MESA Programs

Thursday, January 30, 2020

Common Myths Hamper Progress on Industrial Cybersecurity

Eric C. Cosman, MESA Cybersecurity Working Group Chairman 

Just as with other initiatives directed at preventing negative consequences, efforts to reduce or mitigate cybersecurity risks often have to counter beliefs or perceptions that may be inaccurate or incorrect. Analysts and industry observers have identified several common “myths” and provided arguments to counter these beliefs. While many of these myths were originally highlighted in the context of general purpose of business systems cybersecurity, they often apply equally to industrial systems.

Members of the MESA cybersecurity working group have discussed many of these myths and shared experiences and observations that can be used to counter them. The group has decided to share this information with MESA members in hopes that it can be used in describing the imperative for an effective response in the form of a comprehensive cybersecurity management system. Group members will address several common myths in separate blog posts over the following weeks and months. These include:
  • We are safe because we are not connected to the Internet.
  • Our firewalls protect us.
  • Hackers do not understand industrial systems.
  • We are an unlikely target for attack.
  • Safety backup system will protect us.
We welcome questions, observations, counter arguments or other comments as we conduct this dialog.

Citations

The following sources were used to identify topics to be addressed in this series:
  1. DarkReading: 8 Cybersecurity Myths Debunked (https://www.darkreading.com/vulnerabilities---threats/8-cybersecurity-myths-debunked/a/d-id/1333746)
  2. Cybersecurity Magazine: The Top 5 Cybersecurity Myths That Need to Die (https://www.uscybersecurity.net/cybersecurity-myths/)
  3. Cybint Solutions: 10 Cybersecurity Myths You Need to Stop Believing (https://www.cybintsolutions.com/10-cybersecurity-myths-you-need-to-stop-believing/)
  4. Forbes: These Are 10 Cybersecurity Myths That Must Be Busted (https://www.forbes.com/sites/williamsaito/2017/04/04/these-are-10-cybersecurity-myths-that-must-be-busted/#5b4cd56b66ea)
  5. Gartner: Cybersecurity Myths of the Industrial IoT (https://www.gartner.com/smarterwithgartner/cybersecurity-myths-of-the-industrial-iot/)
  6. Abisham: Industrial Cybersecurity Top Myths Busted (https://abhisam.com/downloads/white-papers/industrial-cybersecurity-top-5-myths-busted/)

About the Author
Eric C. Cosman
Principal Consultant
OIT Concepts LLC


at No comments:

Wednesday, January 8, 2020

Smart Manufacturing Update from the MESA Community Feud


Conrad Leiva, MESA International, Smart Manufacturing WG Chairman

MESA had a recent web event focused on Smart Manufacturing with a game show type of format and an opportunity for the audience to participate through polls. The Smart Manufacturing Community Feud was initially inspired on the Family Feud game show, but the idea was modified to an interactive format with the webcast viewers.

I came out of the experience with the following observations based on the responses from peers in the community. These echoed many of the opinions we have received at workshops and regular calls with the MESA Smart Manufacturing Community members.  
  • There is still a big percentage of manufacturers that have not fully embraced the Smart Manufacturing journey, but the industry leaders are starting to share their success stories and initiatives are becoming more prevalent.
  • However, over half of the companies polled reported a mismatch between their Smart Manufacturing goals and the vision portrayed at conferences. Many have set their expectations for Smart Manufacturing much lower.  This aligns with previous surveys where there seems to be a 50-50% split on people focused on cost reduction and optimization versus business transformation and new business models.
  • The vast majority believe that workers will be part of the factory of the future, but they will be augmented by co-bots, exoskeletons, and AI-driven assistants.
  •  Most agree that we do not need more data than we are collecting today. Having data does not seem to be the problem. We are either not collecting the right data, or we are not organizing, relating and modeling the existing data in ways that enable better use of analytical tools.
  •  The most surprising response was the excitement around digital twins. There is a significant percent counting on the results of digital twin initiatives as an essential part of their business model. However, there is concern about the investment required and the effort to align multiple parallel initiatives among different departments working on simulation models and digital twin type of functionality. 
  •  Many are expecting security and privacy standards to evolve quickly and become the new norm in the industry for the entire supply chain. There is also enthusiasm behind blockchain as a technology that can help with data exchanges among value chain partners.
  • When asked about MES/MOM, the popular opinion is that MES is evolving as a central repository of contextualized data. However, many also believe it will also be divided up into smaller modular apps. These are not mutually exclusive options. The MES platform can be designed to provide the data layer separately and allow varied modular apps to interact with the data layers via APIs.

To hear the Smart Manufacturing Community Feud – Episode 1 click on this link.

For more information on how to join the MESA Smart Manufacturing Community click on the following link.
 

at No comments: