Monday, December 6, 2010

Langer's "Controller Integrity Checker" for Siemens S7

This is an interesting article and product from Roger Langer that talks of a mitigation tool for post-Stuxnet malware and potential vulnerability exploits.  Read the full article by clicking here.  This continues to stress the need to a thorough review of all security risks within a facility, and the development of a comprehensive security program that offers a solid defense-in-depth strategy to offer three primary goals:
  • Mitigate the attack entirely, if possible, including timely detection of the attack
  • Contain the attack, and minimize the negative consequences associated with the attack
  • Provide sufficient forensic data to investigate the attack and adjust the DiD program to prevent future attacks

3 comments: