McLaughlin, Sean wrote: > This presentation caught my eye -- it's one of the topics that I'd like > to address in training our Engineers, but a topic that I only have broad > non-vendor specific information on. Are either of the below people > subscribed to this group to provide some highlights? (or anyone else > who'd like to chime in on security) > > I know Matt DeAthos reads some of the posts. I don't know about Ernie. Anyway the two main points of the presentation were... 1) IPS has a cyber security team in place to assist with audits and securing your plant. This was ok, but not a lot of "take away" information as one attendee put it. 2) The next I/A release in September will be much more secure out of the box. They said they might be removing non-essential windows apps (media player, etc.). They said they might block ports that were not used specifically by I/A. They said there might be the option to put a domain controller on the mesh and changing well known service passwords would be allowed. They said the philosophy of the least privileges needed might be adhered to from this point forward. Now go back and read that with s/might/will and you'll get what they were driving at but wouldn't commit to. At least security has moved from something that gets lip service to something that is beginning to be actively worked on. And as for the shout out to Britney. If you know me, you know.... yeah, you know. Regards, David _______________________________________________________________________ This mailing list is neither sponsored nor endorsed by Invensys Process Systems (formerly The Foxboro Company). Use the info you obtain here at your own risks. Read http://www.thecassandraproject.org/disclaimer.html foxboro mailing list: //www.freelists.org/list/foxboro to subscribe: mailto:foxboro-request@xxxxxxxxxxxxx?subject=join to unsubscribe: mailto:foxboro-request@xxxxxxxxxxxxx?subject=leave