The industrial control vendor community, along with the government, all understand the importance of the growing concern and need for a more secure environment.
That is why ICS-CERT and industrial control system (ICS) users and vendors are creating a cross-vendor position paper on the ICS Security Posture.
ICS-CERT issued a release saying: “It is common knowledge no simple approach exists to resolve the current problems facing ICS security across all sectors. In order to achieve this goal, all stakeholders; including ICS vendors, standards organizations, ICS system integrators, and ICS asset owners and operators must commit to facing this challenge.
“Along with the goal of fostering heightened awareness of the current issues and improving the overall posture of ICS security, the DHS Industrial Control Systems Cyber Emergency Response Team, (ICS-CERT), through the Industrial Control Systems Joint Working Group (ICSJWG), supports a focused effort composed of ICS vendors and standards bodies, working cooperatively to address these current challenges.
“The ICSJWG is a collaborative and coordinating body operating under the Critical Infrastructure Partnership Advisory Council (CIPAC) requirements. The ICSJWG provides a vehicle for communicating and partnering across all critical infrastructure and key resources (CIKR) between federal agencies and departments as well as private asset owners and operators of ICSs. The goal of the ICSJWG is to enhance the collaborative efforts of the ICS stakeholder community in securing CIKR by accelerating the design, development, and deployment of secure ICSs.
“The product of this focused effort will be a cross-vendor position paper that discusses the current security challenges and a path forward for a more effective industry wide approach to ICS security. ICS vendors and standards bodies are working toward improving security architectures, implementing secure software development practices, and establishing secure interoperability standards. These topics are among those that will be discussed in the cross-vendor ICS security posture paper, planned for publication in the Fall of 2011.
“ICS vendors and standards bodies have expressed intent to participate in the development of this posture paper. All ICS vendors, standards bodies, and ICS partners are welcome to join this effort. To express interest in participating, please contact ICS-CERT at firstname.lastname@example.org.”