This post features some operational technology (OT) Security conventions. It is part of the main post about OT Security. List of OT Security Conventions OT Security Conventions: Official link IIoT World ICS Cybersecurity Day IIoT World ICS Cybersecurity Day is…
Software composition analysis (SCA) Software bill of materials (SBOM) is the list of components that conforms a given software. SBOM management should be part of the software development lifecycle (SDLC). SBOM may be compound by: Uses of SBOM We can…
This post features some operational technology (OT) security frameworks and standards. List of OT Security Frameworks and Standards OT Security frameworks and standards that are featured on this post: ISA/IEC 62443 ISA/IEC 62443, sometimes referred as ISA 62443 or IEC…
The use of plaintext passwords in source code is unsafe and should be avoided from an Security IT point of view. Unfortunately, this is a common practice. Keep in mind that in case you are using a code repository with…
This post summarizes some aspects of information security on computer networks. Network Security Controls Security Gateway Security gateway is a broad term to refer to a network edge security device. Firewall Firewall is a control. Proxy servers are a type…
This post is an introduction to system virtualization. It is part of a series of articles about virtualization. Description of System Virtualization System virtualization implies that a system (such as an operating system is virtualized). Because it was the first…
Secure strings should be used. These user scenarios should be done securely: Get password from user securely You can use Get-Credential or Get-Credential-User (that accepts a text as a an argument, in case you want to add a custom message…
This post features cloud service modules. List of Cloud Service Modules Cloud service modules featured on this post: Storage Archive Storage Amazon S3 Glacier Amazon S3 Glacier classes website Azure Archive Storage Azure Archive Storage Google Storage Coldline and Archive…
Operational technologies (OT) are hardware and software that detects or causes a change, through the direct monitoring and/or control of industrial equipment, assets, processes and events.. You can read an introduction to OT on this post. OT Security (OT-Sec), Industrial…
There are foundations that support and get funds for free and open source software (FOSS). Foundations allow to have vendor-independent organizations that manage FOSS projects, improving neutrality. An example of vendor-dependent FOSS project is Java. This post features a list…