Zibb
Subscribe to Control Engineering
FirstLight
Pillar to Post: Peter Welander's Blog   


Link This | Email this | Blog This | Comments (0)


Security is the new safety
March 27, 2007

At the PCSF meeting in Atlanta earlier in March, I heard comments from several people that sounded a similar theme: cyber security is in much the same situation that industrial safety was 10 or 20 years ago. Companies are recognizing that threats can come in through their control systems and understand that defense requires both technical solutions and human behavioral change. Like safety, there is no ultimate solution for cyber security, only levels of defense.

When implementing safety defenses, operators found that machinery has to have appropriate safety devices (technical solution) and workers need to follow safe practices (human behavior) for the program to be successful. Adding standards like SIL levels addisted in designing appropriate remedies for specific applications.

Cyber security is undergoing much the same transformation:
• Technical solutions (firewalls, DMZs, intrusion detection, etc.) are important;
• Human solutions (Don't plug your iPod into the DCS server!) are equally important; and,
• Security standards (ISA 99, DHS Procurement Language) are taking shape.

All these will guide the way. If you want to know the latest on where ISA-99 is, click here to listen to a CE podcast with Bryan Singer, committee chairman.

Posted by Peter Welander on March 27, 2007 | Comments (0)



POST A COMMENT
Display Name or Registered Users Login Here.

Before submitting this form, please type the characters displayed above:

Advertisement


Advertisements
About Us   |   Advertising Info   |   Site Map   |   Contact Us   |   Useful Sites   |   FREE Subscription   |   RSS
© 2008 Reed Business Information, a division of Reed Elsevier Inc. All rights reserved.
Use of this Web site is subject to its Terms of Use | Privacy Policy
Please visit these other Reed Business sites