Articles & Presentations
Member Login RequiredDue to the sensitive nature of this document, you must be logged in to access it.
Login Register to become a site member (free) Contact Us
Securing SCADA and Process Systems from Advanced Persistent Threats
July 2012
Article from: Oil & Gas Monitor, July 2012
In this article, Eric Byres discusses the complex computer worm called Flame and how it is a great example of an Advanced Persistent Threat (APT). This article focuses on explaining what APTs are and what they mean for companies in the oil and gas sector.
Member Login RequiredDue to the sensitive nature of this document, you must be logged in to access it.
Login Register to become a site member (free) Contact Us
Network Security Matures
May 2012
Article from: AutomationWorld, May 2012
Terry Costlow, Contributing Editor to AutomationWorld magazine illustrates how system integrators at Cimation set up the network on a high volume platform and in doing so, included security to minimize downtime caused by accidental or malicious forces. Read how the Tofino Industrial Security Solution was implemented to create defense in depth for the platform.
Member Login RequiredDue to the sensitive nature of this document, you must be logged in to access it.
Login Register to become a site member (free) Contact Us
#1 ICS and SCADA Security Myth: Protection by Air Gap
March 2012
Article from: IT & Production Magazine, March 2012
In this article Eric Byres discusses the myth that an air gap between the control network and the buisness network provides security.
Read about why Eric thinks this concept is a "fairy tale"
Member Login RequiredDue to the sensitive nature of this document, you must be logged in to access it.
Login Register to become a site member (free) Contact Us
#1 ICS and SCADA Security Myth: Protection by Air Gap
February 2012
Article from: ICSJWG Quarterly Newsletter, March 2012
In his contributing article to the ICSJWG Quarterly Newsletter (pg. 5) Eric Byres discusses the myth that an air gap between the control network and the buisness network provides security.
Read about why Eric thinks this concept is a "fairy tale"
Using ANSI/ISA-99 standards to improve control system security
February 2012
Article from: Industrial Ethernet Book, February 2012
Today, operators are being asked to isolate automation systems just as ever greater interconnectedness is demanded. Adding to these pressures is the growing fear of cyber attacks such as the infamous Stuxnet.
Member Login RequiredDue to the sensitive nature of this document, you must be logged in to access it.
Login Register to become a site member (free) Contact Us
Cyber Espionage comes to SCADA Security
February 2012
Article from: Automation.com, February 2012
SCADA and Industrial Control Systems operators have been under pressure to increase productivity and reduce costs through network integration. In addition, proprietary network technologies are being replaced with commercial-off-the-shelf technologies.
At the same time, advanced persistent threats such as Stuxnet, Night Dragon, Duqu and Nitro have made industrial systems their targets.
In this article Eric Byres summarizes the impacts of the new threats and discusses how their purpose may not be process destruction, but industrial espionage.
Member Login RequiredDue to the sensitive nature of this document, you must be logged in to access it.
Login Register to become a site member (free) Contact Us
Cyber Espionage comes to Automation and SCADA
February 2012
Article from: A&D Magazine, www.AuD24.net (originally published in German)
In this article Eric Byres discusses how SCADA and industrial control systems are vulnerable to cyber attacks, such as Stuxnet and Stuxnet's children.
Member Login RequiredDue to the sensitive nature of this document, you must be logged in to access it.
Login Register to become a site member (free) Contact Us
Next Generation Cyber Attacks Target Oil And Gas SCADA
February 2012
Article from: Pipeline & Gas Journal, February 2012
In this article Eric Byres discusses Stuxnet the well-designed ICS worm. He discusses what motivates worm creators and hackers, why we can't keep worms such as Stuxnet out of our systems, and how we can move forward in this new era of worms.
Member Login RequiredDue to the sensitive nature of this document, you must be logged in to access it.
Login Register to become a site member (free) Contact Us
Protecting OPC Servers
January 2012
Article in: EngineerIT Magazine, January 2012
OPC, originally called OLE for process control, is used extensively in control systems to provide interoperability between devices and software from different vendors.
In this article, Gary Friend of Extech Safety Systems provides a summary of the security issues related to OPC, and shows how an OPC enforcer can be used to protect OPC servers and clients.
Digital danger zone: Tackling cyber security
January 2012
Article from: arabianOilandGas.com, Utilities-me.com, January 2012
The protection of critical national infrastructure has long been a serious concern to governments in the Middle East. Achieving this is no longer to limited to physical security; it now includes the very real and growing need to enhance cyber security.
This article discusses the increasing number of international cyber attacks and the challenges of securing networks and control systems in the national oil, gas, power, water and electricity sectors. Eric Byres and other experts comment on current security concerns and suggest ways of dealing with them.
