Drives and Controls Magazine

Cyber-security database will catalogue industrial risks

13 March, 2008

A Canadian specialist in cyber-security systems for automation and process control has launched what it claims is the industry’s first cyber-security database for industrial control systems. Wurldtech Security Technologies says that its Delphi database will be the most comprehensive database of risk profiles for industrial control systems.

The database is intended to serve as a knowledge base to assist in implementing security plans and strategies. It will help users to answer questions such as: "How secure am I?"; "Where should I focus my resources?"; and "Am I doing everything I can to protect my enterprise?"

As cyber-security risks increase in frequency, severity and sophistication, Wurldtech argues, the process of managing the security of SCADA and process control systems is becoming extremely difficult. Currently, security systems for industrial control systems are available from a small number of suppliers and the various commercial products lack integration and interoperability. The result, says Wurldtech, is complexity, high running costs, limited visibility and reliance on inappropriate data when making critical security decisions.

For most industrial organisations, Wurldtech contends, the outcome is an insecure network infrastructure, incomplete regulatory compliance, security audit failures and increased security management costs.

"We understand the unique security challenges facing the industrial automation industry today, particularly when attempting to address the issue of securing legacy industrial control systems," says Wurldtech’s president and chief executive, Tyler Williams. Delphi, he says, will help users to "identify real risks and make better-informed decisions to protect their industrial operations."