[SCADASEC] IBM is offering 'SCADA security best practices'...
Joe Weiss
joe.weiss at realtimeacs.com
Thu Feb 7 20:16:56 CST 2008
My concern is not with the SCADA/DCS HMI or network devices. It deals
with adequate network architecture to accommodate the new technologies
and using appropriate policies, procedures, and testing. Without going
thru a litany of what has impacted field devices, testing in a
full-fidelity test bed so any problems can be found and ameliorated
before they are employed an active network is a must. I also want to
reiterate - my broken record- that electric and other industries still
primarily utilize serial not IP communications with control system
protocols. They must be secured in ways that many cross-over vendors may
not be familiar.
Joe
Joe Weiss PE, CISM
Applied Control Solutions, LLC
Cupertino, CA
(408) 253-7934
(408) 253-7974 Fax
(408) 832-5396 Cell
joe.weiss at realtimeacs.com
-----Original Message-----
From: scadasec-bounces at news.infracritical.com
[mailto:scadasec-bounces at news.infracritical.com] On Behalf Of Matthew
Franz
Sent: Thursday, February 07, 2008 5:50 PM
To: scadasec at news.infracritical.com
Subject: Re: [SCADASEC] IBM is offering 'SCADA security best
practices'...
> I think asking which IT vendors are cross-over vendors is a reasonable
> question, but not the right question. To me the right question is
which
> cross-over vendors have the domain expertise to offer products that
work
> in a control system environment. Without teaming with control system
> domain experts, the list shrinks real fast. Many of the best
practices,
> intrusion detection/prevention systems, etc are for DCS/SCADA HMI
Joe,
If you spin up your broken record I'll play mine (as scratched and
warped as it is)
I agree about the need for teaming, and it cuts both ways because if
your SCADA vendor is still stuck back in 1998 and talking about
"managed switches" and has little understanding of all the devices and
protocols that live on complex 21st century networks: packet
shapers/QoS knobs, voip, storage networks, wan optimization/content
distribution/caching, Of course that some of the vendors on your short
list are probably using much of the same kit (and least in software)
that the "IT Security" vendors are using...
So what would your top 3 list of "IT" IDS best practices that would
not work for SCADA/DCS/HMI?
Always curious,
- mdf
_______________________________________________
To unsubscribe from this mailing list, please visit:
http://news.infracritical.com/mailman/listinfo/scadasec
To review our privacy statement, please visit:
http://www.infracritical.com/privacy.html
scadasec at news.infracritical.com
http://news.infracritical.com/mailman/listinfo/scadasec
More information about the scadasec
mailing list