by Gary Mintchell | Jul 25, 2019 | Commentary, News, Security
The International Society of Automation (ISA) held a press conference today to announce the first Founding Members of its new Global Cybersecurity Alliance (GCA): Schneider Electric, Rockwell Automation, Honeywell, Johnson Controls, Claroty, and Nozomi Networks.
As we would expect, the speakers emphasized the importance of standards as the foundation for work in the Alliance. Speakers also tied in safety and productivity as partners with cybersecurity in protecting and improving manufacturing and critical infrastructure facilities and processes. I’m not so sure just exactly what the Alliance will accomplish, but if it succeeds in just raising awareness and a sense of urgency among companies it the industries, it will have accomplished an important task.
ISA created the Global Cybersecurity Alliance to advance cybersecurity readiness and awareness in manufacturing and critical infrastructure facilities and processes. The Alliance brings end-user companies, automation and control systems providers, IT infrastructure providers, services providers, and system integrators and other cybersecurity stakeholder organizations together to proactively address growing threats.
ISA is the developer of the ANSI/ISA 62443 series of automation and control systems cybersecurity standards, which have been adopted by the International Electrotechnical Commission as IEC 62443 and endorsed by the United Nations. The standards define requirements and procedures for implementing electronically secure automation and industrial control systems and security practices and assessing electronic security performance. The standards approach the cybersecurity challenge in a holistic way, bridging the gap between operations and information technology.
Leveraging the ISA/IEC 62443 standards, the Global Cybersecurity Alliance will work to increase awareness and expertise, openly share knowledge and information, and develop best practice tools to help companies navigate the entire lifecycle of cybersecurity protection. The Alliance will work closely with government agencies, regulatory bodies, and stakeholder organizations around the world.
“Accelerating and expanding globally relevant standards, certification, and education programs will increase workforce competence, and help end users identify gaps, reduce risks, and ensure they have the tools and systems they need to protect their facilities and installations,” said Mary Ramsey, ISA Executive Director. “Through the proliferation of standards and compliance programs, we will strengthen our global cyber culture and transform the way industry identifies and manages cybersecurity threats and vulnerabilities to their operations.”
The press release notes that first Founding Members of the Alliance are leading multi-national, industrial-technology providers with deep expertise in technology and applications, and they’ll apply their experience and knowledge to accomplish the Alliance’s priorities. However, two of the members were represented by building automation divisions. Two of the members are cybersecurity suppliers. Rockwell Automation is a pure play factory and process automation company and its Maverick Technologies division has been an ardent supporter of ISA. Schneider Electric is a large, multi-disciplined company, and I’m not sure which division within it is the sponsor.
“Participating in the Alliance truly shows the commitment our founding members have to the safety and security of the industrial ecosystem, as well as the criticality of collectively moving forward together to ensure the standards, best practices and methods are applied,” Ramsey said.
“ISA engaged with discussions, initiated by Schneider Electric, to create an ISA-led global, open and industry-wide alliance comprised of all cybersecurity stakeholder companies. ISA quickly expanded those conversations to include Rockwell Automation, Honeywell, Johnson Controls, Claroty, and Nozomi Networks. These first Founding Members have since worked together to help us define the Alliance’s objectives. We are thankful for their collaboration and commitment. Together we welcome companies and organizations from all segments of industry to join our efforts.”
The Alliance is seeking additional members to support its initiatives. End-user companies, asset owners, automation and control systems providers, IT infrastructure providers, services providers, and system integrators and other cybersecurity stakeholder organizations are invited to join. Annual contributions to fund initiatives are based on company revenues and are tax-deductible.
