From bv at bnl.gov Thu Jan 11 15:53:46 2007 From: bv at bnl.gov (Brett Viren) Date: Thu, 11 Jan 2007 15:53:46 -0500 Subject: [Computer-liaisons] [Csac-l] Linux Working Group List Server In-Reply-To: <85FA28559CB0734FA6AABF430740D7A5FA84DD@exchangemb2.bnl.gov> (Lisa Soto's message of "Thu, 11 Jan 2007 15:45:22 -0500") References: <85FA28559CB0734FA6AABF430740D7A5FA84DD@exchangemb2.bnl.gov> Message-ID: Hi, Please make sure anyone in your group who is interested in the state unix systems at the lab is signed up to the linux-working-group-l mailing list. There may be significant changes in how unix systems are maintained at BNL and we need all knowledgeable people involved. Thanks, -Brett. "Soto, Lisa" writes: > Hello, > > As was mentioned at the last CSAC meeting, we're going to be reviving > the linux-working-group-l at lists.bnl.gov list serve for discussion of the > Unix/Linux Centralization project. > > If you're not on that list, or want to refer a colleague, subscription > is available here: > > http://lists.bnl.gov/mailman/listinfo/linux-working-group-l > > Thanks, > Lisa > -- > Lisa Soto > lsoto at bnl.gov > ITD Unix Services, Supervisor > (631) 344-2009 > _______________________________________________ > Csac-l mailing list > Csac-l at lists.bnl.gov > http://lists.bnl.gov/mailman/listinfo/csac-l From bv at bnl.gov Fri Jan 19 11:03:11 2007 From: bv at bnl.gov (Brett Viren) Date: Fri, 19 Jan 2007 11:03:11 -0500 Subject: [Computer-liaisons] [Csac-l] FW: A Workshop on Control System Cyber-Security at the ICALEPCS 2007 In-Reply-To: (Thomas Schlagel's message of "Fri, 19 Jan 2007 10:39:53 -0500") References: Message-ID: Contact Tom if you are interested in the workshop described below. Apologies to those who have already gotten this. -Brett. "Schlagel, Thomas" writes: > If you have an interest in attending this workshop in October, please > let me know so I can pass along the number of people interested to > Stefan. > > -----Original Message----- > From: Stefan Lueders [mailto:Stefan.Lueders at cern.ch] > Sent: Friday, January 19, 2007 5:03 AM > To: Stefan Lueders > Subject: A Workshop on Control System Cyber-Security at the ICALEPCS > 2007 > > > Initiative for a Workshop on Control System Cyber-Security in High > Energy Physics (CS)2/HEP > > The enormous growth of the worldwide "Internet" during the last decade > offers computer users new means to share and distribute information and > data. The high energy physics community has partially driven the success > of the Internet. > > Today, modern Information Technologies (IT) are commonly used in > accelerator and experiment control systems. Accelerator and detector > control system are based more and more on common-of-the-shelf > hardware/software (VME crates, PLCs, VxWorks, LynxOS) or Windows/Linux > PCs. Even customized hardware often comes with Ethernet adapters. This > world-wide interconnectivity allows access to all this equipment > remotely from the office, from home or from remote universities and > institutes. > > Unfortunately, the adoption of modern IT standards by control systems > also exposes the inherent vulnerabilities of the corresponding hardware > to the world. This world is by far more hostile then a local private > controls network as the number and power of worms and viruses increases > and hackers start to become interested in control systems. Furthermore, > control PCs can not be patched as fast as office PCs. Even worse, > vulnerability scans at CERN have shown that common-off-the-shelf > automation systems often lack even fundamental security protection > measures. > > The (CS)2/HEP workshop is intended to present, share and discuss > counter-measures deployed in high energy physics laboratories in order > to secure control systems. It will take place directly before or after > the ICALEPCS conference to be held October 15-19, 2007 in Knoxville > (Tennessee), USA. > > Potential Keywords and topics are: > * Security, vulnerabilities and protective measures of front end > devices (e.g. VME crates, LynxOS, VxWorks, PLCs) > * Control network security, network architectures, network > segregation, firewalling and intrusion detection > * SCADA security, PC installation and management schemes > * Secure ("Kiosk") operation in multi-user environements (e.g. at > light-sources, where users change quite frequently) > * Authentication & Authorization of control systems > * Remote operations and expert interventions > * Security policies and best practices > > However, before I start the official planning and announcement for this > workshop, I would like to have your opinion on the follow: > > * Would you attend ? > * How many of your collegues do you think might join ? > * Would you be willing to present the initiatives of your laboratory > ? > * Can you propose contacts in other laboratories who might be > interested to participate ? > > Thank you very much for your help. > > Yours Stefan Lueders > > ---------- European Organization for Nuclear Research ---------- Dr. > Stefan Lueders Detector Safety & Security > CERN IT Controls Group Office +41 22 767 4841 > Building 14, Room 3-021, PostBox F20400 Mobile +41 76 487 0207 > CH-1211 Geneva 23 Fax +41 22 766 9703 > ---------------------------------------------------------------- > > _______________________________________________ > Csac-l mailing list > Csac-l at lists.bnl.gov > http://lists.bnl.gov/mailman/listinfo/csac-l