In 1999, the Bellingham, Wash., gasoline pipeline ruptured killing three people. It was a control system cyber incident with many implications for future pipeline cyber impacts:
- it was unintentional but could have been caused maliciously
- the control system were on Ethernet LANs and could have experienced broadcast storms or other cyber impacts (no control system cyber forensics)
- leak detection system response was not timely
- previous SCADA problems made the some of the SCADA system response questionable
- sensor data during the incident were questionable
- little, if any, control system cyber security training
- weld failures weakened the line so the control system was no longer controlling the line it was designed to control
- inappropriate maintenance on control systems can have significant system impacts (replacement of what was thought to be an uninterruptible power supply that was not uninterruptible, causing SCADA system cyber issues)
- lack of knowledge of where manual shut-off valves were actually located has resulted in potential requirements for remote, automated, shut-off valves (cyber!). Without appropriate training and safeguards, there could be significant impacts
- unless appropriate actions are taken, this could be the next San Bruno
- from a malicious perspective, you just told the bad guys where you are vulnerable.
