Archive for 'US Government'
Energy Sector Cyber Security Research Event
Many of you are familiar with the Roadmap to Secure Control Systems in the Energy Sector that was created by a private industry / government team. To support roadmap implmentation the team then created the Interactive Energy Roadmap that maps research and other industry efforts to strategies in the Roadmap.
Now the Energy Sector Control Systems […]
Author: Dale Peterson
Posted: April 21st, 2008 under Dept. of Energy.
Comments: none
INL Presentation at OSIsoft’s DevCon 2008
I attended OSIsoft’s DevCon 2008 this week. While parts of the conference seemed to be more marketing than technology, there was some good information that I will be able to use for the Portaledge project. The most interesting talk was from Shane Hansen and Ken Rohde of Idaho National Laboratory (INL).
The presentation started […]
Author: Charles Perine
Posted: March 21st, 2008 under Conferences, Dept. of Energy, US Government.
Comments: 5
FPL - - Whatever Happened at Browns Ferry?
While I live in South Florida, I was in California during the short FPL blackout yesterday. At dinner with some other control system security professionals the talk obviously went to the FPL event. A few interesting points:
- Since this affected the Turkey Point nuclear plants we may get a NRC report on the incident. So […]
Author: Dale Peterson
Posted: February 27th, 2008 under Calculating Risk, US Government.
Comments: 6
Podcast: SOX and Control Systems
There has been discussion in the community on whether control systems are in the Sarbanes Oxley (SOX) scope.
We have never been comfortable with the level of detail or expertise in the discussion, and the last thing the community needs is more uncertainty about security related regulations. So we found an expert with a background in […]
Author: Dale Peterson
Posted: February 11th, 2008 under Standards & Orgs, US Government.
Comments: 6
Lack of Information and Parsing Words
Alan Paller of SANS has been talking about cyber extortion attempts of utility companies for over a year now, and we now have Tom Donahue, a CIA-rep, on the record.
“We have information, from multiple regions outside the United States, of cyber intrusions into utilities, followed by extortion demands. We suspect, but cannot confirm, that some […]
Author: Dale Peterson
Posted: January 21st, 2008 under Calculating Risk, US Government.
Comments: 9
Sean McGurk Appointed New DHS CSSP Director
It was a tough blow when Perry Pedersen left the Control Systems Security Program (CSSP) Director position back in August of 2007. Perry had that group really working the best it had ever had and with a high morale.
We hear that Sean McGurk will be the new CSSP Director starting in January. Sean worked 20+ […]
Author: Dale Peterson
Posted: January 10th, 2008 under DHS.
Comments: none
ISA SP99 v. NIST SP800-53
After the Congressional testimony in October, the panelists were provided with questions from committee members. Joe Weiss shares two along with his answers in his latest Unfettered entry.
Congressman McCaul asks “What are the principal differences between the ISA 99 standards and the NIST best practices found in Special Publication 800-53?”
I know and admire Joe, but […]
Author: Dale Peterson
Posted: November 21st, 2007 under ISA SP99, NIST.
Comments: 5
US Gov’t Not Leading By Example
The calls from reporters continue to come in related to Aurora and Congressional Hearings on grid cyber security. There is a lot of talk and temptation for the government to bash the power industry. After all you don’t want to look soft on this issue.
After seeing a story on TSA still failing to stop bomb […]
Author: Dale Peterson
Posted: November 15th, 2007 under US Government.
Comments: 5
Digital Bond Selected for Dept. of Energy Research Funding
We are thrilled to announce that Digital Bond was one of five companies selected for negotiation of awards of up to $7.9 million in DOE funding to develop and integrate technologically advanced controls and cyber-security devices into our electric grid and energy infrastructure. Our project is titled Cyber Security Audit and Attack Detection Toolkit and […]
Author: Dale Peterson
Posted: October 18th, 2007 under Dept. of Energy.
Comments: none
CNN–DHS Tape Fallout / SANS Hype Machine
I’ve been a bit surprised at the reaction to the excerpt of the DHS tape showing a demonstration of cyber attack on a power plant. The reaction from the press and those not in what I often call the “community” in this blog is an expected combination of shock and wonder at how this is […]
Author: Dale Peterson
Posted: October 2nd, 2007 under DHS, SANS.
Comments: 4