Perspectives: Quotes from the ISA Global Cybersecurity Alliance Founding Members
“Over the last few years, global industry has recognized that taking on increasingly dangerous cyber risks can’t be limited to a single company, segment, or region. However, until now, there has been limited ability to respond as a unified whole to these worldwide threats. But by establishing an open, collaborative, and transparent body, with a focus on strengthening people, processes, and technology, we can drive true cultural change. We are pleased that ISA has stepped forward, and we look forward to working openly and collaboratively with them, our fellow Founding Members, and many others affiliated with global industry, especially end users. Together we will bring to bear the standards-based technology, expertise, and special skills required to better secure and protect the world’s most critical operations and the people and communities we serve.” — Klaus Jaeckle, Chief Product Security Officer, Schneider Electric
“Cybersecurity is critical to digital transformation. It’s critical not only for the protection of information and intellectual property, but also for the protection of physical assets, the environment, and worker safety. We make it a priority to collaborate with partners and research institutions to develop secure products. Rockwell Automation participated in the development of the 62443 standards from the beginning and continues to support ISA cybersecurity initiatives. Our engagement with the Global Cybersecurity Alliance will be another important step in our efforts to help customers identify and mitigate risks.” — Blake Moret, CEO, Rockwell Automation
“Cybersecurity is the great equalizer to all companies. It’s critical to the connected world we live in and the cornerstone of trust that the world needs to be able to operate. Whether protecting critical infrastructure or managing a building’s operations, users need to do this with the confidence the employed systems are robust and secure. We are committed to and proud to work together ISA and the GCA members to continue to drive the adoption of the ISA/IEC 62443 series of standards and identify further ways to secure and protect the connected world which we live. At Honeywell, we see cybersecurity as a core part of the future we are making, and we see the GCA as an important way to work together to make that happen.” — Matthew Bohne, Vice President and Chief of Product Security, Honeywell Building Technologies
“Digital transformation in the building sector continues to accelerate, which heightens the urgency for cybersecurity across the industry and beyond. As a leader in the industrial automation controls business, Johnson Controls is already a strategic member of the ISASecure program and is consistently taking proactive actions to protect customers against cyber-threats and risks. Joining ISA Global Cybersecurity Alliance is a necessary and meaningful step as it supports our company values, customer adoption of the ISA/IEC 62443 standard and efforts to educate global government and regulatory bodies. We are proud to solidify our commitment to this important effort.” — Jason Christman, Vice President, Chief Product Security Officer, Global Products, Johnson Controls
“One of the most effective ways to drive consistency in an industry is by putting standards in place, and we’re looking forward to collaborating with all of these founding members, as well as future Alliance members, to help drive global best-practices forward in this historically standard-less environment. Claroty is committed to the mission of protecting all IoT and OT networks from cyber risks. Through our work with the Global Cybersecurity Alliance, we will be able to help shape the future of cybersecurity in these high-risk industries.” — Dave Weinstein, Chief Security Officer, Claroty
“Nozomi Networks believes real community collaboration, actionable standards and effective education are key ensuring a secure future for industrial organizations around the world. That’s why we are helping develop secure-by-design standards as a working member of ISA99 standards committees, why we’ve designed our industrial cyber security solutions for easy integration across the broadest possible set of industrial and IT technologies; and why we are thrilled to help establish the Global Cybersecurity Alliance. Together we will build a secure future for the industrial infrastructure that runs the world.” — Andrea Carcano, Nozomi Networks Co-founder and Chief Product Officer
by Gary Mintchell | Jun 28, 2019 | Automation, News, Security
Industrial Automation. I guess sometimes it’s good and sometimes not. Tesla had difficulty ramping up production on its low-end vehicle. Elon Musk blamed automation for his problems. Well maybe it was vaguely automation. But maybe they tried automating too much, or they automated things they shouldn’t have. Maybe Rockwell Automation now has a place he can drive to to learn more about automating production.
While I was traveling, Rockwell Automation released some news. I had to seek clarification on some. Here are two interesting items.
The first piece of news concerned Rockwell Automation opening an 8,000 square-foot Electric Vehicle (EV) Innovation Center at 111 North Market Street in San Jose, California, within its Information Solutions development facility. The center will provide live manufacturing demonstrations, hands-on trials utilizing new technology and events showcasing collaboration with industry experts and Rockwell Automation partners.
Upon first glance I thought maybe it was getting into the EV business. Actually it is bringing its experience and products from “Detroit” building cars to Silicon Valley building cars—just with different power trains.
Utilizing augmented and virtual reality modeling, the EV Innovation Center provides automotive start-ups and established manufacturers an environment to learn new technologies and standards, enabling them to deliver electric vehicles to market faster, with less risk and at lower cost.
The Center features not only traditional Rockwell products, but also features partners such as its FactoryTalk InnovationSuite powered by PTC, Eagle Technologies’ battery pack assembly machine, and FANUC robot technologies.
