Main menu:

• Home
• Consulting
• Research
• Events
• Subscribe
• About Us
• Resources
  • Podcast Archives
  • Presentations
  • S4 Proceedings
  • White Papers and Articles

 

 

 

AAA  AAA 

Podcast Archives

This Month in Control System Security is a monthly podcast where Dale Peterson leads a panel discussion with industry leaders on the news and hot topics of the last month.

This Month Archives

• August 2008: Mark Fabro of Lofty Perch and Ernie Rakaczky of Invensys Process Systems join Dale to discuss changes and expectations for control system life cycles, best practices for providing secure remote vendor access, and their thoughts on what technical and administrative controls would best improve the security posture if they could snap their fingers and make it happen.
• July 2008: Thomas Maufer of Mu Dynamics and Bryan Singer of Wurldtech Security Technologies join Dale to discuss lobbying the government for control system security, virtualization’s future in control systems, and what, if anything, is missing from the growing number of control system security events.
• June 2008: Jake Brodsky of the Washington Suburban Sanitary Commission and Brad Hegrat of Rockwell Automation join Dale to discuss how to determine if an event is a cyber security incident versus a cyber incident, wireless LAN modifications to the traditional zone and perimeter security architecture, and security metrics for resiliency and fragility.
• May 2008: Eric Byres of Byres Research and Mark Fabro of Lofty Perch join Dale to discuss the Wonderware Suitelink vulnerability, the market for field security appliances, and secure by default in control systems.
• April 2008: Jake Brodsky of Washington Suburban Sanitary Commission and Bryan Singer of Wurldtech Security Technologies join Dale to discuss if FUD articles in the mainstream press are helping or hurting control system security efforts, is logical separation of a SCADA WAN sufficient, and what have been the most effective and least effective control system security government programs.
• March 2008: Ernie Rakaczky of Invensys Process Systems and Jonathan Pollet of Industrial Defender join Dale to discuss Control System Security Certifications, MS08-008 OLE Remote Code Execution Vulnerability, and the effort, or lack thereof, to add security to control system protocols.

The Interviews

Dale Peterson interviews researchers and thought leaders in control system security in the Digital Bond Press Podcast Series.

• The ieRoadmap Workshop Interviews: Dale Peterson interviews Nate Kube of Wurldtech Security Technologies on their Delphi project; Darren Highfill of Enernex on AMI Security; and Tom Flowers on the ieRoadmap. (May 2008)
• Microsoft’s Server Core with Bryan Owen of OSIsoft (April 2008)
• SOX Applicability to Control Systems with Bob Broda of Visage Solutions (Feb 2008)
• Controller Security and Reliability Testing with Nate Kube of Wurldtech (Sep 2007)
• Interviews at the Joe Weiss Event (August 2007)

- Introduction (0:00)
- Dilemma of Water Sector Security with Jake Brodsky and Cheryl Santor (0:22)
- US-CERT Control System Vulnerability Disclosure with Art Manion (17:44)
- HP Trusted Compliance Solution for Energy (think NERC CIP) with Steve Scott (25:21)
- Proposed ISA Security Division with Bryan Singer (29:25)
- IEC 60870-5-104 deep inspection firewall with Eric Hjelmvik (34:05)
- A raspy Joe Weiss post event interview (39:54)

• Control System Security Awareness with Joe Weiss (July 2007)
• Secure DNP3 with Grant Gilchrist of Enernex (June 2007)