[Oisf-users] EnergySec and the OISF announce new SCADA Research!

Matthew Jonkman jonkman at emergingthreatspro.com
Mon Aug 29 16:27:51 UTC 2011

More here:

Summary announcement below. See the link above for full details!


Lafayette, Indiana - August 29, 2011 - The Energy Sector Security Consortium (EnergySec)  and the Open Information Security Foundation (OISF) are working together to make SCADA safer by funding upgrades and improvements to the Digital Bond Quickdraw SCADA Preprocessors for Snort and Suricata.  Snort and Suricata are open source network intrusion prevention and detection systems (IDS/IPS).  This work is funded through the National Electric Sector Cybersecurity Organization (NESCO), an EnergySec program partially funded by the Department of Energy.

“It's great to see EnergySec and OISF take on this project. The updates have been requested by many owner/operators. There are opportunities to enhance the attack detection capabilities in the current preprocessors and similar modules are urgently needed for other control system protocols,” said Dale Peterson, CEO of Digital Bond, Inc.

These SCADA protocol preprocessors will be updated to work with the latest version of Snort, and adapted for integration with Suricata, the next-generation IDS engine.  The enhancement of intrusion detection capabilities for communication protocols used by systems such as SCADA protocol preprocessors is big step toward helping the owners and operators improve their security posture.

"We look forward to working with EnergySec to provide this important functionality," Matt Jonkman, OISF President said.  "This effort will significantly enhance Suricata and Snort's ability to protect SCADA systems deployed within critical infrastructure environments."

"This is an important and relevant activity," added Steven Parker, Vice President, Technical Research and Projects for EnergySec. “The NESCO program is focused on encouraging and helping the development of improvements in cybersecurity that will directly benefit the North American power grid. This project will help do just that.” 

Learn more in person about the proposed method, protocols to be covered, and technical hurdles at the next OISF Brainstorming meeting at the RAID Symposium, September 19, 2011. Your input is necessary! Register below to attend or listen in:

Matthew Jonkman
Emerging Threats Pro
Open Information Security Foundation (OISF)
Phone 866-504-2523 x110

PGP: http://www.jonkmans.com/mattjonkman.asc

More information about the Oisf-users mailing list