Control device, integrated industrial system, and control method thereof

What is claimed is: 1. A safety controller of an integrated industrial system which is established in a plant, the safety controller comprising: a processor; and a memory, wherein the safety controller is installed in a safety instrumented system which stops the integrated industrial system in a safe state if an abnormality has occurred in the integrated industrial system, wherein a process controller which collects measurement data from a field device installed in the plant and controls the field device is installed in a distributed control system which controls industrial process implemented in the plant, wherein an engineering terminal used for creating programs to be executed by the safety controller is installed in the distributed control system and the safety instrumented system, and wherein the processor executes a program stored in the memory to perform operations comprising: performing a countermeasure of restricting at least a part of functions of the safety controller, based on a detection result obtained by detecting a cyber-attack from at least one of inside and outside to the integrated industrial system; in a case where the detection result indicates that the cyber-attack against the safety controller and the process controller is detected, in the engineering terminal and the safety controller, prohibiting a change of application programs and discarding a control command input from outside; and in a case where the detection result indicates that the cyber-attack to the engineering terminal is detected, stopping all communication functions of the engineering terminal and the safety controller. 2. The safety controller according to claim 1 , wherein the processor is further configured to: specify a target and a type of the cyber-attack based on the detection result, set the countermeasure in accordance with the target and the type which have been specified; and execute the countermeasure which has been set by the setter. 3. The safety controller according to claim 2 , wherein the processor is further configured to: set the countermeasure by using a setting list in which the target and the type of the cyber-attack are associated with the countermeasure which should be performed in accordance with the target and the type of the cyber-attack. 4. The safety controller according to claim 1 , wherein the engineering terminal with which an operator makes a program executed on the safety controller is provided in a safety instrumented system, the processor is further configured to perform, according to a setting list, a countermeasure of stopping all communication functions of the engineering terminal and the safety controller in a case where the detection result indicates that the cyber-attack against the engineering terminal is detected. 5. An integrated industrial system comprising: a safety instrumented system which is connected to a network; and a detector configured to detect a cyber-attack from at least one of inside and outside to the integrated industrial system, wherein the safety instrumented system comprises a safety controller, the safety controller comprises: a processor; and a memory, wherein the safety controller is installed in the safety instrumented system which stops the integrated industrial system in a safe state if an abnormality has occurred in the integrated industrial system, wherein a process controller which collects measurement data from a field device installed in the plant and controls the field device is installed in a distributed control system which controls industrial process implemented in the plant, wherein an engineering terminal used for creating programs to be executed by the safety controller is installed in the distributed control system and the safety instrumented system, and wherein the processor executes a program stored in the memory to perform operations comprising: performing a countermeasure of restricting at least a part of functions of the safety controller, based on a detection result obtained with a detector that detects a cyber-attack from at least one of inside and outside to the integrated industrial system; in a case where the detection result indicates that the cyber-attack against the safety controller and the process controller is detected, in the engineering terminal and the safety controller, prohibiting a change of application programs and discarding a control command input from outside; and in a case where the detection result indicates that the cyber-attack to the engineering terminal is detected, stopping all communication functions of the engineering terminal and the safety controller. 6. The integrated industrial system according to claim 5 , wherein the integrated industrial system comprises a first zone and a second zone, the detector comprises a first detector installed in the first zone and a second detector installed in the second zone, the first detector is configured to detect the cyber-attack from at least one of inside and outside to the first zone, and the second detector is configured to detect the cyber-attack from at least one of inside and outside to the second zone. 7. The integrated industrial system according to claim 5 , wherein the defender of the safety controller is configured to obtain a detection result of the detector through the network. 8. The integrated industrial system according to claim 5 , wherein the processor is further configured to obtain a detection result of the detector through a communication line which is different from the network. 9. The integrated industrial system according to claim 6 , wherein the engineering terminal with which an operator makes a program executed on the safety controller is provided in the safety instrumented system, the processor is further configured to perform, according to a setting list, a countermeasure of stopping all communication functions of the engineering terminal and the safety controller in a case where the detection result indicates that the cyber-attack against the engineering terminal is detected. 10. The integrated industrial system according to claim 9 , wherein the safety instrumented system is installed in the first zone, the integrated industrial system further comprising: a distributed control system which is installed in the first zone, the distributed control system being configured to control industrial process implemented in a plant; and a host system which is installed in the second zone. 11. The integrated industrial system according to claim 10 , wherein the host system is a first system which includes at least one of a manufacturing execution system, a plant information management system, and a plant asset management system. 12. The integrated industrial system according to claim 11 , further comprising: a second system which is installed in a third zone which is different from the second zone in which the first system is installed, the second system comprising an enterprise resource planning system. 13. A control method of an integrated industrial system which comprises a safety instrumented system comprising a safety controller installed in the safety instrumented system which stops the integrated industrial system in a safe state if an abnormality has occurred in the integrated industrial system, a process controller which collects measurement data from a field device installed in a plant and controls the field device being installed in a distributed control system which controls industrial process implemented in the plant, and an engineering terminal used for creating programs to be executed by the safety controller being inst