Home » PCSF group moves to detect control system attacks
PCSF group moves to detect control system attacks
According to Dale Peterson, Director, Network Security Practice, Digital Bond, Inc. and Chair of the SEM Working Group, the purpose of the Group is to serve as a clearinghouse of information and tools to detect attacks on control systems.
Accurately determining risk is extremely important to control system security. Today, the control system community understands two-thirds of the risk equation: the impact of a control system outage due to cyber attack and the vulnerabilities of control systems. What is missing is quantitative and qualitative measurement of the risk. SEM services, in the form of managed security services providers (MSSPs), are monitoring many control system networks for attacks and have threat data. Some asset owners also have deployed SEM products and have threat data.
The first task of the SEM Working Group is to gather and normalize this threat data from disparate sources. The SEM Working Group has been collaborating with these entities to develop a format that will allow them to easily—and anonymously—submit this data to the PCSF.
Next, the Group plans to analyze the data and provide statistics to the community through the PCSF. Planned statistics include the number of control systems being monitored, the number of actionable cyber security events, and the breakdown of the actionable cyber security events into seven event categories.
Today, SEM products and services monitor traditional IT systems such as firewalls, operating system logs, and intrusion detection systems (IDS). However, the majority of these products and services do not account for security events in the supervisory control and data acquisition (SCADA) and distributed control systems (DCS) application logs, because each application logs these security events differently.
In response to this, the SEM Working Group also plans to develop a data dictionary containing a normalized list of control system application log events and a description of the impact of each event. Additionally, they plan to create a database that will use pattern recognition to identify similar events from different SEM products.
Smart Grid: Independent Testing Of Rossi's E-Cat Cold Fusion Device Shows Positive Results
Forbes magazine's tech contributor Mark Gibbs writes that independent testing of Andrea Rossi's E-CAT Cold Fusion Reactor has positive results.The implications of the possible commercialization of cold fusion power sources are incredible.
Compressor Controls: Saudi Aramco Buys First GE Compressor Control Systems
Saudi Aramco has purchased advanced compressor control technology from GE for the Haradh GOSP-1 facility in Saudi Arabia's Eastern Province.
SANS Control Security Training Coming to Houston
SANS Institute will hold ICS Security Training event on June 10-15 in Houston
ISA Training Through June in Houston
Technician training, engineering survival and SIS boot camps for condensed, intense, comprehensive educational experience.
Past Time to Upgrade Your DCS?
Upgrading Your DCS: Why You May Need to Do It Sooner Than You Think
Metso Provides New Heating Solution for Finnish Utility
Finland's largest pellet-fired heating plant produces environmentally friendly energy in Tampere
NIST Releases Initial Cyber Security Framework Comment Analysis
The National Institute for Standards and Technology has released an initial analysis of the hundreds of comments by industry and the public they have received on the Obama Administration's "Improving Critical Infrastructure Cyber Security" executive order.
K-BIM Consortium Selects Siemens' Parasolid for New AEC Applications
-BIM, a consortium of commercial, academic and government organizations wants the new application suite to help create a national standard for building information management (BIM)
Friday p.m. Wrap-Up:This Week on ControlGlobal and Elsewhere
Some of the week's biggest stories in process automation
What's Bad Weather Costing Us?
U.S. taxpayers paid nearly $100 billion responding to damages caused by last year’s extreme weather events associated with climate change, about $1,100 per taxpayer, according to an analysis by the Natural Resources Defense Council (NRDC).
- All news »
Access the entire print issue on-line and be notified each month via e-mail when your new issue is ready for you. Subscribe today.
- Featured White Papers