Digital Bond » Beta Release: Bandolier Security Audit Files for ABB, Siemens, SNC, and Telvent

Beta Release: Bandolier Security Audit Files for ABB, Siemens, SNC, and Telvent

Digital Bond is pleased to announce the Beta Release of the Bandolier Security Audit Files, a Digital Bond project funded by the Department of Energy. We are excited to announce the latest release includes Nessus audit files for the ABB Ranger, Siemens Spectrum Power TG, SNC GENe, and Telvent OASyS DNA applications. Asset owners and integrators will be able to audit the security settings of their control system application components at deployment and periodically, and we believe this represents a huge step toward better security for control system servers and workstations. Even better news is there are more of these files coming.

If you already use the Nessus compliance checks or Tenable Security Center and are a Digital Bond site subscriber, simply download the appropriate package. If you’re new to the Nessus compliance checks, check out the SCADApedia article “Bandolier User Guide for Nessus“.

Reports from the application checks now include severity ratings and a link to additional documentation. We discussed this a couple of weeks ago. You can also see more details on the Bandolier page, including a table of all the application checks with links to the documentation. If you’re not a site subscriber yet, here’s an example of what you can expect.

Some of the vendors have been extremely helpful in identifying the optimal security settings, testing the Bandolier security audit files, and improving the results. These vendors are using the Bandolier results for deployments and are distributing the Bandolier audit files through their support channels.

We appreciate any feedback you have and will continue working to make the audit files as useful as possible. Stay tuned for more Bandolier updates!

—

Below are download links and a list of audit files included in each package:

Download the ABB Ranger package