioning or HVAC systems, 14 00:00:41.280 --> 00:00:44.370 industrial control systems or ICS, 15 00:00:44.370 --> 00:00:47.760 and Supervisory Control and Data Acquisition 16 00:00:47.760 --> 00:00:49.300 or SCADA systems. 17 00:00:49.300 --> 00:00:54.090 HVAC systems must be secure to prevent tampering 18 00:00:54.090 --> 00:00:57.390 that could lead to unsafe environmental conditions 19 00:00:57.390 --> 00:00:59.640 for persons or equipment. 20 00:00:59.640 --> 00:01:03.060 Next, industrial control systems or ICS 21 00:01:03.060 --> 00:01:05.370 manage industrial processes 22 00:01:05.370 --> 00:01:08.130 and are highly vulnerable to cyber threat 23 00:01:08.130 --> 00:01:10.290 if not properly secured. 24 00:01:10.290 --> 00:01:13.230 ICS's control essential functions 25 00:01:13.230 --> 00:01:16.140 in manufacturing and utilities. 26 00:01:16.140 --> 00:01:19.268 Finally, SCADA or Supervisory Control 27 00:01:19.268 --> 00:01:21.690 and Data Acquisition systems 28 00:01:21.690 --> 00:01:25.890 are a subset of ICS used for remote monitoring 29 00:01:25.890 --> 00:01:28.260 and control of infrastructure 30 00:01:28.260 --> 00:01:31.710 like power plants and water treatment facilities. 31 00:01:31.710 --> 00:01:34.770 Let's learn more about operational technology 32 00:01:34.770 --> 00:01:38.760 such as heating, ventilation, air conditioning or HVAC, 33 00:01:38.760 --> 00:01:41.790 industrial control systems or ICS, 34 00:01:41.790 --> 00:01:46.620 and the Supervisory Control and Data Acquisition or SCADA. 35 00:01:46.620 --> 00:01:48.912 First, we have HVAC. 36 00:01:48.912 --> 00:01:53.010 HVAC is a type of operational technology 37 00:01:53.010 --> 00:01:55.770 used to control the climate in buildings. 38 00:01:55.770 --> 00:01:59.371 Unlike regular computers or IT systems, 39 00:01:59.371 --> 00:02:04.050 HVAC systems focus on managing the temperature, airflow, 40 00:02:04.050 --> 00:02:07.320 and air quality in commercial environments. 41 00:02:07.320 --> 00:02:09.150 These systems are important 42 00:02:09.150 --> 00:02:12.150 not only for the comfort and safety of people, 43 00:02:12.150 --> 00:02:13.980 but also for the protection 44 00:02:13.980 --> 00:02:17.130 of sensitive computer network infrastructure 45 00:02:17.130 --> 00:02:19.350 such as servers in the data center. 46 00:02:19.350 --> 00:02:23.130 HVAC systems use embedded devices 47 00:02:23.130 --> 00:02:25.170 like sensors and controllers 48 00:02:25.170 --> 00:02:29.940 to automatically adjust heating, cooling, and ventilation. 49 00:02:29.940 --> 00:02:34.260 For example, a sensor can detect the temperature in a room, 50 00:02:34.260 --> 00:02:37.454 and based on this data, the HVAC system 51 00:02:37.454 --> 00:02:41.340 can turn on the air conditioning to cool the space. 52 00:02:41.340 --> 00:02:42.660 In a data center, 53 00:02:42.660 --> 00:02:46.680 these systems are vital for preventing overheating, 54 00:02:46.680 --> 00:02:50.400 which could damage servers and other sensitive equipment. 55 00:02:50.400 --> 00:02:52.573 This automated process ensures 56 00:02:52.573 --> 00:02:55.671 that the building stays at the correct temperature, 57 00:02:55.671 --> 00:02:58.755 protecting both people and technology 58 00:02:58.755 --> 00:03:01.920 without constant manual intervention. 59 00:03:01.920 --> 00:03:04.860 A key part of an HVAC system 60 00:03:04.860 --> 00:03:08.640 is a Programmable Logic Controller or PLC, 61 00:03:08.640 --> 00:03:11.520 which is programmed to control the system 62 00:03:11.520 --> 00:03:14.100 based on inputs from sensors. 