[Editor's note: The following is a response to Joe Weiss' "Unfettered" blog post on "The Case of ICS-CERT Misplaced Priorities" (http://tinyurl.com/6s69dsg).]
ICS-CERT is supposed to respond to requests for assistance. If not asked, they can't help. Even more of a problem is that, if they are asked to help, they may not be allowed to publicly disclose the problem/response. There are no legal impediments to sharing sanitized (no names/locations) reports about building HVAC systems. Power plants are a completely different story. If there was an ICS-CERT response to the December power plant incident, it would have been nice if they could have appropriately sanitized a report on what caused the problem. Could this have been one of the 86 control system "attacks" reported to Congress by DHS?
Chemical Facility Security News