Wednesday, April 15, 2009

Danahy: Old Security Habits and the New Smart Grid

JD: This weekend brought us a new security vulnerability message about next generation power, wrapped in the traditional trappings of today's Internet and cybersecurity messaging. The CNN headline reads 'Smart Grid' may be vulnerable to hackers' and the story looked like any of a hundred similar flags waved over software applications, newly delivered services, government infrastructure, etc.

and ...

I think that model is wrong. I am not saying that third-party testing isn't important, but it misses the underlying problems that have allowed the insecure system to exist in the first place. Systems like the Smart Grid need to be developed with a fuller understanding of the purpose, threats, and environment, in which these components will be working. 

No comments: