nav search
Data Center Software Security DevOps Business Personal Tech Science Emergent Tech Bootnotes

back to article
Black Hat 2015: 32 SCADA, mobile zero-day vulns will drop

Silver badge

The problem is that even if you wanted to build a "secure" industrial system...

... the industry will throw their spanner in the works. Essentially you will get industrial systems which can only be controlled by OPC (OLE for Process Control) or if you are lucky OPC-UA, it's cousin which drops DCOM for SOAP.

Seriously, there is no way any of those companies is ever going to correctly implement those systems. There is no way you can run those systems without them having huge attack surfaces.

What we'd need would be regulations limiting the maximum complexity of those systems. The simpler they are the easier they are to understand and that gives people a chance at securing them.


POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

The Register - Independent news and views for the tech community. Part of Situation Publishing