Control Systems Cybersecurity Expert, Joseph M. Weiss, is an international authority on cybersecurity, control systems and system security. Weiss weighs in on cybersecurity, science and technology, security emerging threats and more.
This news release from Argonne National Labs just showed up in my mailbox. Argonne has just hosted a workshop on "the need for new methods to simulate the national power grid by modeling the creation and flow of electric power as well as the grid's connection to other critical infrastructures,...
This morning, the Senate Energy and Resources held hearings on Cyber Security of the Electric Grid. The witnesses were Joe McClelland from FERC, Rick Sergal from NERC, Patricia Hoffman from DOE, Allen Mosher from APPA, and David Owens from EEI.
NERC just issued their 2008 Annual Report. Enclosed is my objective look at NERC’s 2008 accomplishments for critical infrastructure protection (CIP). The President’s Report: “The bulk power system is only as strong as its weakest link”"
The question is no longer will there be cyber security legislation for the critical infrastructures. Rather, it is what will the legislation entail. As of last week, there are at least three cyber security bills explicitly addressing critical infrastructure.
Siobhan Gorman of the Wall Street Journal had an interview with CSPAN radio on April 11th based on her article on cyber spies in the US electric grid. When asked how the evidence was found, she said the intelligence agencies installed special detection mechanisms that picked up the evidence, not...
Monday, I had a chance to wander the halls in a similar manner as I do at ISA, Distributech, IEEE, etc. In this case, it was all IT-focused. Whereas at Distributech, NERC CIP was prevalent with many of the vendor displays, here I found only 1 vendor that mentioned it.
Tomorrow, Jon Stanford, the Chief Information Security Officer from BPA, and myself will be holding a session at RSA on “Why We need Both IT Security and Control System Expertise to Secure Control Systems”. RSA bills itself as the largest Information Security Conference in the World.