The U.S. Department of Homeland Security (DHS) National Cyber Security Division’s Control Systems Security Program (CSSP) performs cybersecurity vendor assessments, ICS-CERT operations, and asset owner cybersecurity evaluations with the Cyber Security Evaluation Tool (CSET) evaluations for industrial control systems (ICS) to reduce risk and improve the security of ICS and its components used in critical infrastructures throughout the United States. ICS differs from other computer systems because of legacy-inherited cybersecurity weaknesses and the significance of the impact of potential exploitation to the U.S. U.S.-Department-of-Homeland-Security-2011-Common-Cybersecurity-Vulnerabilities-in-Industrial-Control-Systems.pdf

U.S. Department of Homeland Security (2011) Common Cybersecurity Vulnerabilities in Industrial Control Systems