Use BFCM23 to get 30% off ISA products during the ISA Black Friday Week Sale!

Linking the Oil and Gas Industry to Improve Cybersecurity

The Linking the Oil and Gas Industry to Improve Cybersecurity program (LOGIIC) is an ongoing collaboration of oil and natural gas companies and the U.S. Department of Homeland Security, Science and Technology Directorate. LOGIIC undertakes collaborative research and development projects to improve the level of cybersecurity in critical systems of interest to the oil and natural gas sector. The objective is to promote the interests of the sector while maintaining impartiality, the independence of the participants, and vendor neutrality.

The Automation Federation serves as the LOGIIC host organization and has entered into agreements with the LOGIIC member companies and all other LOGIIC project participants. Member companies contribute financially and technically, provide personnel who meet regularly to define projects of common interest, and provide staff to serve on the LOGIIC Executive Committee. Current members of LOGIIC include BP, Chevron, ConocoPhillips, Shell, Total, and other large oil and gas companies that operate significant global energy infrastructure. The U.S. Department of Homeland Security, Science and Technology Directorate has contracted with scientific research organization SRI International to provide scientific and technical guidance for LOGIIC.

Industrial control, automation, package, security, and other vendors have made LOGIIC projects possible by volunteering their time, knowledge, equipment and test environments. Subject Matter Experts make significant contribution by working with SRI International to refine the evaluation strategy, perform the system evaluations, and develop the project reports.

LOGIIC 12 Project Report

LOGIIC recently completed Project 12 Safety Instrumentation and Management testing. The report highlights numerous consequential and reoccurring exploitable weaknesses found during the project and provides a roadmap for the short-, mid-, and long-term risk mitigating actions.

Download the Report

SBOM Study: Managing ICS software risks to Oil & Gas

In 2021, LOGIIC conducted a study to understand how SBOMs and other vendor capabilities can be used to manage cybersecurity risks to industrial control systems (ICS) software that may be introduced from third-party components that are part of vendor solutions.

Download the Report