63 00:03:14.100 --> 00:03:17.910 For example, the PLC can receive information 64 00:03:17.910 --> 00:03:20.670 that a data center room is too hot 65 00:03:20.670 --> 00:03:23.160 and then activate the air conditioning 66 00:03:23.160 --> 00:03:24.750 to bring the temperature back 67 00:03:24.750 --> 00:03:27.090 to a safe level for the servers. 68 00:03:27.090 --> 00:03:31.320 Similarly, it can adjust airflow in an office or hospital 69 00:03:31.320 --> 00:03:35.310 to maintain a comfortable environment for occupants. 70 00:03:35.310 --> 00:03:39.239 Operators monitor and control the HVAC system 71 00:03:39.239 --> 00:03:43.440 using a Human Machine Interface or HMI, 72 00:03:43.440 --> 00:03:47.460 which could be a digital control panel or touchscreen. 73 00:03:47.460 --> 00:03:51.450 Through the HMI, operators can adjust settings, 74 00:03:51.450 --> 00:03:53.070 view current conditions, 75 00:03:53.070 --> 00:03:56.280 and ensure the system is functioning correctly. 76 00:03:56.280 --> 00:04:00.180 In large facilities, multiple HVAC systems 77 00:04:00.180 --> 00:04:02.970 might be connected to form a larger network, 78 00:04:02.970 --> 00:04:05.136 ensuring that every part of the building 79 00:04:05.136 --> 00:04:07.620 or even multiple buildings 80 00:04:07.620 --> 00:04:10.980 are properly heated, cooled, and ventilated. 81 00:04:10.980 --> 00:04:12.638 For instance, in a hospital, 82 00:04:12.638 --> 00:04:16.380 HVAC systems help maintain clean air 83 00:04:16.380 --> 00:04:19.980 and the right temperature to protect patient health. 84 00:04:19.980 --> 00:04:21.780 While in a data center, 85 00:04:21.780 --> 00:04:24.840 they safeguard equipment from overheating. 86 00:04:24.840 --> 00:04:29.742 Like other OT systems, HVAC prioritizes availability, 87 00:04:29.742 --> 00:04:34.290 meaning it is essential that these systems work continuously 88 00:04:34.290 --> 00:04:37.410 to maintain a safe and stable environment 89 00:04:37.410 --> 00:04:39.570 for both people and equipment. 90 00:04:39.570 --> 00:04:44.070 Second, we have industrial control systems or ICS. 91 00:04:44.070 --> 00:04:48.120 ICS is used for automating and managing machinery 92 00:04:48.120 --> 00:04:50.190 through embedded devices. 93 00:04:50.190 --> 00:04:52.255 Unlike typical IT systems, 94 00:04:52.255 --> 00:04:56.550 ICS focuses on controlling physical processes 95 00:04:56.550 --> 00:05:00.030 such as opening valves in manufacturing plants 96 00:05:00.030 --> 00:05:03.330 or generating electricity in power plants. 97 00:05:03.330 --> 00:05:07.530 ICS is widely used in areas like power supply, 98 00:05:07.530 --> 00:05:11.730 water distribution, healthcare, and telecommunications, 99 00:05:11.730 --> 00:05:16.140 where these systems prioritize availability and integrity 100 00:05:16.140 --> 00:05:19.320 over confidentiality because the main goal 101 00:05:19.320 --> 00:05:23.280 is to keep industrial processes running smoothly. 102 00:05:23.280 --> 00:05:27.047 When multiple ICS systems are interconnected, 103 00:05:27.047 --> 00:05:31.980 they form a Distributed Control System or DCS, 104 00:05:31.980 --> 00:05:34.350 enabling more efficient control 105 00:05:34.350 --> 00:05:36.900 over large-scale operations. 106 00:05:36.900 --> 00:05:39.210 A key feature of ICS 107 00:05:39.210 --> 00:05:43.590 is its ability to control machinery through embedded devices 108 00:05:43.590 --> 00:05:47.040 like programmable logic controllers or PLCs, 109 00:05:47.040 --> 00:05:50.910 which automate tasks based on input from sensors. 110 00:05:50.910 --> 00:05:54.900 These controllers are programmed using Ladder Logic, 111 00:05:54.900 --> 00:05:58.350 a language designed for industrial automation. 112 00:05:58.350 --> 00:06:02.790 PLCs are then connected through fieldbus communication, 113 00:06:02.790 --> 00:06:06.084 linking them with sensors and input/output devices 114 00:06:06.084 --> 00:06:10.380 to monitor and control the industrial processes. 115 00:06:10.380 --> 00:06:13.410 Human operators interact with these systems 116 00:06:13.410 --> 00:06:16.710 via a Human Machine Interface or HMI, 117 00:06:16.710 --> 00:06:18.510 which is a control panel 118 00:06:18.510 --> 00:06:22.350 that provides a visual representation of the process 119 00:06:22.350 --> 00:06:26.130 and allows for manual input when necessary. 120 00:06:26.130 --> 00:06:30.240 Overall, ICS can be found in various industries 121 00:06:30.240 --> 00:06:32.610 such as manufacturing, utilities, 122 00:06:32.610 --> 00:06:35.130 and even military operations. 123 00:06:35.130 --> 00:06:38.100 For example, on a US Navy warship, 124 00:06:38.100 --> 00:06:40.200 ICS manages everything 125 00:06:40.200 --> 00:06:43.050 from power generation to water treatment, 126 00:06:43.050 --> 00:06:44.970 enabling the ship to function 127 00:06:44.970 --> 00:06:48.000 as a self-contained city at sea. 128 00:06:48.000 --> 00:06:49.980 To ensure smooth operations, 129 00:06:49.980 --> 00:06:53.100 ICS networks use a data historian, 130 00:06:53.100 --> 00:06:57.300 which collects and catalogs data from various devices, 131 00:06:57.300 --> 00:06:59.490 providing valuable information 132 00:06:59.490 --> 00:07:01.650 for monitoring and troubleshooting. 133 00:07:01.650 --> 00:07:05.190 This data is important for security professionals 134 00:07:05.190 --> 00:07:08.580 to track incidents and maintain the security 135 00:07:08.580 --> 00:07:12.480 of OT or operational technology networks. 136 00:07:12.480 --> 00:07:15.099 Third, we have Supervisory Control 137 00:07:15.099 --> 00:07:17.970 and Data Acquisition or SCADA. 138 00:07:17.970 --> 00:07:22.970 SCADA is a subset of ICS used for remote monitoring 139 00:07:23.010 --> 00:07:25.050 and control of infrastructure 140 00:07:25.050 --> 00:07:28.620 like power plants and water treatment facilities. 141 00:07:28.620 --> 00:07:30.570 Unlike standard ICS, 142 00:07:30.570 --> 00:07:34.620 which typically controls processes in a single location, 143 00:07:34.620 --> 00:07:39.060 SCADA systems manage multiple industrial control systems 144 00:07:39.060 --> 00:07:42.300 across wide geographical areas. 145 00:07:42.300 --> 00:07:44.910 They are commonly used in industries 146 00:07:44.910 --> 00:07:48.780 like energy, water management, and telecommunications 147 00:07:48.780 --> 00:07:52.830 where centralized monitoring and control are important. 148 00:07:52.830 --> 00:07:55.770 SCADA networks use communication methods 149 00:07:55.770 --> 00:07:59.790 such as cellular, satellite, or virtual private networks 150 00:07:59.790 --> 00:08:01.980 to connect remote field devices 151 00:08:01.980 --> 00:08:04.200 with a central control center. 