Other partners featured include Hirata, a turnkey assembly line builder, provides an assembly cell that demonstrates electric drive unit assembly and testing; Emulate 3D, Rockwell Automation’s simulation software, helps to prototype and test machines before they’re built; teamtechnik performs functional testing to confirm performance before building the drive into the electric vehicle.
“With growing global consumer demand, electric vehicle companies are challenged to meet aggressive production timelines,” said John Kacsur, vice president, Automotive and Tire Industries, Rockwell Automation. “We established the Electric Vehicle Innovation Center to expand their possibilities and get their products to consumers quickly and at the lowest possible cost, while operating more efficiently.
The second Rockwell news concerns its partner Claroty and cybersecurity services. To help prevent incidents and combat the unpredictable threats that cause them, industrial companies around the world can now manage cyber risk in their operations using the Rockwell Automation Threat Detection Services powered by the Claroty threat detection platform.
“A scary aspect of security threats is what you don’t know about them – what techniques they’ll use, what attack vector they’ll leverage, what vulnerabilities they’ll exploit,” said Umair Masud, manager security services portfolio, Rockwell Automation. “Our Threat Detection Services combine our innate understanding of industrial automation with Claroty’s trusted OT network visibility. The services can give companies peace of mind by protecting not only one facility but their entire supply chain from unpredictable threats.”
The Threat Detection Services help safeguard connected operations in three key ways:
- Identify and Protect: Identifying all industrial control networked assets, and their vulnerabilities, to help companies know what to protect
- Detect: Monitoring networks for not only known threats but, more importantly, anomalous traffic or behaviors to alert companies of a security incident – possibly before it even happens
- Response and Recovery: Developing plans for containing, eradicating and recovering from attacks to keep operations running or more quickly return to a fully operational state
The Claroty threat detection platform creates an inventory of a user’s industrial network assets, monitors traffic between them and analyzes communications at their deepest level. Detected anomalies are reported to plant and security personnel with actionable insights.
“The Claroty platform, used within the Threat Detection Services, can accelerate a company’s journey to more connected and digitally driven operations,” said Amir Zilberstein, co-founder and CEO, Claroty. “Most critically, the platform can help companies detect and quickly respond to threats that bypass their security controls. But it can also give companies a deeper understanding of their industrial assets and improve their ability to keep operations running.”
by Gary Mintchell | Jun 11, 2019 | Automation, Events, Manufacturing IT, News, Process Control
My wife’s family took me off for a week-long vacation to the beach last week. Eight days of much needed rest after a bunch of travel and a hectic (meaning wet) spring soccer season.
Last week was also Rockwell Automation TechED. That conference was once open only to distributer and integrator tech people. Several years ago it opened to media and became quite a thing for a few years. Last year I received an invitation to attend but they said that there was no media program. The timing was bad for me, so I passed. This year, there was no word at all. And I saw no news.
There are several industrial automation user conferences this week. PTC invited me to its conference in Boston. Then I was invited to Honeywell User Group (HUG). Then there were other invitations. Busy week. I initially told PTC I would attend, then putting it in my calendar, I realized that the week included my wedding anniversary. It’s big number (as in large). My better sense prevailed and I’m watching both of those conferences from afar.
So far this week, Honeywell Process Solutions has made a big announcement with some innovative product releases. Rockwell Automation, which owns about 8% of PTC and is banking on the partnership to bring its software into the new age, also issued a release. I’m still figuring that one out.
Honeywell Proclaims New Approach to Engineering
• Experion PKS Highly Integrated Virtual Environment (HIVE) significantly simplifies control system design, implementation and lifecycle management while reducing cost
• Market-first solution uniquely decouples the assignment of input/output (IO) modules and control strategies from specific controllers, and leverages IT capabilities in customers’ own data centers
My take on this announcement considers the HIVE product suite part of the growing trend under the umbrella of “digital twin.” Other companies have some somewhat similar products, but what I’ve found is that each company moves the ball forward a little more in a seemingly endless cycle of innovation. Honeywell labels it an evolution of the company’s flagship Experion Process Knowledge System (PKS).
Experion PKS HIVE uses Honeywell’s LEAP project execution principles, software, and networking to unchain control applications from physical equipment, and controllers from physical IO. This enables control systems to be engineered and implemented in less time, at lower cost and risk, and with simpler, modular builds. The solution also transforms the way control systems are maintained over their lifecycle, shifting day-to-day management of servers to a centralized data center, where experts and established protocols mitigate cybersecurity risk, allowing plant engineers to focus more proactively on optimization of their control systems.
