Practical SCADA Security

Control System Security Threats, Security / Reliability Incidents, Useful Industrial Cyber Security Tips

submitted by: Eric Byres
on: Fri, 2014-01-31 16:26

Dale Peterson and I have been debating ICS security in our blog posts for over a year now. This January, we took our debate live at the S4x14 conference in Miami, Florida. While Dale refers to me as a SCADA Apologist, I believe I am more of a SCADA Realist.

submitted by: Eric Byres
on: Fri, 2013-12-20 10:11

As we prepare for some time off to enjoy the holiday season, we would like to take a moment to thank you for being a part of our SCADA security community in 2013.

We very much appreciate your readership and the stimulating dialogue that results from it. The Tofino Security team wishes you and your families all the best for a wonderful holiday and a very happy New Year.

submitted by: Heather MacKenzie
on: Tue, 2013-12-17 10:38

Jeff Smith of American Axle & Manufacturing (AAM) is a guru in the world of industrial Ethernet networking and ICS Security. We were fortunate to have him speak again at the 2013 Belden Industrial Ethernet Infrastructure Design Seminar.

submitted by: ernest.hayden
on: Mon, 2013-11-25 21:05

You may have heard some buzz in the press (both US and International) about the release of the Cybersecurity Framework Draft from the US National Institute of Standards and Technology (NIST). However, you may not know much about its background. And you probably don’t know what it may mean to you as a control or security professional. This blog post will give you a high level overview of the genesis of this document and some handy points of reference.

submitted by: Eric Byres
on: Tue, 2013-11-12 21:00

In last week’s Practical SCADA Security blog, I discussed how the new vulnerabilities discovered in DNP3 SCADA masters are carving big holes in the NERC’s concept of the Electronic Security Perimeter (ESP).