On TechRepublic: Why Android beats iPhone
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 1 of 28:
Next »
SCADA vulnerability
As an Engineer who has spent the past 20 years working on SCADA systems for water and wastewater plants, I have some comments on this article. (And yes we are a user of CitectSCADA) First, where I work, we NEVER connect our plant control systems (SCADA systems) to ANY other network. Not Internet, Intranet, wireless, or anything. They are set up as standalone systems. The risk is just too great, and the benefits are marginal. As mentioned in the article, there is an army of hackers out there always looking for a vulnerable system - the best way to protect the system is not to present it to them. I know of other industries (power generation) that have similar bans on connection to outside networks. We also never allow any contractor to access our SCADA network, for any reason.
This 'stand alone' approach does take dicipline and support - there are always people in the company that want to integrate the 'process' SCADA side with the 'business' side, either through the company's Intranet or the Internet. It takes strong convictions by the IT staff, plant operation staff and Engineers in charge of the plant to resist these efforts. It's sometimes not easy, but we sleep very well at nights knowing that some hacker on the other side of the planet cannot get into our system.
Posted by: brewakeg   Posted on: 06/12/08 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

SCADA vulnerability  brewakeg | 06/12/08
You're a cut above the rest  nmcfeters | 06/12/08
SCADA systems have so many connections that it is almost impossible to  DonnieBoy | 06/12/08
Still, Citect SCADA runs on Windows and has no place in safety critical  DonnieBoy | 06/12/08
Ah yes. You had to make it a Windows issue.  osreinstall | 06/12/08
I'd want *Nix too  nmcfeters | 06/12/08
Doesn't matter if it ran off of a Abacus.  osreinstall | 06/12/08
And go back to the time when a dot matrix printer costs $2500. No thanks.  transposeIT | 06/15/08
Hmm  nmcfeters | 06/16/08
Modern SCADA systems have a lot of network connections and can be  DonnieBoy | 06/12/08
Riiiiight!  osreinstall | 06/12/08
...  Linux User 147560 | 06/12/08
***  osreinstall | 06/12/08
detectors  Dr. John | 06/19/08
It's getting easier.  James T. Kirk | 06/12/08
Agreed  nmcfeters | 06/12/08
Limiting the functionality of the communications channels IS a good way to  DonnieBoy | 06/12/08
When did we ...?  morwen | 06/12/08
Agreed  nmcfeters | 06/12/08
Blaming criminals does NOT keep your systems any safer. It does not really  DonnieBoy | 06/12/08
Broaden your scope.  James T. Kirk | 06/12/08
No argument here. All reasons to not just relay on isolated networks.  DonnieBoy | 06/12/08
Great point (NT)  nmcfeters | 06/12/08
Blackout NOT related to China  ChickenSangwich | 06/13/08
Very Interesting  nmcfeters | 06/13/08
Scratching the surface  flippytheclown | 06/13/08
You're adding to my fear  nmcfeters | 06/16/08
Not many of you have worked in SCADA  Aussie_Troll | 01/31/09

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
advertisement
Click Here
  • Smart Tech Expert advice on innovations in healthcare and the green technologies that make it happen. Find out more
  • Smart Business Discussion and advice on management issues that revolve around making your world smarter and more useful. More Smart Advice
  • Smart People The best and worst moves in the management and strategy trenches. Learn More