SlideShare a Scribd company logo
1 of 18
New Deal for Buildings
The Current Status of Cyber Security in the BAS
Industry
Smart Building Series
5th Feb 2019
New Deal
Cybersecurity Summit
Held at AHR Expo 2019,
January 14, 2019 Atlanta, GA
New Deal for Buildings
New Deal Objectives
Revisit the Relationship between BAS Vendors
and Building Owners/Operators
newdeal.blog
Facility IT
The
New Deal
Landscape
HVAC
Lighting Security &
CCTV
Construction &
Commissioning
Power &
Utilities
Environment
Energy & Building Automation Systems (BAS)
Facility
Managemen
t
CMMS
(Maintenance
) Hospitality
IWMS
RE & Property
Management
Life
Safety
Infrastructure
Big Data
Analytics
ERP/CRM
Cyber
Security
Comms
Facility IT
The Application of Information Technology to
Maximize the Value of Facilities for their
Owners & Occupants
Facility IT
HVAC
Lighting Security &
CCTV
Construction &
Commissioning
Power &
Utilities
Environment
Facility
Managemen
t
CMMS
(Maintenance
) Hospitality
IWMS
RE & Property
Management
Life
Safety
Infrastructure
Big Data
Analytics
ERP/CRM
Cyber
Security
Comms
Attack Surface
New Deal
Cybersecurity Summit
Glen
Allmendinger
Jim
Lee
Andy
McMillan
Dave
Bohlmann
Jim
Butler
Hans-Joerg
Schweinzer
Robert
Hemmerdinger
Carol
Lomonaco
Anto
Budiardjo
Historical Timeline for Building Automation Security
20041820
1926
1973
1983
Mechanical & Pneumatic Controls Security Through VPNs & VLANS
1999
2009
CISCO/Cimetrics
Begin IT Friendly Security Initiative
BACnet IT Working Group Founded
Arab Oil
Embargo
Mini Computer
Control
BACnet IP
Annex J
BACnet International Founded
BACnet Manufacturer’s Association
BACnet
Addendum G
Started
Central
Heating
Air
Conditioning
Direct Digital
Control
2019
BACnet SC
Released
(Hopefully Summer 2019)
1995
2018
BACnet SC
Public Review
And Preliminary
Interoperability
Testing
2002
BTL Listing
Begins
#FacilityIT
Anticipating BACnet/SC
BACnet/SC Overview
●A “secure” BACnet communication for TCP/IP networks
○ Uses standard TCP/IP network security technology (TLS)
○ Messages are encrypted
○ Devices are authenticated using certificates
●Compatible with existing BACnet installations
○ BACnet/SC compliant routers will be needed
●Supports both IPv4 and IPv6
10
BACnet/SC Deployment
●Centralized BACnet/SC hubs instead of distributed
BBMDs
○ One or two hubs per BACnet/SC network (“primary” and “failover”)
●Every BACnet/SC device has a unique certificate
○ Signed by a site’s designated Certificate Authority
●Deployed in VLANs or VPNs, as well as “insecure”
networks
11
Special Thanks to BACnet IT-WG Contributors
● Dave Robin, Automated Logic
● Carl Neilson, Delta Controls
● Cliff Copass, Johnson Controls
● David Fisher, Polarsoft
● Mike Osborne, Reliable Controls
● Christoph Zeller, Sauter
● Bernhard Isler and Philippe Goetz, Siemens
● Chandra Appanna, Cisco Systems*
● Charles Frankston, Cimetrics*
● … and others
12
Security Categories
Addressed by BACnet/SC
Authentication: Users
Devices
✔
Encryption ✔
Authorization
Software updates to address vulnerabilities
Vulnerability Detection
Intrusion Detection
Network Management / Monitoring
#FacilityIT
Securing BAS,
an Industry Imperative
Presented at the Summit by Andy McMillan,
President BACnet International
Key Elements of Success
●Goal Alignment
○ Acceleration of evolution to more secure BAS
○ Effective Evolution (smooth migration)
●Audience Identification/Clarification
○ Suppliers
○ Owner/Operators and their Agents (System Designers/Implementers)
●Collective Timeline(s)
●Leverage Existing Organizations
●Open Minds and Respect for Experience
Suppliers
●Market Awareness and Tipping Point Review
●Timeline Communication
●BACnet/SC Implementation Training
●BACnet/SC Test Development and Implementation
●Best Practice Development and Dissemination
Owner/Operators
●Timeline Communication
●Security Culture Awareness Training
●Best Practice Implementation
Development/Dissemination
●IT Manager Communication
●Case Study Development/Dissemination
New Deal
Cybersecurity Summit
Video of the Summit online at summit.newdeal.blog

More Related Content

What's hot

Etisalat Digital Services
Etisalat Digital ServicesEtisalat Digital Services
Etisalat Digital ServicesGrafic.guru
 
