We will be using many different PI interfaces for data collection on the Portaledge project. OSIsoft has some excellent interfaces for IT monitoring that will be extremely helpful for attack correlation. I’ve been adding some content to SCADApedia regarding these IT interfaces. I will continue to update the site as I delve […]

SCADApedia - - subscribers can write; all can view.
New SCADApedia entries from April 1 - 15.

ControlLogix
Energy Sector Roadmap
FactoryTalk AssetCentre
FactoryTalk Security
Interactive Energy Roadmap
Innominate mGuard
LiveData ICCP Server heap buffer overflow vulnerability
Modbus
Programmable Automation Controller (PAC)
Rockwell Automation
SISCO OSI stack fails to properly handle malformed packets
SISCO OSI stack fails to properly validate packets
Style Guide
US-CERT
Vulnerability Notes

Updated SCADApedia entries

[…]

New SCADApedia entries from March 16 - 31.
CS2SAT
IEEE P1686
IEEE P1689
IEEE P1711
IEEE Security Standards
We will list all new SCADApedia entries on or about the 1st and 16th of each month.
In 2007 our plan is to add one new SCADApedia entry every day.

This update includes the current version (roo 1.1) of the honeywall and a patched target which had a vulnerability in one of the service components. After a large number of bug fixes and IDS signature interface changes, the honeywall is stable and reports all SCADA alerts correctly in Walleye (as shown below).

Thanks to Neutralbit for […]

As we near our 500 blog post (this is #497), it is finally time to address a problem that has bothered us for a while. Factual information in our blog entries tended to get buried over time. The search engine and categories helped, but a lot of the value of the content was lost.
Our solution […]

Our SCADA Honeynet Images are now available to subscribers.
We were able to shrink the images down to 250-300MB, nearly half of our demo release.
Next week our Statistics & Reports page will start being populated with statistics from our two current SCADA Honeynet projects.
Update Dale’s Comments:
This SCADA Honeynet simulates a very popular PLC.  If an adversary […]

Matt Franz has left Digital Bond and the SCADA security world to join Hewitt in Chicago. It is a huge loss for Digital Bond, and I would argue for the SCADA security community. Much like when he was at Cisco, Matt came into the SCADA security community, made a big impact and moves on.
Matt has a […]

The Subscriber Section of the website is now up and running. Click on Subscribe in the left hand navigation bar to get details and subscribe.
There is a good and growing amount of content in the Subscriber Only sections including the SCADA IDS signatures and documentation, archived presentions, and archived white papers. The SCADA Honeynet downloads, statistics and documentation will go there […]