exida explains Blog

Entries tagged with: Plc

  • by Dr. William Goble, CFSE
  • Thursday, January 12, 2012
  • News

2011…A Year in Review

I Don’t Want No D*** Diagnostics!

After a false trip incident, I heard a control engineer express his displeasure with the automatic diagnostics in a new safety rated transmitter.  The transmitter diagnostics were annunciated by sending the analog current out of range.  In this case, the current went to 3.6 milliamps.  The problem was that…

Read More...

Keeping “Dancing Monkeys” out of your PLC

Last week a security researcher, Dillon Beresford of NSS Labs, presented at the Blackhat conference on the security vulnerabilities he found in Siemens PLC firmware.  One of many stories on Dillon’s findings can be found here.  Among other things, Dillon found “dancing monkeys” in the code!  Actually,…

Read More...

Outrage! Panic! Indifference?

How should you react to news of PLC security vulnerabilities? 

Project Basecamp was an exercise conducted at the S4 Security Conference that was held last month in Miami, Florida.  At the event, six security researchers reported their findings on the…

Read More...

The Real Impact of Stuxnet

Stuxnet has, rightly, generated a significant amount of discussion and concern with the industrial automation community.  Fortunately, unless you operate a uranium enrichment facility using Siemens S7 PLC’s and some very specific variable frequency drives (VFDs) you probably haven’t been directly impacted by the Stuxnet…

Read More...

Too Good to be True

A.K.A You’re About to Severely Under-Design your SIF and Put your People at Risk. Twice this week alone, and much more often than I like to remember, I’ve had safety system designers blindly follow certificates that contain data that simply cannot be true. They get a certificate from…

Read More...