Innovation Summit 2015 - 10 - linear dust
Innovation Summit 2015 - 10 - linear dustInnovation Summit 2015 - 10 - linear dust
Innovation Summit 2015 - 10 - linear dustThibault Cantegrel
 
Connect, Secure & Automate the Distribution Grid with CISCO SCADA RTU - Eximp...
Connect, Secure & Automate the Distribution Grid with CISCO SCADA RTU - Eximp...Connect, Secure & Automate the Distribution Grid with CISCO SCADA RTU - Eximp...
Connect, Secure & Automate the Distribution Grid with CISCO SCADA RTU - Eximp...Bosnia Agile
 
TechWiseTV Workshop: Operational Insights
TechWiseTV Workshop: Operational InsightsTechWiseTV Workshop: Operational Insights
TechWiseTV Workshop: Operational InsightsRobb Boyd
 
CWIN17 Rome / A holostic cybersecurity
CWIN17 Rome / A holostic cybersecurityCWIN17 Rome / A holostic cybersecurity
CWIN17 Rome / A holostic cybersecurityCapgemini
 
Keepler | IoT Analytics & AI on Edge Computing
Keepler | IoT Analytics & AI on Edge ComputingKeepler | IoT Analytics & AI on Edge Computing
Keepler | IoT Analytics & AI on Edge ComputingKeepler Data Tech
 
Xerox Secure X 060711 Tg
Xerox Secure X 060711 TgXerox Secure X 060711 Tg
Xerox Secure X 060711 Tgloriwebster1
 
CWIN17 New-York / Transforming enterprises with blockchain
CWIN17 New-York / Transforming enterprises with blockchainCWIN17 New-York / Transforming enterprises with blockchain
CWIN17 New-York / Transforming enterprises with blockchainCapgemini
 
How Data Will Facilitate your Office Re-Entry Strategy
How Data Will Facilitate your Office Re-Entry StrategyHow Data Will Facilitate your Office Re-Entry Strategy
How Data Will Facilitate your Office Re-Entry StrategyMemoori
 
Delivering the IoT ecosystem
Delivering the IoT ecosystemDelivering the IoT ecosystem
Delivering the IoT ecosystemTelefónica IoT
 
InnovationSummit2015 - iot connectivity
InnovationSummit2015 - iot connectivityInnovationSummit2015 - iot connectivity
InnovationSummit2015 - iot connectivityThibault Cantegrel
 
Enabling the IoT in the Cloud
Enabling the IoT in the Cloud Enabling the IoT in the Cloud
Enabling the IoT in the Cloud Telefónica IoT
 
Embedded SIM New opportunities for security sensitive IoT applications
Embedded SIM New opportunities for security sensitive IoT applicationsEmbedded SIM New opportunities for security sensitive IoT applications
Embedded SIM New opportunities for security sensitive IoT applicationsM2M Alliance e.V.
 
Big Data Analytics for the Industrial Internet of Things
Big Data Analytics for the Industrial Internet of ThingsBig Data Analytics for the Industrial Internet of Things
Big Data Analytics for the Industrial Internet of ThingsAnthony Chen
 
Internet of things: dai sensori al cloud - Global Azure Bootcamp - GABRome18
Internet of things: dai sensori al cloud - Global Azure Bootcamp - GABRome18Internet of things: dai sensori al cloud - Global Azure Bootcamp - GABRome18
Internet of things: dai sensori al cloud - Global Azure Bootcamp - GABRome18Angelo Gino Varrati
 
IoT Affects BACnet How?
IoT Affects BACnet How?IoT Affects BACnet How?
IoT Affects BACnet How?Cimetrics Inc
 
Will Edge Computing IoT Solutions be a Real Trend in 2019?
Will Edge Computing IoT Solutions be a Real Trend in 2019?Will Edge Computing IoT Solutions be a Real Trend in 2019?
Will Edge Computing IoT Solutions be a Real Trend in 2019?Tyrone Systems
 

What's hot (20)

Etisalat Digital Services
Etisalat Digital ServicesEtisalat Digital Services
Etisalat Digital Services
 
Rapid Prototyping for IoT
Rapid Prototyping for IoT Rapid Prototyping for IoT
Rapid Prototyping for IoT
 
Innovation Summit 2015 - 10 - linear dust
Innovation Summit 2015 - 10 - linear dustInnovation Summit 2015 - 10 - linear dust
Innovation Summit 2015 - 10 - linear dust
 
Connect, Secure & Automate the Distribution Grid with CISCO SCADA RTU - Eximp...
Connect, Secure & Automate the Distribution Grid with CISCO SCADA RTU - Eximp...Connect, Secure & Automate the Distribution Grid with CISCO SCADA RTU - Eximp...
Connect, Secure & Automate the Distribution Grid with CISCO SCADA RTU - Eximp...
 
