SAN DIEGO, Calif. -- The Tofino Industrial Security group at Byres Security Inc. has teamed with Juniper Networks to demonstrate how the emerging IF-MAP (Interface for Metadata Access Point) standard from the Trusted Computing Group (TCG) can secure vulnerable SCADA systems.
Beginning today in the TCG booth at the Forrester Security Forum, attendees will see live the world's first demonstration of legacy SCADA equipment being secured using Tofino SCADAnet Endboxes with real-time policy driven from a Juniper Networks IC Series Unified Access Control Appliance serving as a Metadata Access Point (MAP) server.
SCADA systems, the brains of the world's critical infrastructures, such as electric generation and transmission, oil and gas production, and waste and water utilities, have become a major security concern for government policy makers. The widespread interconnectivity of these industrial control systems with enterprise IT networks, combined with legacy systems that can't be patched due to operational considerations and protocols never designed for security, have become a potential soft target for attackers. Complicating the situation, most of these SCADA devices have little or no security capability on their own and will take decades to be replaced.
The new IF-MAP-based SCADA security system allows corporate-wide security policy to be easily deployed for SCADA devices that simply don't know what security is. It lets the information driving these policy decisions be dynamically determined from a large number of real-time sources, like Active Directory servers, SCADA equipment positions or network security events.
SCADA security expert and chief technology officer of Byres Security, Eric Byres notes, “Controls engineers and IT security professionals have long had a love-hate relationship over how to secure SCADA and still leave the system reliable enough to provide critical services such as power or water 24x7x365. TCG's IF-MAP technology provides a solution that both parties can love–a robust security solution that can be used seamlessly with legacy SCADA equipment.”
To see the demo, visit the Trusted Computing Booth, #104, at the Forrester Security Forum, Sept 10-11, at the Hyatt Regency La Jolla in San Diego, California.