I’m heading up for bidders’ conference for the DHS Science & Technology (S&T) control system security research opportunity in DC tomorrow. It will be interesting to see if they provide any more detail than in the announcement on the applied research they would like to see.
Any great ideas out there?
UPDATE at the event:
About 160 people […]

Assessing the security posture of an asset owner’s SCADA or DCS typically does not involve looking for new, zero-day attacks. Instead, it focuses on identifying protection against known vulnerabilities, as well as good practice configuration and implementation, architecture, redundancy, recovery … see a summary of our methodology.
One area we deviate slightly from this philosophy is […]

Balloting of IEEE P1686 was successful with an 85% return rate and 80% approval rate.

There are two fantastic control system security funding opportunities open right now. Of course Digital Bond is in the process of submitting proposals to both.

The Department of Energy has an opportunity for up to $2M of research funding. Cost sharing and […]

Part II of the three part OPC Security whitepaper written by Byres Security, Digital Bond and BCIT is available today for subscribers. Eric will be posting it on his site and in the upcoming weeks you are likely to see it on other sites as well.
We are three weeks tardy on our planned release […]

The NRC report on the Browns Ferry cyber related incident is fertile ground for discussions and learning. Some have accurately pointed out this is not a unique incident, but it is one of the few that is publicly documented.

Nowhere in the report to they discuss correcting the software flaws in the PLC that failed and […]

(Big Hat Tip: Robert Lemos of Security Focus, see his article)
This is a fascinating real world case study and example why protocol stack security and reliability is so important. From a NRC report dated April 17, 2007:
On August 19, 2006, operators at Browns Ferry, Unit 3, manually scrammed the unit following a loss of […]

We pulled one of our SCADA Honeynets out of an electric substation after about six months, and we are looking for another interesting place to put it.  Ideally it would be an environment where 802.11 wireless would be likely to be used and somewhere that is close to people that might try to piggyback on […]

Verano, after purchasing Plantdata and e-DMZ, has renamed and branded the entire organization Industrial Defender.
The tentative agenda and registration is open for Joe Weiss’s annual security conference. He put on six while at KEMA, and this is his first on his own. I imagine Joe will be highly motivated to make this one of […]

SCADApedia - - subscribers can write; all can view.
New SCADApedia entries from May 1 - 15.

I3P
LiveData ICCP Server COTP Vulnerability
LiveData ICCP Server HTTP/SOAP Heap Overflow Vulnerability
Sandia Anonymous, Authenticated Communication Protocol
SRI EMERALD IDS
Tulsa Modbus Scanner

Updated SCADApedia entries

Vulnerability Notes

There are now 35 SCADApedia entries. See a list of all entries.
We will list all new SCADApedia entries on […]

Hewlett Packard (HP) announced today their Trusted Compliance System for Energy (TCS-e). It is an odd coincidence, but a product and a certification we were involved with are announced on the same day. We helped HP get acquainted with the control systems market as well as contributed to the requirements document and some of the […]