Blogs

CIPAG, FERC, NSF, FREEDM, CERT for Control Systems, CSIS and other acronyms...

The CIPAG Metrics Workgroup for Water was convened by the Water Sector Coordinating Council and Government Coordinating Council to develop a national performance measurement system for the water sector. Consequently, they issued “Recommendations of the CIPAC Metrics Work Group for Water” dated June 2008. It is an extremely disappointing document.

Listen up Cyber-folks

Congressman James Langevin, (D) Rhode Island, keynotes the ACS Cybersecurity Conference: ...

One more late session from Wednesday's Yokogawa Tech Fair--Eric Byres on Defense in Depth

One of the last sessions of Wednesday was by Eric Byres of Byres Security, and a Control contributor. Defense-in-Depth Key to Secure Automation ControlGlobal.com Keywords: Defense, security, Automation, cybersecurity, firewall, IT and Yokogawa Users Conference How Important Is a Firewall in Today's World? “The further backward you look, the further...

Wurldtech expands product offerings

From the press release: Industrial Cyber-Security Leader Introduces New Achilles™ Health Check Program for Operators of Global Critical Infrastructure Wurldtech™ Expands Security Service Portfolio; Offering Industrial Organizations a Simple, Cost-Effective Solution to Protect the Integrity and Availability of SCADA and Process Control Systems Worldwide VANCOUVER, BC – February 27, 2008...

So you think Bob Adamski's nightmare is wrong? Read on!

Bob Adamski, Invensys' SIS guru, has been talking about the hacking of process safety systems for several years now. I think he's right, but we appear to be in a minority. Bob gave me his nightmare about how this could be done several years ago, and I've had it for a...

Joe Weiss on the FERC "approval" of the NERC CIPs

Over on "Unfettered" Joe Weiss reports that FERC has played Solomon with the NERC CIPs and the recommendations from people like the SP99 committee. Solomon, you will recall, determined who the mother of a baby was by threatening to cut it in half.

Industrial Defender and US Pat. No. 7,246,156

As the industry is still reeling from the onslaught of patent trolls over the past few years, when Industrial Defender (who most of us are still having trouble not calling "Verano" or even HP RTAP) revealed that they had been awarded a significant cybersecurity patent, the immediate reaction of most...

Does SANS bite?

Sorry, I couldn't resist the pun. Joe Weiss posted on Unfettered this morning a clip from the blog, SANS Bites. In it he takes issue with the editor of SANS Bites' self-serving, and industry-serving statements about how nobly the industry is trying to achieve cybersecurity nirvana. What rot.

About security...a word from a "recovering IT person."

Last week I posted on the SCADA list a response to an IT person who took exception to my statement that IT people who try to do security in process control systems can even be dangerous. In part, I said: You are dead wrong about one thing, though.

More security fun...

A former employee of a small California canal system has been charged with installing unauthorized software and damaging the computer used to divert water from the Sacramento River.Michael Keehn, 61, former electrical supervisor at the Tehama Colusa Canal Authority (TCAA) in Willows, Calif., faces 10 years in prison on charges...