Concerned About The Cyber Risks Of Your Industrial Automation And Process Control Environments?
As cyber-security risks increase in frequency, severity and sophistication, the process of managing the security of SCADA and process control systems is becoming extremely difficult. Currently, security solutions for legacy industrial control systems are delivered through a small number of companies and disparate commercial products from different vendors lacking intelligence, integration and interoperability. The end result is a high degree of complexity, increased operational costs, limited visibility and reliance on inappropriate data to make critical security decisions. For a majority of industrial organizations, the outcome is a weak security risk profile – an insecure network infrastructure, incomplete regulatory compliance, security audit failures and increased security management costs that are not in line with business objectives.
Delphi™ is the world’s first cyber-security vulnerability database specifically designed to provide industry with unparalleled visibility into the reliability, safety and security of the systems and networks essential to the operation of the world’s critical infrastructure. Delphi™ empowers stakeholders to answer questions such as, How secure am I? Where should I focus my resources? and Am I doing everything I can to protect the safety, security and reliability of my industrial operations?.
Project Overview
Wurldtech Labs, a recognized leader in testing industrial automation devices for security vulnerabilities, is initiating a program to extend Delphi, its comprehensive database for next generation control and safety devices, to include those in active operation. Delphi 2.0 will provide unparalleled insight into the robustness of control systems used by industry including visibility of the actual vulnerabilities present in each. Proven, cost effective mitigation strategies for all classes of detected vulnerabilities will then be developed.
Delphi 2.0 will extend the current Delphi device vulnerability taxonomy and data model to further classify vulnerabilities according to the likelihood of occurrence on an operational network. This taxonomy will become the defacto standard for characterizing industrial security vulnerabilities according to their likelihood of occurrence and resulting impact on the reliable operation of the susceptible device. This characterization of severity will also give users the ability to quantify the risk related with each vulnerability, and the cost associated with its mitigation.
Delphi 2.0 will be populated using Wurldtech’s proven Achilles Satellite technology and associated test methodologies for comprehensively testing control system devices. Program participants will represent a variety of critical infrastructure sectors, including oil and gas, electrical power generation and distribution, nuclear, transportation, and water. Wurldtech test engineers will thoroughly examine the devices provided by the participants, and populate Delphi 2.0 with information on all security vulnerabilities discovered by the device tests. |
