OT Security Blog Articles

“No one realized that the pumps that delivered fuel to the emergency generators were electric.” Angel Feliciano Representative of Verizon, explaining why Verizon’s backup power failed during the

The world seems to be fixated on the cyber threat. There are exceedingly elaborate methods used to capture, characterize, and share the signatures of emerging threats in real-time. In an effort to

“The underlying reason that cybersecurity is so poorly done is not that there is a crying need for more research and development, or that it is impossible to secure these systems. It is that we fail

“Market success of technologies and products is usually driven by what they enable, not by what they restrict or prevent. Restrictive solutions, such as those in environmental protection, safety, or

Admittedly, these are based on anecdotal evidence, but I suspect they are very close to the major reasons used to deflect concerns about increasing the security posture of cyber-physical systems.

Poisoned fruit is an apt metaphor used by the Honorable Richard Danzig in the title of his latest report for all things cyber that today we can’t live without, yet bring ever increasing risks. The

“The basic premise of penetration testing is that you’ve got something that you don’t understand and you’re trying to achieve an understanding of it by having some outsider — who also doesn’t

When I accepted the position as Director of the Control Systems Security Program (CSSP) in 2006, I had no idea about what was coming. One of the challenges I did envision was finding a way to educate