The world's most capable, rugged and secure
industrial control system...
Introducing Bedrock OSA® Remote
- Intrinsically-secure PLC and RTU control
- 10 or 20 channels of universal I/O
- Free IEC 61131-3 engineering software
- -40ºC to +80ºC temperature range
- Rugged, all-metal case 5.4 in x 8.9 in x 2.3 in
Supply Chains Under Attack
June 27, 2019
More proof that the instrumentation and control industry is concerned about supply chain security is evident in the fact that it was the topic of the two most popular articles recently run at ControlGlobal.com. The most widely read article was Joe Weiss’ detailed blog entry: “The ultimate control system cyber security nightmare,” which may have been triggered at least in part by the second most popular article: “Yokogawa announcement warns of counterfeit transmitters.”
Weiss’ concern was that although device knock-offs have been primarily motivated by financial gain, they could easily host moles and backdoors into other industrial technology, setting up opportunities for IP theft or more dangerous consequences, such as meddling with safety controls.
He supports this further pointing to an announcement from the North American Electric Reliability Corporation – Critical Infrastructure Protection (NERC-CIP), which raises concerns that information and communications technology and industrial control system supply chains may provide various opportunities for adversaries to initiate cyberattacks. Authors of a recent article for the Manufacturing Leadership Council express similar concerns:
“Typically, the motivation of a hacker is to sabotage operations, steal intellectual property, personal or financial data, or to extract ransom by unlocking encrypted data. When it comes to manufacturing supply chains, the implications are much broader. Cyberattacks from malicious hackers or software can paralyze entire connected manufacturing ecosystems, affecting production, product quality, revenues, brand, and human lives.”
- For a related article on how the US Cybersecurity and Infrastructure Security Agency (CISA) has elevated the importance of supply chain cyber security see: Supply Chain and ICS Cyber Security Rising on National Critical Infrastructure Agenda.
- For more information about how Bedrock Automation minimizes supply chain risk, see How Locally Sourced, Intrinsically Secure Components Reduce Supply Chain Risk