U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.


Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Project Description (Initial Public Draft)

Capabilities Assessment for Securing Manufacturing Industrial Control Systems

Date Published: November 7, 2016
Comments Due: December 22, 2016 (public comment period is CLOSED)
Email Questions to: Manufacturing_NCCoE@nist.gov


Keith Stouffer (NIST), James McCarthy (NIST)


[Updated 12/2: deadline extended from 12/7 to 12/22]

The National Cybersecurity Center of Excellence (NCCoE) has posted a draft Project Description on the topic of Capabilities Assessment for Securing Manufacturing Industrial Control Systems.

Industrial Control Systems (ICS) monitor and control physical processes in many different industries and sectors, especially in manufacturing. A cyber attack directed at a manufacturing organization's infrastructure could result in detrimental consequences to both human life and property. In collaboration with the NIST Engineering Laboratory (EL), the NCCoE will produce a series of reference designs demonstrating four cybersecurity capabilities for the manufacturing sector.

For this project, the NCCoE and EL will examine behavioral anomaly detection and prevention mechanisms, to support a multifaceted approach of counteracting cyber attacks against ICS devices that provide the functionality necessary to run manufacturing processes.

The goal is to provide industry with detailed information to establish an anomaly detection and prevention capability in their own environments. By implementing behavioral anomaly detection tools, manufacturers are provided with a key security component that will aid in sustaining business operations, particularly those based on ICS.

This project will result in a NIST Cybersecurity Practice Guide and will be part one of a four-part series. While the reference design will focus on cybersecurity, the NCCoE example solution may also produce residual benefits to manufacturers for detecting anomalous conditions that are not security related. 



Cyber Security Framework; CSF; industrial control system(s); ICS; manufacturing; control processes; behavioral anomaly
Control Families

Access Control; Identification and Authentication


Draft Project Description (pdf)

Supplemental Material:
Submit Comments
Project Homepage

Document History:
11/07/16: Project Description (Draft)