This is a topic I am actually going to input some suggestions into with some research labs I officially work with in US using the open source zero trust networking project I work on (https://github.com/openziti). Right now, only 2 topics come to mind... maybe I will think of another later:
- How to provide standard, open source solutions which allow us to implement zero trust networking in OT/air-gapped environments which reduce risk from the network while being in their sovereign domain as is mandated by OT operating environment. While I am biased on OpenZiti being one of these, I wish there were other solutions to create an innovation race and pick the current 'winner' (see Linux/Kubernetes etc).
- How to incentivise critical infrastructure providers who are driven towards 100% uptime to drive revenue (with punishments for the downtime) and thus are incentives not to implement any technology (incl. security) which causes ANY delay to getting infrastructure back up. Maybe some sort of grace period while these technologies are being implemented and perfected for OT so that they do not cause extra downtime. Further, operators implementing more secure solutions should receive some sort of 'bonus' so that the revenue side of their business demands higher security by default/by-design.
------------------------------
Philip Griffiths
Head of Business Development
NetFoundry
------------------------------
Original Message:
Sent: May 07, 2023 06:01:48 AM
From: Alex Sharpe
Subject: What are your top 3 priorities for Cyber-Physical Resilience?
The Whitehouse has created a working group on Cyber-Physical Resilience to build resilience into Critical Infrastructure. They are looking at ways to prevent failure, disruption, and degradation.
If you had the opportunity, what would you want their top three priorities to be?
https://www.whitehouse.gov/pcast/briefing-room/2023/03/15/pcast-initiating-working-group-on-cyber-physical-resilience/
------------------------------
Alex Sharpe
Principal
Sharpe42
[email protected]
Co-Chair Philosophy & Guiding Principles Working Group
Co-Chair Organizational Strategy & Governance Working Group
------------------------------