Showing Blog Posts: 31–39 of 39 by Gib Sorebo

Gib Sorebo


  • Will convergence make the problem worse?

    by Gib Sorebo on January 12, 2010

    As I had written earlier, there seems to be a resurgence in the interest in converge security. Like any resurgence, the second time around often looks different. In this case, advancements in technology and the increasing use of Internet Protocol (IP)-based components for video surveillance, motion detection, and other physical security controls has led the use of common networks for all this…

  • Converged Security on a Comeback?

    by Gib Sorebo on December 28, 2009

    After the attacks of September 11, 2001, there was a renewed interest in an area known as “converged security.” This relatively straightforward concept called for the merging of the physical security and information security domains to address multi-domain attacks and leverage the strengths of each domain. For example, physical security folks are often better at investigations due to their more…

  • The Next NERC CIP

    by Gib Sorebo on December 14, 2009

    Last week I attended a North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection Conference in Atlanta hosted by Electric Utility Consultants, Inc. (EUCI). The presentations were enlightening, particularly one that focused on the next version of the NERC’s Critical Infrastructure Protection (CIP) standards. As I noted in my first post, debates continue to rage about…

  • Going Old School

    by Gib Sorebo on December 2, 2009

    The world of information technology and electronics has produced spectacular advancements in the way we live. Technologies that once required human intervention can now be automated with the tasks to be performed hidden from view. While that has made our lives easier, it doesn’t always pique our curiosity. We have to admit that it’s usually a lot more fun to watch a demonstration where something…

  • CFATS: Is the Danger Real?

    by Gib Sorebo on November 30, 2009

    As we get closer to the RSA Conference in March, I want to highlight some of the topics scheduled to be part of the Physical Security and Critical Infrastructure track. The subjects cover an array of issues from lock picking to the integrity of the electrical grid. One topic that is gaining increasing attention is the security of chemical plants. Given the potential terrorist applications of…

  • More FUD from the Mainstream Media?

    by Gib Sorebo on November 11, 2009

    Many of you may have watched the “60 Minutes” segment on Sunday entitled “Sabotaging the System.” The 20-minute segment highlighted a number of alleged past and potential cyber attacks, including power outages in Brazil, an attack on the military’s Central Command, and theft of millions through hacks of ATM networks. Beyond somelegitimate disputes as to whether the Brazilian blackouts were caused…

  • What Does Smart Grid Security Mean to You?

    by Gib Sorebo on October 15, 2009

    As someone who has been knee-deep in Smart Grid security research, collaboration, assessments, and integration projects for the past year, it is sometimes easy to forget that most of the information security community hasn’t had much exposure to this area. Given that we received several submissions for sessions related to Smart Grid security, and it has been getting a fair amount of media…

  • What Is Taum Sauk?

    by Gib Sorebo on October 7, 2009

    Sometimes the significance of critical infrastructure doesn’t hit home for people until they’re faced with the consequences of its failure. In 2005, the people in the Missouri Ozarks learned firsthand the value of information integrity and what can happen when efforts are not made to ensure the accuracy of data. Taum Sauk is a pumped-storage hydroelectric plant run by the AmerenUE electric…

  • Welcome to the Critical Infrastructure Blog

    by Gib Sorebo on October 2, 2009

    Welcome to the inaugural posting for the Critical Infrastructure blog. I hope this will help to broaden the scope of information security coverage provided by RSA ® Conference 365. As part of the recognition of this increasingly important area, the RSA Conference will feature a track entitled Physical Security and Critical Infrastructure, which had previously been covered under the Physical…

This document was retrieved from on Mon, 22 Dec 2014 18:26:11 -0500.
© 2014 EMC Corporation. All rights reserved.