TechWiseTV Workshop: Operational Insights
TechWiseTV Workshop: Operational InsightsTechWiseTV Workshop: Operational Insights
TechWiseTV Workshop: Operational Insights
 
Internet of Things
Internet of ThingsInternet of Things
Internet of Things
 
CWIN17 Rome / A holostic cybersecurity
CWIN17 Rome / A holostic cybersecurityCWIN17 Rome / A holostic cybersecurity
CWIN17 Rome / A holostic cybersecurity
 
Keepler | IoT Analytics & AI on Edge Computing
Keepler | IoT Analytics & AI on Edge ComputingKeepler | IoT Analytics & AI on Edge Computing
Keepler | IoT Analytics & AI on Edge Computing
 
Xerox Secure X 060711 Tg
Xerox Secure X 060711 TgXerox Secure X 060711 Tg
Xerox Secure X 060711 Tg
 
CWIN17 New-York / Transforming enterprises with blockchain
CWIN17 New-York / Transforming enterprises with blockchainCWIN17 New-York / Transforming enterprises with blockchain
CWIN17 New-York / Transforming enterprises with blockchain
 
How Data Will Facilitate your Office Re-Entry Strategy
How Data Will Facilitate your Office Re-Entry StrategyHow Data Will Facilitate your Office Re-Entry Strategy
How Data Will Facilitate your Office Re-Entry Strategy
 
Delivering the IoT ecosystem
Delivering the IoT ecosystemDelivering the IoT ecosystem
Delivering the IoT ecosystem
 
InnovationSummit2015 - iot connectivity
InnovationSummit2015 - iot connectivityInnovationSummit2015 - iot connectivity
InnovationSummit2015 - iot connectivity
 
Enabling the IoT in the Cloud
Enabling the IoT in the Cloud Enabling the IoT in the Cloud
Enabling the IoT in the Cloud
 
Embedded SIM New opportunities for security sensitive IoT applications
Embedded SIM New opportunities for security sensitive IoT applicationsEmbedded SIM New opportunities for security sensitive IoT applications
Embedded SIM New opportunities for security sensitive IoT applications
 
Big Data Analytics for the Industrial Internet of Things
Big Data Analytics for the Industrial Internet of ThingsBig Data Analytics for the Industrial Internet of Things
Big Data Analytics for the Industrial Internet of Things
 
Internet of things: dai sensori al cloud - Global Azure Bootcamp - GABRome18
Internet of things: dai sensori al cloud - Global Azure Bootcamp - GABRome18Internet of things: dai sensori al cloud - Global Azure Bootcamp - GABRome18
Internet of things: dai sensori al cloud - Global Azure Bootcamp - GABRome18
 
IoT Affects BACnet How?
IoT Affects BACnet How?IoT Affects BACnet How?
IoT Affects BACnet How?
 
Will Edge Computing IoT Solutions be a Real Trend in 2019?
Will Edge Computing IoT Solutions be a Real Trend in 2019?Will Edge Computing IoT Solutions be a Real Trend in 2019?
Will Edge Computing IoT Solutions be a Real Trend in 2019?
 
Cloud Customer Architecture for IoT
Cloud Customer Architecture for IoTCloud Customer Architecture for IoT
Cloud Customer Architecture for IoT
 

Similar to The Current Status of Cyber Security in the BAS Industry

SCADA Cyber Sec | ISACA 2013 | Patricia Watson
SCADA Cyber Sec | ISACA 2013 | Patricia WatsonSCADA Cyber Sec | ISACA 2013 | Patricia Watson
SCADA Cyber Sec | ISACA 2013 | Patricia WatsonPatricia M Watson
 
Caba Intelligent Building Summit2006 Zimmer
Caba Intelligent Building Summit2006 ZimmerCaba Intelligent Building Summit2006 Zimmer
Caba Intelligent Building Summit2006 ZimmerCABA
 
Anaheim Zimmer Realcomm 05
Anaheim Zimmer Realcomm 05Anaheim Zimmer Realcomm 05
Anaheim Zimmer Realcomm 05CABA
 
Cybersecurity in Oil & Gas Company
Cybersecurity in Oil & Gas CompanyCybersecurity in Oil & Gas Company
Cybersecurity in Oil & Gas CompanyEryk Budi Pratama
 
Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...
Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...
Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...Amazon Web Services
 
Kubernetes Hardening Guidance
Kubernetes Hardening GuidanceKubernetes Hardening Guidance
Kubernetes Hardening GuidanceAlex492583
 
Cybersecurity Summit AHR20 NIST framework Cimetrics
Cybersecurity Summit AHR20 NIST framework CimetricsCybersecurity Summit AHR20 NIST framework Cimetrics
Cybersecurity Summit AHR20 NIST framework CimetricsCimetrics Inc
 
