Tag Archives: Air Gap

Li-Fi Security

10 Jan

Li-Fi has been widely talked about, largely due to its capability to deliver a high data rate wireless connectivity.

Li-FI has some very interesting security characteristics too.

Continue reading

More on Air Gaps

17 Mar

While Air-Gaps are a good conceptual solution, in practice beyond Schneier’s single PC example, they are very hard to achieve. There is nearly always a backdoor to be found somewhere that an attacker can exploit.
Continue reading

Guards are not Air Gaps

9 Dec

“An air gap is a network security measure that consists of ensuring that a secure computer network is physically isolated from unsecured networks, such as the public Internet or an unsecured local area network.”  (Wikipedia)

Note the emphasis in the word physically.

A number of forums have discussed whether data diodes are equivalent to air gaps in one direction, including a number of articles on Cyber Matters.   In reality you can argue it both ways.

Continue reading

US Electric Grid Under Persistent Cyber Attack

16 Jun

Great blog, observing that compliance does not equal security, and that internal culture is a key element.
While focused on the US energy sector, I’d suggest the same is true in the UK too.

The Threat Vector

Electric GridA recent report by Reps. Edward Markey (D-Mass.) and Henry Waxman (D-Calif.) referenced more than a dozen utility companies that acknowledged they experience daily persistent cyber attacks.

View original post 588 more words

The Need for Network Segregation in Critical Infrastructure Systems

16 Apr

A recent article in the NY Times claims:

The vast majority of targeted computer attacks now start with a malicious e-mail sent to a company employee. Now evidence suggests that the same technique could be used to attack watersheds, power grids, oil refineries and nuclear plants.

This cannot be allowed to happen, here I explore the issue in a little more detail.

Continue reading

Air Gaps, Firewalls and Data Diodes in Industrial Control Systems

26 Mar

Nexor have just released a briefing paper Air-Gaps, Firewalls and Data Diodes in Industrial Control Systems looking the issues around segregating industrial control system networks. What works best: Air Gaps, Firewalls or Data Diodes?

Continue reading

Data Diode Technology Can Help Solve Complex Cyber Security Issues

29 Jan

Due to recent security incidents, there is now a significant debate with regard to what is the best way to protect Industrial Control Systems (ICS).

Generally, the debate focuses on whether networks should be isolated via an Air-Gap, or joined by well-configured Firewall(s) but the debate often misses a third option – Data Diodes.

Continue reading

Overcoming Air Gap Security Failures

3 Jul

Air Gaps are not as secure as you might think.

Continue reading