[146857] in North American Network Operators' Group
Re: First real-world SCADA attack in US
daemon@ATHENA.MIT.EDU (Mike Andrews)
Wed Nov 23 12:40:15 2011
Date: Wed, 23 Nov 2011 11:39:30 -0600
From: Mike Andrews <mikea@mikea.ath.cx>
To: nanog@nanog.org
Mail-Followup-To: nanog@nanog.org
In-Reply-To: <CAO0-hXau+i91oDfaEWmROxB7ZJT1-wgGsoLfn+z_W3D4ipBGpg@mail.gmail.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Tue, Nov 22, 2011 at 04:00:52PM -0800, Joe Hamelin wrote:
> This might be of interest to those wishing to dive deeper into the subject.
>
> Telecommunications Handbook for Transportation Professionals: The Basics of
> Telecommunications by the Federal Highway Administration.
>
> http://ops.fhwa.dot.gov/publications/telecomm_handbook/
>
> I'm still digging through it to see what they say about network security.
> Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
They don't. Not at all. The most they do say is that on one system, one
class of users has RW access to data, while another has RO access. This
quote:
"Firewall" - is a term used
to describe a software
application designed to
prevent unauthorized
access to the initial entry
point of a system.
is indicative of the level at which the doc is written, and of the
intended audience. Worse yet, the dfn. is _*WRONG*_.
I work for a state highway department; we take network security a whole
lot more seriously than *that*.
73 DE
--
Mike Andrews, W5EGO
mikea@mikea.ath.cx
Tired old sysadmin
