Attending this event?
The Central ICS/SCADA Cyber Security Event of the Year for the APAC Region!

IMPORTANT: Our team is finalizing the conference agenda. Sessions will be finalized over the next few days. Please check back frequently. The conference will have THREE full days of content, and receptions and networking opportunities. You can register for the conference online to hold a spot.
View analytic
Tuesday, April 24 • 11:30am - 12:15pm
Preventing a Meltdown: Protecting Industrial Control Systems from Cyber Attacks

Sign up or log in to save this to your schedule and see who's attending!

Summary: Industrial Control Systems (ICS) provide the backbone of our critical infrastructure and are increasingly under attack. These systems present unique security challenges connecting aging equipment that often predates modern security. This session will review today’s most serious ICS threats, and innovative approaches to protect critical applications at their core, rather than the perimeter.

Session Details:

Recent attacks on power plants have raised significant concerns over the security of our aging critical infrastructure. Modern Industrial Control Systems (ICS) provide the backbone for everything from nuclear power plants to advanced manufacturing, but they also present unique security challenges.
ICS systems often connect a long “iron tail” of aging equipment that predates modern cyberattacks. Security for these legacy systems often depends on air gaps from the outside world – while this easy in the 70’s, it’s less practical now. Today’s air-gapped systems can’t be automatically patched or receive virus signature updates, and even the most isolated system is usually only a desktop away from a connected, and potentially malicious insider.

On top of this, many of these systems are difficult or impossible to patch, and require 100% uptime. Simply rebooting an app is problematic, especially if it’s connected to a nuclear power plant, or electrical grid. Installing, validating, and testing system updates for unpredictable periods of time can be a non-starter. Legacy apps often were created by staff no longer there, using tools no longer supported.

This session will be led by the chief security architect of a global leader in industrial controls. It will review the unique challenges for ICS security with specific examples of recent attacks including fileless and memory-based threats that fly under the radar of conventional security tools.
Also discussed will be the need for a fundamental shift in how we approach security. Most security today is based at the perimeter, looking for known, previously identified threats. But perimeter security is almost always porous, and once inside, hackers can cause considerable damage or disruption to critical infrastructure, often without being noticed.

Finally, a new application-centric security model will be discussed that focuses on the integrity and runtime flow of applications, looking for anomalies at the core, rather than the perimeter. This model can be applied to existing, legacy applications running on older platforms, and provides better accuracy, and real-time pin-pointing of attacks in progress.

Session Objectives
  • Highlight the unique challenges of protecting Industrial Control Systems
  • Conventional security, patching and air gaps are inadequate for today's threats
  • Security needs to focus on the integrity of applications, not the perimeter.

This topic has recently been brought to the attention of the ICS Security community due to the TRITON attack against an Industrial Safety System.

avatar for Paul Forney

Paul Forney

Chief Security Architect, Schneider Electric
In supplement to being the Chief Security Architect at Schneider Electric Product Security Office, Mr. Forney is a founding board member of the ISA Security Compliance Institute (ISCI) which develops the conformance specifications to the ISA 99/IEC 62443 ICS cyber security standa... Read More →
avatar for Satya Gupta

Satya Gupta

Chief Technology Officer, Virsec
Satya V. Gupta is an entrepreneur with deep hardware and software domain expertize and multiple successful exits in several startups in USA and India. Currently, he is the Founder and Chief Technology Officer at Virsec, a cyber security startup based in San Jose, CA. He has over... Read More →

Tuesday April 24, 2018 11:30am - 12:15pm
Morr + Morrisson (Atrium Ballroom)