Archive for September, 2011

ISA99 and IEC62443 – Security for Industrial Automation and Control Systems: System Security Requirements and Security Assurance

The chairs of the ISA99 committee on Industrial Automation and Control Systems Security have completed a draft copy of the following document and is releasing it for review and approval by the voting members of the committee. The title of the standard …

Your September @Control Digital Issue is Ready for Viewing! #pauto #automation #mfg #manufacturing

   

read more

ACS 2011 Conference Summary – September 22

The final agenda can be found at www.realtimeacs.com There are several unique hallmarks of the conference:

Discussions of actual control system cyber impacts
The significant amount of discussion makes keeping a schedule almost impossible
Many of the p…

ACS 2011 Conference Summary – September 21

The final agenda can be found at www.realtimeacs.com There are several unique hallmarks of the conference:

Discussions of actual control system cyber impacts
The significant amount of discussion makes keeping a schedule almost impossible
Many of the p…

ACS 2011 Conference Summary – September 20

I will provide a summary of the Confernece over the next three days. The final agenda can be found at www.realtimeacs.com. There are several unique hallmarks of the conference:

Discussions of actual control system cyber impacts
The significant amount …

Observations of Joe Weiss’ ACS Conference

Although I was invited to attend one of Joe’s social gatherings several years ago, I have never attended any of his conferences, until this past week.  Despite the fact that critics of Mr. Weiss have stated that he is self-serving, contrary to popular belief, he is not.  Joe encourages people to meet, network and discuss […]

Smart Manufacturing Leadership Coalition Meeting in Minneapolis Oct 20– New Participants Welcome!! #pauto #mfg #manufacturing

Smart Manufacturing Leadership Coalition (SMLC) to Hold Meeting on Thursday, October 20, 2011, in Minneapolis, MN 9:00 am – 4:00 pm (registration and coffee 8:00 – 9:00 am)
New Participants Welcome! read more

When is an actual vulnerability no longer considered a vulnerability?

In a stunning statement at the 2011 ACS Cyber Security Conference, Marty Edwards from DHS stated that in order for a design deficiency to be considered a vulnerability, it must be fixable by a patch. This means exploitable design deficiencies such as t…

Special session on Luigi’s vulnerabilities at ACS Conference

There will be  special session on how vendors respond to uncoordinated security researcher disclosures and specifically to the vulnerabilities associated with the Rockwell systems.
Joe Weiss 

Will AntiVirus Protect Me? A blog post by @ericbyres #stuxnet #cybersecurity #pauto

Here’s a new blog post by Eric Byres of Byres Security that I found interesting and even a little illuminating about the real state of understanding by process people about cybersecurity:
http://www.tofinosecurity.com/blog/antivirus-protection-scada-se…