Re: [foxboro] I/A Security (forked from Southeastern Users Group Wrap Up)
- From: "Deathos, Matthew" <matthew.deathos@xxxxxxxxxxxxxxxx>
- To: <foxboro@xxxxxxxxxxxxx>
- Date: Mon, 16 Feb 2009 09:08:55 -0500
Sorry to come to the party late on this topic.
Russ has done a good job of summarizing the kinds of things that we are doing
with the new product enhancements coming later this year.
One of the main messages that was missed in the thread so far is that it
Security is not a product and that no piece of software or hardware is going to
make your plant compliant to the alphabet soup of standards out there (NERC
CIP, NIST, CFATS, ISA SP99, etc) What is really needed is coordinated plan to
fill the gaps in your security profile per the standards that your
company/industry cares about using the software and hardware products that make
sense. Invensys has the people that can help you do that. You can look at our
websites and see a number of documents regarding architectures, strategies, and
products for securing your system which apply with or without the new product
features being added.
If you or anyone else would like more information please send me
(Matthew.deathos@xxxxxxxxxxxxxxxx) or Doug Clifton
(doug.clifton@xxxxxxxxxxxxxxxx) an email offlist and we can get you the
information you need. Doug leads our highly successful team of IPS security
consultants.
Regards,
Matt
-----Original Message-----
From: foxboro-bounce@xxxxxxxxxxxxx [mailto:foxboro-bounce@xxxxxxxxxxxxx] On
Behalf Of Boulay, Russ
Sent: Saturday, February 14, 2009 3:10 PM
To: foxboro@xxxxxxxxxxxxx
Subject: Re: [foxboro] I/A Security (forked from Southeastern Users Group Wrap
Up)
The plan is for V8.5 late 2009 to have the security capabilities that are being
discussed.
Besides lockdown of un-used services, tools that can be run to let you know the
status of the machine.
Both for day0 installs and upgrades form previous.
Obviously upgrades from running systems without day0 will be more work to take
advantage of the enhanced deliverable.
Domain controller on a I/A box, dual ported for Mesh connection and recommend
redundancy in case the Domain Controller is down. Groups of users with
different entitlements, can have your own personal login and passwords..
Also considerations for "persistence" where one user logs off and another logs
on won't lose your FoxView display if preferred.
I could list many more capabilities in the secured deliverable but someone
might shoot me.., but I'm just wanted to get the "might" out of the
conversation.
There is a lot going into this project which will set quite the standard of
security for I/A users.
.
________________________________
From: foxboro-bounce@xxxxxxxxxxxxx on behalf of Jeremy Milum
Sent: Sat 2/14/2009 1:25 AM
To: foxboro@xxxxxxxxxxxxx
Subject: Re: [foxboro] I/A Security (forked from Southeastern Users Group Wrap
Up)
On Fri, Feb 13, 2009 at 1:56 PM, David R Johnson <drjohn@xxxxxxxxxx> wrote
> And as for the shout out to Britney. If you know me, you know.... yeah,
> you know.
we all gotta have something :)
did they mention allowing us to easily change the 'fox' user's default password?
_______________________________________________________________________
This mailing list is neither sponsored nor endorsed by Invensys Process
Systems (formerly The Foxboro Company). Use the info you obtain here at
your own risks. Read http://www.thecassandraproject.org/disclaimer.html
foxboro mailing list: //www.freelists.org/list/foxboro
to subscribe: mailto:foxboro-request@xxxxxxxxxxxxx?subject=join
to unsubscribe: mailto:foxboro-request@xxxxxxxxxxxxx?subject=leave
* Confidentiality Notice:
This e-mail and any associated files are intended solely for the individual or
entity to whom they are addressed. Please do not copy it or use it for any
purposes, or disclose its contents to any other person. Further, this e-mail
and any associated files may be confidential and further may be legally
privileged. This email is from the Invensys Process Systems business unit of
Invensys plc which is a company registered in England and Wales with its
registered office at Portland House, Bressenden Place, London, SW1E 5BF
(Registered number 166023). For a list of European legal entities within the
Invensys Process Systems business group, please click here
http://www.invensys.com/legal/default.asp?top_nav_idw&nav_id€&prev_idw.
If you have received this e-mail in error, you are on notice of its status.
Please notify us immediately by reply e-mail and then delete this message from
your system. Thank you for your co-operation. You may contact our Helpdesk on
+44 (0)20 7821 3859 / 2105 or email inet.hqhelpdesk@xxxxxxxxxxxxx This e-mail
and any attachments thereto may be subject to the terms of any agreements
between Invensys (and/or its subsidiaries and affiliates) and the recipient
(and/or its subsidiaries and affiliates).
_______________________________________________________________________
This mailing list is neither sponsored nor endorsed by Invensys Process
Systems (formerly The Foxboro Company). Use the info you obtain here at
your own risks. Read http://www.thecassandraproject.org/disclaimer.html
foxboro mailing list: //www.freelists.org/list/foxboro
to subscribe: mailto:foxboro-request@xxxxxxxxxxxxx?subject=join
to unsubscribe: mailto:foxboro-request@xxxxxxxxxxxxx?subject=leave
* Confidentiality Notice:
This e-mail and any associated files are intended solely for the individual or
entity to whom they are addressed. Please do not copy it or use it for any
purposes, or disclose its contents to any other person. Further, this e-mail
and any associated files may be confidential and further may be legally
privileged. This email is from the Invensys Process Systems business unit of
Invensys plc which is a company registered in England and Wales with its
registered office at Portland House, Bressenden Place, London, SW1E 5BF
(Registered number 166023). For a list of European legal entities within the
Invensys Process Systems business group, please click here
http://www.invensys.com/legal/default.asp?top_nav_id=77&nav_id=80&prev_id=77.
If you have received this e-mail in error, you are on notice of its status.
Please notify us immediately by reply e-mail and then delete this message from
your system. Thank you for your co-operation. You may contact our Helpdesk on
+44 (0)20 7821 3859 / 2105 or email inet.hqhelpdesk@xxxxxxxxxxxxx This e-mail
and any attachments thereto may be subject to the terms of any agreements
between Invensys (and/or its subsidiaries and affiliates) and the recipient
(and/or its subsidiaries and affiliates).
_______________________________________________________________________
This mailing list is neither sponsored nor endorsed by Invensys Process
Systems (formerly The Foxboro Company). Use the info you obtain here at
your own risks. Read http://www.thecassandraproject.org/disclaimer.html
foxboro mailing list: //www.freelists.org/list/foxboro
to subscribe: mailto:foxboro-request@xxxxxxxxxxxxx?subject=join
to unsubscribe: mailto:foxboro-request@xxxxxxxxxxxxx?subject=leave
Other related posts:
