We start the March This Month In Control System Security podcast with Matthew Jonkman and Daniel Clemens of Emerging Threats Pro. There were two big announcements yesterday regarding our Quickdraw SCADA IDS, and I discuss those with Matt and Daniel. Matt goes into detail on their support for a broad range of Snort versions and the new, open source Suricata IDS. Daniel talks about what he found in plowing Luigi’s exploit code to write the new vulnerability signatures.
I give a brief overview of the new Portaledge CIP-5 Monitoring Module / Firewall Monitoring Module for the PI Server.
And we finish up with Matt Franz and Gerald Gallagher of SAIC on securing Dept of Defense Smart Grid Projects. We get into some DoD standards such as DIACAP and STIGS, but more importantly how they used security compliance requirements to design security into the solution rather than focus on checkbox style compliance. Here are three documents they recommend for more information:
- DoDI 8510.01, DoD Information Assurance Certification and Accreditation Process (DIACAP)
- DoD 8500.01E, DoD Directive, Information Assurance
- DoDI 8500.2, DoD Instruction, Information Assurance Implementation