Firewall Wizards mailing list archives

Re: SCADA

From: Chris Blask <chris () blask org>
Date: Fri, 17 Apr 2009 15:37:51 -0700 (PDT)


Brian Loe <knobdy () gmail com>  wrote:

I have yet to see a system type that a business guy didn't want a
report from. How you provide those reports depends on what you are
after, I guess. In my case, where I am now, things could blow up and
KILL people if the SCADA network gets a virus (unlikely, but
PLAUSIBLE). At the last place a county would lose it's power and at
certain times of the year a lot more would - or something could blow
up and KILL people. :)


As bizarre as the concept is, human life has a measurable monetary value.  Insurance companies have been doing this 
forever, ask one about actuarial tables (http://www.ssa.gov/OACT/STATS/table4c6.html).  Mitigating risk to human life 
is something we each do every day, how we operate vehicles and raise kids is all about mitigating and accepting the 
risk of potential death to ourselves and others.

All that realism being said, I am right there with you as far as getting very personal about mitigating the risk to 
SCADA systems.  We are less likely to see the direct personal harm done by hacked IT systems (though we can imagine the 
85-year-old lady's heart attack when her identity is stolen or her retirement fund disappears) but with SCADA it gets 
physical real quick.  This is even more the reason that I will argue energetically for a Pragmatist's solution rather 
than a Purist's - I believe we can on average protect and save more lives by advancing the state of security on many 
SCADA networks than we can by perfecting security on a few.

The business guy's need to get a report does
not override the requirement that the SCADA network does not get
connected to the corporate network, and therefore the Internet.



I thought you had a SCADA network connected (albeit through a DMZ) to your corporate network, which I assume is 
connected to the Internet?  Best laid plans and all that - I assume you are aware of some of the really neat testing 
that has broken through some really well designed SCADA standoffs?  Even in the solution you describe, there is no 
guarantee that something really fascinating can't happen to prove Robert Burn's correct (again - 
http://en.wikipedia.org/wiki/To_a_Mouse).

While I am a purist (it's almost official now)


It's official - you are a purist.

my current SCADA
network is required to feed a data logger. The implementation of that
logger, and the business' ability to pull data out of that logger, do
not lessen the SCADA network's security anymore than it absolutely has
to.


"anymore than it absolutely has to. " 

Sorry, you aren't a purist anymore. ;~)

-chris


      
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Re: SCADA, (continued)
- - - Re: SCADA Paul D. Robertson (Apr 15)
    - Re: SCADA Brian Loe (Apr 16)
    - Re: SCADA Paul D. Robertson (Apr 16)
    - Re: SCADA Chris Myers (Apr 16)
    - Re: SCADA Brian Loe (Apr 16)
    - Re: SCADA Marcus J. Ranum (Apr 16)
    - Re: SCADA Chris Blask (Apr 16)
    - Re: SCADA Brian Loe (Apr 16)
    - Re: SCADA Marcus J. Ranum (Apr 16)
  - Re: SCADA R. DuFresne (Apr 23)
- Re: SCADA Chris Blask (Apr 17)
  - Re: SCADA Brian Loe (Apr 18)
    - Re: SCADA Chris Blask (Apr 18)