Software Integrity

Archive for the 'Industrial Control System Security' Category

 

Internet of Things (IoT): Rethinking the Threat Model

On February 4, 2017, a Saturday night, a high-school student in the U.K. realized he wasn’t going to university to study computer science so he wrote a short program in C, and within a few hours had 150,000 internet-connected printers across the world spitting out ASCII art and messages. All this was harmless although the […]

Continue Reading...

Posted in Industrial Control System Security, Internet of Things, Software Composition Analysis, Software Security Testing, Threat Modeling | No Comments »

 

Software Testing Included in Final ISA / IEC 62443-4-1

A new standard covering the secure product development lifecycle has been ratified, officially making static code analysis, software composition analysis, and malformed input testing part of the requirements. Known officially as ISA-62443-4-1 Security for industrial automation and control systems Part 4-1: Secure product development life-cycle requirement, it is part of a larger certification program designed […]

Continue Reading...

Posted in Industrial Control System Security, Security Standards and Compliance | Comments Off on Software Testing Included in Final ISA / IEC 62443-4-1