I just read this article on Howard Schmidt speaking to the House of Lords about cyber threats.
I don’t usually put much stock in what a government “expert” says about information security but this article outlined a flaw that exists in many DCS architectures.
In most of the control systems I have seen the naming architecture is horrible. Host files are still commonly used, direct entry of IP addresses is common and in some hodge podge systems a combination of Host files, IP addresses, and DNS lookups happen. This is an area that is ripe for improvement in the SCADA arena.