The following includes PERA news, articles, and links that have changed recently (see dates):
- Vitautas Butrimas published "Should They Have Known Better ?" An analysis of lessons from the January 20, 2026 cyber-attack on the electrical power grid in Poland (February 21, 2026).
- River Caudle published "The Purdue Model Isn't Dead" providing an excellent summary of PERA concepts and history. (Jan 20, 2026)
- River Caudle published "IEC 62443 Gets Security Levels Wrong" proposing a concept for "consequence-based" risk assessment. (Dec 14, 2025)
- PERA Update Plan (August 1, 2025)
Several new concepts and technologies have evolved that were not considered in the original PERA architectures and methodologies. These include:
• New Enterprise Integration developments such as Cloud Computing, Industry 4.0 and remote maintenance and support strategies
• Cybersecurity, including Firewalls, Network Monitoring, Configuration Management, etc.
• New Technologies such as Artificial Intelligence (AI), and Anthropomorphic robotics,
• New Industrial networks including Multipath Radio, Industrial Ethernets, and Industrial Internet of Things (IIoT).
• New Commercial Networks such as 5G, satellite and Internet of Things (IoT).
• Risk Management including human and organizational risks, facilities and equipment risks, and Control and Information Systems risks
New topics have been added to the www.pera.net website and existing ones updated.
Please take a moment to review the PERA Update Plan and give us your comments and suggestions.
- Inductive Automation has published a description of use of their products in a "Secure, Scalable PERA Framework'. Their Ignition Products are shown in
diagrams of each PERA Architectural Level.
- HIMA published a module on SIS Cybersecurity including a concept for zones and conduits using PERA Levels 0 to 3 to segregate zones.
We welcome your Comments and Suggestions
Back to PERA Home Page