152 00:08:04.200 --> 00:08:08.601 SCADA systems rely on embedded PLCs and sensors 153 00:08:08.601 --> 00:08:13.320 to monitor industrial processes at different locations. 154 00:08:13.320 --> 00:08:17.040 They gather data and send it to a host computer 155 00:08:17.040 --> 00:08:19.530 for analysis and control. 156 00:08:19.530 --> 00:08:22.740 This centralized setup allows operators 157 00:08:22.740 --> 00:08:25.410 to efficiently manage multiple sites, 158 00:08:25.410 --> 00:08:28.710 quickly detecting and responding to issues. 159 00:08:28.710 --> 00:08:32.490 SCADA is often used in large-scale operations 160 00:08:32.490 --> 00:08:36.150 like power grid monitoring or water treatment management, 161 00:08:36.150 --> 00:08:38.130 where remote control is key 162 00:08:38.130 --> 00:08:41.250 to maintaining efficiency and safety. 163 00:08:41.250 --> 00:08:43.949 A common example of SCADA in action 164 00:08:43.949 --> 00:08:48.870 is the smart meter system used by many electric companies. 165 00:08:48.870 --> 00:08:52.315 These smart meters connect to a central SCADA system 166 00:08:52.315 --> 00:08:54.390 via cellular networks, 167 00:08:54.390 --> 00:08:57.840 allowing utilities to monitor energy usage, 168 00:08:57.840 --> 00:09:01.560 detect outages, and manage billing remotely. 169 00:09:01.560 --> 00:09:05.430 Data from these meters is processed to make decisions 170 00:09:05.430 --> 00:09:08.220 about resource allocation, maintenance, 171 00:09:08.220 --> 00:09:09.990 and customer billing. 172 00:09:09.990 --> 00:09:14.400 So by integrating multiple sites into one system, 173 00:09:14.400 --> 00:09:17.070 SCADA helps industrial operations 174 00:09:17.070 --> 00:09:19.680 stay efficient and responsive 175 00:09:19.680 --> 00:09:21.870 to real-time conditions. 176 00:09:21.870 --> 00:09:26.700 So remember, operational technology or OT 177 00:09:26.700 --> 00:09:29.880 includes systems that control and monitor 178 00:09:29.880 --> 00:09:33.570 physical processes in critical infrastructure. 179 00:09:33.570 --> 00:09:36.660 These systems such as heating, ventilation, 180 00:09:36.660 --> 00:09:39.330 and air conditioning or HVAC, 181 00:09:39.330 --> 00:09:42.390 industrial control systems or ICS, 182 00:09:42.390 --> 00:09:46.830 and the supervisory control and data acquisition or SCADA, 183 00:09:46.830 --> 00:09:49.560 are important for managing environments 184 00:09:49.560 --> 00:09:52.920 and ensuring smooth operations in industries 185 00:09:52.920 --> 00:09:55.950 like power, water management, and healthcare. 186 00:09:55.950 --> 00:10:00.950 HVAC systems regulate temperature and air quality, 187 00:10:00.990 --> 00:10:04.110 protecting both people and sensitive equipment 188 00:10:04.110 --> 00:10:06.690 such as servers in data centers. 189 00:10:06.690 --> 00:10:11.214 Next, ICS is focused on automating industrial processes 190 00:10:11.214 --> 00:10:14.250 and is often vulnerable to cyber threat 191 00:10:14.250 --> 00:10:17.040 due to outdated security measures. 192 00:10:17.040 --> 00:10:20.040 Finally, SCADA, a type of ICS 193 00:10:20.040 --> 00:10:22.200 is used for remote monitoring 194 00:10:22.200 --> 00:10:26.280 and control of infrastructure across wide areas. 195 00:10:26.280 --> 00:10:31.140 So ensuring the security of these OT systems is important 196 00:10:31.140 --> 00:10:35.160 because disruptions can have serious consequences 197 00:10:35.160 --> 00:10:38.313 for both people and essential services.