Blogs

AURORA and Its Effectives on Cybersecurity: Too Early to Pass Final Judgment

Since the original AURORA test bed at Idaho Labs in 2007 much has been said about the merits of the test conducted and many conjectures concerning its validity have been made.  It is important to remember that AURORA is not an isolated case that exists outside the cybersecurity framework.  To...

exida discovers counterfeit safety certificates

exida discovered fraudulent certificates claiming that a product meets the functional safety requirements for Safety Integrity Level (SIL) 3 capable per IEC 61508. These certificates are FALSE.

Cybersecurity Responsibility White Paper

I was recently informed about a new White Paper by respected cybersecurity authorities Ralph Langner and Perry Pederson of the Brookings Institution called "Bound to Fail: Why Cybersecurity Risk Cannot Be Simply 'Managed' Away" that is now available for free after registration from ControlGlobal at  www.controlglobal.com/whitepapers/2013/130304-langner-pederson-cybersecurity-fail.html

Unintended Consequences

Having just returned from a SCUBA diving trip to the Honduran Bay Island of Roatan I saw first hand what happens when we mess with natural systems.  For those that don't know, the Lionfish, an Indo-Pacific native species, has somehow been introduced into the Caribbean, where as an invasive species...

IT Rules for Cybersecurity of control systems

How far should we go in adopting IT type rules for the management of cybersecurity on control systems. Will treating a control system as just another set of PCC's (from the IT perspective) cause more problems?

Friday Afternoon News You Can Use

Some of it serious; some, not so much. Time to take a gander at news you may have missed while otherwise occupied this week.

Malware Attack on RasGAs in the Middle East

Qatar-based liquefied natural gas (LNG) producer RasGas reported in early September that malware shut down part of its computer system. This was the latest cybersecurity attack in the Middle East region after the attack on the computer network of a state owned oil producer in Saudi Arabia.

Building the Next System Capable of Fending Off the Next Stuxnet Attack on Industrial Control Systems

Russian antivirus firm Kaspersky Lab seeks a developer and analyst to create an operating system that could dissuade the next Stuxnet attack on industrial control systems. Currently, Kaspersky Lab wants to hire professionals with experience in programming PCS and Supervisory Control And Data Acquisition (SCADA) systems, implementing industrial networking and...

Honeywell Takes Aim at Security & Safety

Unless you've been living in a cave or completely focused on the fate of your favorite baseball or basketball team, you're bound to know that the issue of cybersecurity is heating up. If Stuxnet wasn't enough, now there's its evil twin Flame to add to your worries about your computer...

Protect the Grid SmartGrid Initiative

I recently read in Power Magazine (powermag.com) that EPRI is launching the Security and Privacy Initiative, a collaborative effort to investigate cyber security standards, business processes, and technologies to protect the electric grid.