Where do you go to get the right guidance when an ICS cyber incident hits

June 22, 2011
Last year when Stuxnet was first disclosed, the initial guidance given would have done great harm to the Siemens PLC. The appropriate guidance for the PLC still hasn’t made its way to the appropriate end-users.  When you look at all of the articles on Stuxnet, it is very apparent that those with adequate understanding are still few and far between.  Yesterday, an integrator in Brazil made a call for help on SCADASec because his client’s plant has been infected by the Conficker worm. The responses from SCADASec readers were all over the map with much of the guidance at odds.
Last year when Stuxnet was first disclosed, the initial guidance given would have done great harm to the Siemens PLC. The appropriate guidance for the PLC still hasn’t made its way to the appropriate end-users.  When you look at all of the articles on Stuxnet, it is very apparent that those with adequate understanding are still few and far between.  Yesterday, an integrator in Brazil made a call for help on SCADASec because his client’s plant has been infected by the Conficker worm. The responses from SCADASec readers were all over the map with much of the guidance at odds.  Because there are no certifications for control system cyber security, anyone can be an “expert”. Who does he believe? This is certainly a subject for discussion at the September ACS Conference.
Joe Weiss

Sponsored Recommendations

IEC 62443 4-1 Cyber Certification – Why ML 3 is So Important

The IEC 62443 Security for Industrial Automation and Control Systems - Part 4-1: Secure Product Development Lifecycle Requirements help increase resilience for control systems...

Multi-Server SCADA Maintenance Made Easy

See how the intuitive VTScada Services Page ensures your multi-server SCADA application remains operational and resilient, even when performing regular server maintenance.

Your Industrial Historical Database Should be Designed for SCADA

VTScada's Chief Software Architect discusses how VTScada's purpose-built SCADA historian has created a paradigm shift in industry expectations for industrial redundancy and performance...

Linux and SCADA – What You May Not Have Considered

There’s a lot to keep in mind when considering the Linux® Operating System for critical SCADA systems. See how the Linux security model compares to Windows® and Mac OS®.