Experion PKS HIVE incorporates three elements – IT HIVE, IO HIVE and Control HIVE – which can be used individually or collectively, in tandem with customers’ existing systems and infrastructure:
• Experion PKS IT HIVE centralizes up to 80% of the IT infrastructure traditionally used in project engineering to lower project delivery and lifecycle costs, better leverage skills, and drive consistent physical and cybersecurity management across an enterprise.
• Experion PKS IO HIVE provides flexible IO and control distribution enabling the control system to become a natural extension of process equipment and to facilitate modular and parallel project execution.
• Experion PKS Control HIVE uniquely applies control containers to provide flexibility and standardization of control hardware platform, control location, and control engineering. With multiple physically controllers operating as part of a Experion PKS Control HIVE, control engineering is dramatically simplified through automated load balancing.
“In developing Experion PKS HIVE, Honeywell worked closely with customers across the chemical, refining and oil and gas industries,” said Jason Urso, chief technology officer, Honeywell Process Solutions. “Many of these organizations want a more efficient approach to control system engineering, yet one that can be adopted incrementally and used interchangeably with their existing systems and infrastructure. Experion PKS HIVE provides these benefits and is truly a distributed control as it applies and geographically distributes technology to where it is needed.”
Experion PKS HIVE shifts IO to the field and makes it fully accessible to any controller, taking individual physical controllers and distributing the load so that they appear as a single controller to eliminate complexity. The solution distributes IT compute from onsite to offsite providing a seamless operations experience.
The Experion PKS IT HIVE and IO HIVE can be ordered now, with deliveries beginning Q1 2020. Experion PKS Control HIVE will be available in the second half of 2020.
Rockwell Automation Emphasizes PTC Partnership
Rockwell Automation announces its “unique combination of IT and OT software accelerates customers’ Digital Transformation Initiatives.” It says its solutions-oriented approach simplifies how manufacturers achieve business outcomes that transform operational processes, workforce productivity and efficiency.
Showcasing solutions during LiveWorx this week the company highlights:
Enterprise Operational Intelligence – cuts manufacturing costs and increases flexibility and agility of manufacturing networks by providing real-time manufacturing performance management across the industrial enterprise.
Digital Workforce Productivity – heightens productivity, improves quality, and avoids safety and compliance risk by equipping workers with actionable, augmented intelligence.
Intelligent Asset Optimization – reduces downtime and maximizes asset utilization through real-time monitoring, diagnostics, and predictive and prescriptive analytics into asset capacity, performance, and health status.
Scalable Production Management – lowers cost of inventory, improves quality, and compliance and accelerates time to market with effective planning and control of production processes.
by Gary Mintchell | May 30, 2019 | Manufacturing IT, News, Security
Cyber Security got a shout-out during the Siemens Spotlight on Innovation forum in Orlando last week. Leo Simonovich, VP and Global Head, Industrial Cyber and Digital Security at Siemens Gas and Power, and Mike Wiacek, co-founder & CSO of Chronicle (an Alphabet company) took the stage discussing their newly signed cyber security agreement.
Key phrase—“customers can own their environment”. Perhaps the most interesting conversation I had during the networking event was with a Chronicle tech person who gave me a deep dive into the product. This is security unlike everything else I investigate in the OT realm. This isn’t a network monitoring app. Nor is it a device that acts as a firewall for industrial control devices. It builds a huge database and adds analytics (which is “in our DNA”). The solution has two parts—visibility and context. It bridges IT and OT worlds with the intent to “democratize security for the success of the digital economy”; that is, make it accessible to customers, simple, affordable, easy-to-use.
Through a unified approach that will leverage Chronicle’s Backstory platform and Siemens’ strength in industrial cyber security, the combined offering gives energy customers unparalleled visibility across information technology (IT) and operational technology (OT) to provide operational insights and confidentially act on threats.
The energy industry has historically been unable to centrally apply analytics to process data streams, cost-effectively store and secure data, and identify malicious threats within OT systems. Research conducted by Siemens and Ponemon Institute found that while 60 percent of energy companies want to leverage analytics, only 20 percent are utilizing any analytics to do security monitoring in the OT environment. Small and medium enterprises are particularly vulnerable to security breaches as they frequently do not have the internal expertise to manage and address increasingly sophisticated attacks.
