Industrial Security: New Vulnerability Disclosure Framework A Step Forward

Posted by Eric Byres on 01/08/2012

This is an excerpt from the Think Forward blog by Ernie Hayden at verizonbusiness.com.

In a move that may be helpful for critical infrastructure asset owners, on July 23 the Industrial Control Systems Joint Working Group (ICSJWG) published a new document on a framework for disclosing Industrial Control System (ICS) vulnerabilities.

Common Industrial Control System Vulnerability Framework

Industrial Control Systems Joint Working Group (ICSJWG), which was established by the U.S. Department of Homeland Security Control Systems Security Program, published the document – Common Industrial Control System Vulnerability Framework. The document was developed with the intention of providing consensus-based guidance to vendors and system integrators in helping them create ICS vulnerability disclosure policies. Read more »

Posted in Industrial Security
Tags: Advanced Persistent Threats, Air Gap, Critical Infrastructure Protection, Flame, ICS, ICSJWG, Industrial Security, PLC Security, SCADA Security, Stuxnet
Leave a comment

SCADA Security: Falling into the Air Gap Trap

Posted by Eric Byres on 20/07/2012

This is an excerpt from the Practical SCADA Security blog at Tofino Security.

Last week I discussed how security experts and ICS / SCADA vendors are giving up on the dream of the air gap as a viable security solution for the modern control system. Unfortunately, it is still all too easy to believe your control system is isolated.

Recently I had a very enlightening conversation with a control engineer who thought his system was air gapped. Read more »

Posted in Industrial Security
Tags: Advanced Persistent Threats, Air Gap, Critical Infrastructure Protection, Flame, Industrial Security, PLC Security, SCADA Security, Stuxnet
Leave a comment

Are SCADA Air Gap Supporters a Dying Breed?

Posted by Eric Byres on 20/07/2012

Last week I updated my air gap blog from 2011. I noted some companies (like Siemens) no longer mention air gaps. Then to keep things balanced, I added new examples of consultants that support the air gap theory. In particular, I selected this quote from Paul Ferguson at Trend Micro:

“I’ve written about SCADA issues in the past, but one issue that I’ve consistently tried to emphasize is that critical control systems should never, ever interact nor interconnect with Internet systems in any way, shape, or form. There’s a good reason for this, and it’s always been referred to as the “Air Gap” Principle.” Read more »

Posted in Industrial Security
Tags: Advanced Persistent Threats, Air Gap, Critical Infrastructure Protection, Flame, Industrial Security, PLC Security, SCADA Security, Stuxnet
Leave a comment

What Advanced Persistent Threats (APTs) Can Teach the ICS and SCADA Security Practitioner – Part 2

Posted by Eric Byres on 03/07/2012

Editor’s Note: This is an excerpt from the Practical SCADA Security blog at Tofino Security.
In last week’s blog, Professor Paul Dorey recently presented a paper about the seven important lessons the IT world has learned in managing Advanced Persistent Threats (APTs). In this article, I will discuss lessons #2, #3 and #4, and how to apply these lessons to ICS and SCADA security.

APTs have been discussed in some depth in previous blogs, so if you aren’t familiar with the concept (or need a review) check out Part #1 of this series. If you want real world examples of APTs, especially ones that have impacted the energy and chemical industries, browse some of my previous blogs on Nitro, Night Dragon and Duqu. Read more »

Posted in Industrial Security
Tags: Advanced Persistent Threats, Defense in Depth, Industrial Security, PLC Security, SCADA Security
Leave a comment

What Advanced Persistent Threats (APTs) Can Teach the ICS and SCADA Security Practitioner – Part 1

Posted by Eric Byres on 21/06/2012

Recently a very complex worm called Flame has been discovered attacking companies in the Middle East, and it is an excellent example of what security experts call an Advanced Persistent Threat (APT). Figuring out how to defend against APTs is a major focus in the IT security world.

Now while Flame was busy attacking the Middle East, I was in Abu Dhabi at the International Cyber Security Forum for Energy and Utilities, listening to a talk by Paul Dorey called “Advanced Persistent Threats – A Real Problem with Real Solutions” (you can download his presentation at the end of this article). Paul’s talk focused on security for the IT industry, but there were important lessons on managing attacks in the ICS / SCADA world. I will focus on one of those lessons in today’s blog. Read more »

Posted in Industrial Security
Tags: Advanced Persistent Threats, Defense in Depth, Industrial Security, PLC Security, SCADA Security
Leave a comment

Are you a good fit for this job? Account Manager in Houston, TX http://t.co/xZjqOMspgW #job about 11 hours ago
Are you a good fit for this job? District Sales Manager in Cleveland, OH http://t.co/sIzgMA1SbT #job 15:15:19 May 18, 2013
Air Gaps Won’t Protect Your Operations | Automation World http://t.co/QK5BPufqi3 23:44:49 May 17, 2013
Account Manager in Clayton, MO http://t.co/Vah9ZCgwIS #job 18:21:59 May 17, 2013
Now Hiring: Account Manager in Milwaukee, WI http://t.co/sQEmZdOqKG #job 17:53:19 May 16, 2013

beldensolutions.com

Featured Bloggers

Popular Tags

Post navigation