[SCADASEC] GAO: TVA Power Plants Vulnerable to Cyber Attacks
Paul Ferguson
fergdawg at netzero.net
Wed May 21 13:52:18 CDT 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- -- "Matthew Franz" <mdfranz at gmail.com> wrote:
>But organizations that suffer a breach, compromise still might be as
>secure as possible -- compliant or not :)
Perhaps, but consider a breach that is accomplished via the
Internet, versus a breach that occurs when a network is not
connected or accessible from the Internet in any way, shape,
or form.
As the old saying goes, "The only 100% network security is a pair
of wire cutters."
Sensitive networks should be "air-gapped" and completely unaccessible
from public networks. Period.
- - ferg
-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.3 (Build 3017)
wj8DBQFING9dq1pz9mNUZTMRAqyiAJ49LOwQ8CX5ci702diqBmite/mm2ACcDdiu
mr9ZD2hbScreouuhsFrfOxg=
=949+
-----END PGP SIGNATURE-----
--
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
fergdawg(at)netzero.net
ferg's tech blog: http://fergdawg.blogspot.com/
More information about the scadasec
mailing list