& cplSiteName &

A Critical Time for Critical Infrastructure

Dan O'Shea
8/13/2015
100%
0%

What's a lifeline service? In the telecom industry, we used to say landline voice was such a service, but that's certainly no longer the case. Mobile or broadband Internet? To many people, those services seem like lifelines.

What about electricity, nuclear power, other forms of energy like oil and gas? Or transportation systems -- highways, railways and airline networks? And don't forget public safety -- everything from the local first responders to national homeland security and border management. There's little argument that all of the above are lifeline services as much as any telecom service is.

Yet, despite the extreme importance of these services, some of the world's critical infrastructure for enabling these lifeline services could be at risk for potentially devastating cyber security attacks. We aren't necessarily talking about hacker schemes targeting the IT systems of the companies operating this infrastructure the way Target and Sony have suffered embarrassing breaches.

That's an issue, but even more concerning is the possibility of highly organized, malicious attacks intended to disable the operational technology (OT) frameworks -- communications infrastructure, supervisory control and data acquisition (SCADA) systems, industrial control devices, sensors and other gear -- of critical infrastructure operators.

If you don't think it's happened before consider that around the time of last year's Sony hack, there was a much less publicized cyberattack on a nuclear power plant in South Korea. The famed Stuxnet virus, which affected nuclear power plants in Iran and Russia (never mind for this discussion who perpetrated it) is another recent example.


Want to know more about critical infrastructure? Light Reading has a new critical infrastructure section dedicated to it. Check it out.


The threat affects every society on the planet, regardless of how secure you are with your own nation's place in the pecking order of global affairs, or how confident you are in your company's ability to protect its own infrastructure.

A recent report from Intel Security and the Aspen Homeland Security Program suggests that operators of critical infrastructure might be over-confident in their ability to defend against attacks and misunderstand the scale of the current threat environment.

In North America, this encroaching reality is one of the driving forces behind the North American Electric Reliability Corporation's (NERC) Critical Infrastructure Protection requirements. NERC CIP Version 5, which calls for utilities of all sizes to meet new cyber security protection requirements and has a compliance deadline of April 2016, less than nine months away.

All of this goes a long way to explain why Light Reading has recently started covering the critical infrastructure market. It's a sector approaching a critical juncture. (Sorry to overuse the "c" word, but it's more than apt.)

Many operators of critical infrastructure traditionally have a conservative attitude about spending on new technology, according to vendors that have worked with them. Even when given an end-of-life notice on a piece of equipment, they sometimes spend more time stocking up on spares and replacements than they do planning upgrades to the latest and greatest gear.

The drive to meet the NERC CIP v.5 requirements looks a lot like a turning point in the spending and upgrade practices of critical infrastructure operators. The rapid evolution of cyber security threats means they need to invest in their OT networks.

Along with the implementation of cyber security solutions, many of them are in a position to replace or modify traditional SCADA frameworks with with IP-based and mobile M2M connectivity. That's good news for many technology suppliers -- not only the GEs of the world, as you might imagine, but also an increasing number of traditional telecom vendors than have recognized the critical infrastructure market opportunity.

This period of critical infrastructure upgrades promises to be an interesting, exciting and possibly contentious time. Companies that don’t meet the NERC CIP v.5 requirements on time could face stiff fines. The clock is ticking -- toward next year's NERC deadline for sure -- but also potentially toward a growing cyber security threat that will be hard to stop with antiquated attitudes and technologies.

— Dan O'Shea, Managing Editor, Light Reading

(3)  | 
Comment  | 
Print  | 
Newest First  |  Oldest First  |  Threaded View        ADD A COMMENT
ChiefOpe74834
50%
50%
ChiefOpe74834,
User Rank: Light Beer
9/2/2015 | 5:49:07 PM
Critical Infrustructure requires physical security
This is a good article with relevant points.  But the issue of security is not limited to just cyber.  Without a real emphasis on technologically advanced methods to protect the physical aspects of infrastructure, there won't be any reason for concern with the cyber portion.  I just recently wrote an opinion on this in LinkedIn Pulse.
danielcawrey
50%
50%
danielcawrey,
User Rank: Light Sabre
8/15/2015 | 12:28:14 PM
Re: critical infrastructure
In the United States, I think the patchwork of electricity providers is probably the scariest critical infrastructure issue that exists today. 

There are so many power utilities comprising both public and private. Some power providers are huge Fortune 500 companies. Others are small municipalities. All of these organizations must focus on keeping infrastructure safe, and it's not an easy thing to do. 
Steve Saunders
50%
50%
Steve Saunders,
User Rank: Blogger
8/14/2015 | 9:18:21 AM
critical infrastructure
Great article. 

who are the key players in this market? 
More Blogs from DOS Attack
Ciena and ADVA separately show off the ability for their new data center interconnect gear to address a variety of distance needs.
The utility industry is keeping TDM alive, but maybe not for much longer.
Vendor CEOs make a lot of money, but we have a list of those who made more than most.
Mike Birck guided Tellabs for more than 30 years over a span of five decades.
Featured Video
From The Founder
Light Reading is spending much of this year digging into the details of how automation technology will impact the comms market, but let's take a moment to also look at how automation is set to overturn the current world order by the middle of the century.
Flash Poll
Upcoming Live Events
November 30, 2017, The Westin Times Square
March 20-22, 2018, Denver Marriott Tech Center
May 14-17, 2018, Austin Convention Center
All Upcoming Live Events
Infographics
SmartNICs aren't just about achieving scale. They also have a major impact in reducing CAPEX and OPEX requirements.
Hot Topics
Nokia Bell Labs & Verizon Stretch Fixed 5G to the Home
Dan Jones, Mobile Editor, 11/13/2017
Juniper's New Contrail VP Hails From Google
Craig Matsumoto, Editor-in-Chief, Light Reading, 11/15/2017
Eurobites: Telefónica Reckons Plastic Is Fantastic for FTTH
Paul Rainford, Assistant Editor, Europe, 11/15/2017
Animals with Phones
Why Cats Don't Run Tech Support Click Here
Live Digital Audio

Understanding the full experience of women in technology requires starting at the collegiate level (or sooner) and studying the technologies women are involved with, company cultures they're part of and personal experiences of individuals.

During this WiC radio show, we will talk with Nicole Engelbert, the director of Research & Analysis for Ovum Technology and a 23-year telecom industry veteran, about her experiences and perspectives on women in tech. Engelbert covers infrastructure, applications and industries for Ovum, but she is also involved in the research firm's higher education team and has helped colleges and universities globally leverage technology as a strategy for improving recruitment, retention and graduation performance.

She will share her unique insight into the collegiate level, where women pursuing engineering and STEM-related degrees is dwindling. Engelbert will also reveal new, original Ovum research on the topics of artificial intelligence, the Internet of Things, security and augmented reality, as well as discuss what each of those technologies might mean for women in our field. As always, we'll also leave plenty of time to answer all your questions live on the air and chat board.

Like Us on Facebook
Twitter Feed
Partner Perspectives - content from our sponsors
The Mobile Broadband Road Ahead
By Kevin Taylor, for Huawei
All Partner Perspectives