Companies resist nuclear cyber security rule

Companies resist nuclear cyber security rule
Kevin Poulsen, SecurityFocus 2005-03-04

Two companies that make digital systems for nuclear power plants have come out against a government proposal that would attach cyber security standards to plant safety systems.

Expand all | Post comment

Companies resist nuclear cyber security rule 2005-03-06
Todd Knarr

Companies resist nuclear cyber security rule 2005-03-07
Anonymous

Companies resist nuclear cyber security rule 2005-03-08
Seegras

Its not bad on the first glance. They're a bit liberal with use of "off the shelf software" versus the use of software they can strip down to their specific needs, and which they can check themselves if it upholds their security-standards. This goes for updates and maintenance too.

I for one would rule out software for which I don't have the source-code categorically (does not necessarily imply that I would only consider open-source: the ability to review the source, build it myself and change it for internal use only would suffice).

But otherwise I would expect a nuclear powerplant to have at least the level of security prescribed by the document. It's not even particularly restrictive.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/10618/30832#30832

Companies resist nuclear cyber security rule 2005-03-09
Anonymous

Companies resist nuclear cyber security rule 2005-03-11
Torontonian

Companies resist nuclear cyber security rule 2005-03-11
Anonymous

Companies resist nuclear cyber security rule 2005-03-18
24 Fan