“The innovative partnership between Siemens and Chronicle demonstrates a new frontier in applying the power of security analytics to critical infrastructure that is increasingly dependent on digital technology,” said Simonovich. “Cyber-attacks targeting energy companies have reached unprecedented speeds, and our cutting-edge managed service unlocks the analytics ecosystem offers a new level of protection from potential operational, business and safety losses.”
“Energy infrastructure is an obvious example of cyber-attacks affecting the physical world and directly impacting people’s lives,” said Ansh Patnaik, Chief Product Officer, Chronicle. “Backstory’s security telemetry processing capabilities, combined with Siemens’ deep expertise, gives customers new options for protecting their operations.”
The partnership between Siemens and Chronicle will help energy companies securely and cost-effectively leverage the cloud to store and categorize data, while applying analytics, artificial intelligence, and machine learning to OT systems that can identify patterns, anomalies, and cyber threats. Chronicle’s Backstory, a global security telemetry platform for investigation and threat hunting, will be the backbone of Siemens managed service for industrial cyber monitoring, including in both hybrid and cloud environments. This combined solution enables security across the industry’s operating environment – from energy exploration and extraction to power generation and delivery.
by Gary Mintchell | Nov 26, 2018 | Internet of Things, Organizations, Security
Digitalization breeds the need for data and connected devices. Trusted connections and data are required for success. Siemens invited a diverse group of press, analysts, podcasters, and bloggers to Munich this week (November 26-28) to discuss cybersecurity and the Charter of Trust.
I will use the words of Siemens below to discuss the rationale for the Charter of Trust. However the idea is that if users cannot trust their data and connections, they will never go further into digitalization and therefore not realize the anticipated benefits.
Some of the analysts and others in the conference had trouble understanding how something seemingly vague and not specifically standards-based would work. I think they missed the point. First, standards are good, but they take a long time to develop. What was needed was not another new standard. What is needed is for many companies to agree to a set of principles and then commonly work toward them for the mutual benefit of the industry, users, and society.
Eva Schulz-Kamm, Global Head of Government Affairs at Siemens AG, and Rainer Zahner, Global Head of Cybersecurity Governance at Siemens told us the digital world is changing everything. Billions of devices are connected by the Internet of things. That holds great potential for everyone, but also great risk. The risk of exposure to cyber-attacks. The risk of losing control over the systems that run our infrastructures. Cybersecurity is therefore crucial to the success of our digital economy – because only if the security of data and networked systems is guaranteed will people actively support the digital transformation. Then explained why Siemens has initiated the Charter of Trust.
Siemens’ 171 years of experience have also shown that the best way to make a lasting difference isn’t as one company, but as an industry – not only as one nation, but as part of a global community. In modern history, competitor businesses have forged standards together that have carried the world from one industrial revolution to the next – including the unfolding digital transformation of industry. Countries without clear-cut geopolitical alliances have come together to forge cross-border agreements that grow trade and advance peace.
It’s in this spirit that Siemens launched the Charter of Trust earlier this year at the at the Munich Security Conference, a longstanding forum for business and government leaders to discuss geopolitical issues. Since then, several more global companies saw the value of the Charter of Trust, and signed on. These companies committed to create the first-of-its-kind global alliance focused on answering a very important question: How do we secure critical infrastructure – from our factories to our power grids – in the digital age?
We also are carrying an important message together: that when we talk about security today, it isn’t just about diplomacy and resolving military conflicts – it is increasingly about cyber attacks that seek to undermine our democratic and economic values.
The Charter of Trust then begins with these three goals:
- protecting the data and assets of individuals and businesses;
- preventing damage to people, businesses, and infrastructures;
- building a reliable basis for trust in a connected and digital world.
“We know at the outset that a one-size fits all approach won’t work. We have instead agreed to 10 principles – from ensuring the highest levels of responsibility for cybersecurity within every company, to securing supply chains, products, and working with governments. Together, we will develop and continuously improve coordinated strategies and shared standards to protect critical infrastructures, public facilities and private companies.”
Charter of Trust members: The AES Corporation, Airbus, Allianz, Atos, Cisco, Dell Technologies, Enel, IBM, Munich Security Conference, NXP Semiconductors, SGS,. Deutsche Telekom, Total and TÜV SÜD.
