JUL-AUG 2019

Issue link:

Contents of this Issue


Page 8 of 53

INTECH JULY/AUGUST 2019 9 are still unsure of what to do and why. The prevailing approach in industrial cyberse- curity focuses on network devices such as computers, Level 3 switches, and firewalls instead of on the processes and machines that could be damaged or cause damage if control is lost," he says. By analyzing the cause of and safe- guards for cybersecurity weaknesses, it is T oday's industrial automation and con- trol systems deliver much-improved performance and features compared to their analog counterparts, but also come with more vulnerability to cyber- attack. Security PHA Review for Conse- quence-Based Cybersecurity is a new book published by ISA that provides an easy- to-follow, cost-effective methodology for safeguarding critical infrastructure and process industry facilities from cyberwar- fare and other forms of cyberrisks. The book illustrates how a security pro cess hazards analysis (PHA) review identifies hackable scenarios, ranks them appropriately, and pinpoints nonhackable safeguards, such as relief valves and cur- rent overload relays, that are not vulnerable to cybersecurity threats. It was written by Edward Marszal, PE, and James McGlone, two globally recognized experts in process safety, industrial cybersecurity, and the ISA/ IEC 62443 series of industrial automation and control systems security standards. McGlone says he and his co-author were prompted to write the book because "industry and cybersecurity practitioners T he best and brightest minds in the process industries will return to Houston this fall to present solutions to the most pressing challenges in energy processing and pro - cess manufacturing. ISA's 2019 Process Industry Conference will be held 4–6 November at The Westin Houston Memorial City. It is designed for engineers, automation professionals, business owners, and others in the midstream and downstream sectors of the oil, gas, and chemical industries. This year's event has been expanded to deliver more comprehen- sive technical content and best-practice advances, particularly in the areas of instrumentation/control; cybersecurity and safety systems; open architecture and infrastructure; and operational improvement. ISA is proud to have representatives from the following orga- nizations participating as part of this year's event. Each entity will New ISA book identifies 'hackable scenarios' to protect against industrial cyberattack Process Industry Conference focuses on oil, gas, chemical company challenges possible to determine consequences, says McGlone. "Any consequence that is not protected by existing safeguards or that can be caused by a cybersecurity attack is assigned an ISA/IEC 62443-based security level target to be implemented, or it is as signed an alternative safeguard or rede- sign to eliminate all or some of the cyber- security risk," he explains. Focusing on hazard and operability study designated scenarios, it is possible to iden- tify hackable scenarios, rank them appropri- ately, and design nonhackable safeguards, such as relief valves and current overload relays that are not vulnerable to the cyber- security threat vector. "Where inherently secure safeguard design is not feasible, the appropriate cybersecurity countermeasures must be deployed," says McGlone. The modifications or redesign may in- volve choosing a different type of tech- nology to remove the cyberattack vulner- ability. In many cases, the fix involves "a device with a spring or gear instead of a microprocessor," he adds. For more infor - mation or to order the book, visit www. n News from the Field | automation update be providing sessions and subject-matter experts unique to their missions: • The Society for Underwater Technology ( • The Open Process Automation Forum ( • The Center for Operator Performance (www.operatorperfor- Early bird registration discounts and special hotel rates are avail- able. To register or find out more information, visit the conference website, n

Articles in this issue

Links on this page

Archives of this issue

view archives of InTech - JUL-AUG 2019