A blurb on the Siemens site highlights the soon to be released CP 343-1 advanced communications processor for the S7-300 and the CP 443-1 advanced communications processor for the S7-400. It purports to create a closed network that limits communication to those within a defined cell. Perhaps we will be able to remove our “Siemens Has Not Fixed Stuxnet For” clock from the site. It’s at 557 days and counting.
Smithsonian Magazine has an article highlighting Richard Clarke’s views on Stuxnet. His Stuxnet comments are just reasonable guesswork on the source, and his technical details are wrong. But he is a big voice and his comments on the meta situation are dead on. Such as “I think we’re living in the world of non-response. Where you know that there’s a problem, but you don’t do anything about it.” … Yes! and surprisingly it is the people who know the problem, danger and impact best that are leading the intransigence.
The Energy and Power Cybersecurity Summit scheduled for April 5-6 in Atlanta was cancelled due to poor attendance. This is regrettable because the EnergySec event has historically been one of the better events with a high percentage of asset owners as attendees. It did suffer from one problem and regrettable conference trend — opening registration without a detailed agenda. Even as late as this week there were only broad title topics with no speakers associated or descriptions.
And we are ~45-days from the May 7th ICSJWG spring meeting and there is still no published agenda. I doubt ICSJWG will be cancelled, but it is hard to expect people to sign up to attend an event without an agenda.
Tweet of the Week
Critical Intelligence’s ICS Security Event Calendar Updates
- GovSec Critical Infrastructure Track, April 3-5 in Washington DC
- Webinar Cyber Security Order 706, April 10
- Seminar Cyber Security for Public Power Utilities, April 15 in Cleveland, Ohio
- NIST Workshop Cybersecurity for Cyber-Physical Systems, April 23-25 in Gaithersburg, Maryland
- IEEE’s Smart Grid 301 – Security, May 8 in Orlando, Florida
- Security Presentations at SCADA MENA 2012, June 12-13 in Abu Dhabi, UAE
Critical Intelligence provides reports and other information products on Cyber Situational Awareness and Threat Intelligence services for Industrial Control System Owner/Operators, Vendors and Government stakeholders.
Image by TooFarNorth