Tom Alrich's Blog

Thursday, July 27, 2017

Sean McBride Writes a Great White Paper

›
I have written at least a couple times previously about things Sean McBride has written, including in this post from 2014 (which by the ...
Monday, July 24, 2017

GridSecCon 2017

›
It may seem to be a little early to toot the horn for NERC’s GridSecCon   , since it won’t occur until October 17-20 (this year it will b...
Thursday, July 20, 2017

The Department of Cybersecurity?

›
Sometimes I read an article on line or in the physical paper (yes, I still get those!) that makes me smack my head and say “Of course! Th...
Monday, July 17, 2017

Device Drivers, Part II

›
In my last post , I discovered – to my surprise, I’ll admit – that auditors are expecting NERC entities to patch device drivers to comply...
Sunday, July 16, 2017

Are you Patching Device Drivers?

›
I’ve known for a while that in theory CIP-007 R2, the patch management requirement, applies to device drivers, and that could potentiall...
Sunday, July 9, 2017

Expanding on my Last Post

›
Two days ago I published a post pointing out what I believe is a significant unintended contradiction between CIP-013, the new supply ch...
Friday, July 7, 2017

A Contradiction in CIP-013

›
I have recently been talking with NERC entities about how they will actually implement CIP-013, the supply chain security management stan...
‹
›
Home
View web version

About Me

My photo
Tom Alrich
View my complete profile
Powered by Blogger.