ControlCase CMMC Basics Deck Final.pdf
ControlCase CMMC Basics Deck Final.pdfControlCase CMMC Basics Deck Final.pdf
ControlCase CMMC Basics Deck Final.pdfAmyPoblete3
 
Cybersecurity Summit 2020 Slide Deck
Cybersecurity Summit 2020 Slide DeckCybersecurity Summit 2020 Slide Deck
Cybersecurity Summit 2020 Slide DeckCimetrics Inc
 
Industrial Control Security USA Sacramento California Oct 6/7
Industrial Control Security USA Sacramento California Oct 6/7Industrial Control Security USA Sacramento California Oct 6/7
Industrial Control Security USA Sacramento California Oct 6/7James Nesbitt
 
IT Cyber Security
IT Cyber Security IT Cyber Security
IT Cyber Security Rod Delwar
 
ISO 27017 – What are the Business Advantages of Cloud Security?
ISO 27017 – What are the Business Advantages of Cloud Security?ISO 27017 – What are the Business Advantages of Cloud Security?
ISO 27017 – What are the Business Advantages of Cloud Security?Alvin Integrated Services [AIS]
 
Securing your IoT Implementations
Securing your IoT ImplementationsSecuring your IoT Implementations
Securing your IoT ImplementationsTechWell
 
A survey on the security of cloud computing
A survey on the security of cloud computingA survey on the security of cloud computing
A survey on the security of cloud computingLubna_Alhenaki
 
CLASS 2018 - Palestra de Julio Oliveira (Gerente de Tecnologia, Power Grids G...
CLASS 2018 - Palestra de Julio Oliveira (Gerente de Tecnologia, Power Grids G...CLASS 2018 - Palestra de Julio Oliveira (Gerente de Tecnologia, Power Grids G...
CLASS 2018 - Palestra de Julio Oliveira (Gerente de Tecnologia, Power Grids G...TI Safe
 
Mitre ATT&CK by Mattias Almeflo Nixu
Mitre ATT&CK by Mattias Almeflo NixuMitre ATT&CK by Mattias Almeflo Nixu
Mitre ATT&CK by Mattias Almeflo NixuNixu Corporation
 
Cutting-Edge Network Behavior Audit Technology from BMST
Cutting-Edge Network Behavior Audit Technology from BMSTCutting-Edge Network Behavior Audit Technology from BMST
Cutting-Edge Network Behavior Audit Technology from BMSTBMST
 
Be wp cybersmart_buildings (1)
Be wp cybersmart_buildings (1)Be wp cybersmart_buildings (1)
Be wp cybersmart_buildings (1)JeremyGarcia46
 
Be wp cybersmart_buildings
Be wp cybersmart_buildingsBe wp cybersmart_buildings
Be wp cybersmart_buildingsJeremyGarcia46
 

Similar to The Current Status of Cyber Security in the BAS Industry (20)

SCADA Cyber Sec | ISACA 2013 | Patricia Watson
SCADA Cyber Sec | ISACA 2013 | Patricia WatsonSCADA Cyber Sec | ISACA 2013 | Patricia Watson
SCADA Cyber Sec | ISACA 2013 | Patricia Watson
 
Caba Intelligent Building Summit2006 Zimmer
Caba Intelligent Building Summit2006 ZimmerCaba Intelligent Building Summit2006 Zimmer
Caba Intelligent Building Summit2006 Zimmer
 
Anaheim Zimmer Realcomm 05
Anaheim Zimmer Realcomm 05Anaheim Zimmer Realcomm 05
Anaheim Zimmer Realcomm 05
 
Cybersecurity in Oil & Gas Company
Cybersecurity in Oil & Gas CompanyCybersecurity in Oil & Gas Company
Cybersecurity in Oil & Gas Company
 
Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...
Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...
Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...
 
Kubernetes Hardening Guidance
Kubernetes Hardening GuidanceKubernetes Hardening Guidance
Kubernetes Hardening Guidance
 
Cybersecurity Summit AHR20 NIST framework Cimetrics
Cybersecurity Summit AHR20 NIST framework CimetricsCybersecurity Summit AHR20 NIST framework Cimetrics
Cybersecurity Summit AHR20 NIST framework Cimetrics
 
ControlCase CMMC Basics Deck Final.pdf
ControlCase CMMC Basics Deck Final.pdfControlCase CMMC Basics Deck Final.pdf
ControlCase CMMC Basics Deck Final.pdf
 
Cybersecurity Summit 2020 Slide Deck
Cybersecurity Summit 2020 Slide DeckCybersecurity Summit 2020 Slide Deck
Cybersecurity Summit 2020 Slide Deck
 
Industrial Control Security USA Sacramento California Oct 6/7
Industrial Control Security USA Sacramento California Oct 6/7Industrial Control Security USA Sacramento California Oct 6/7
Industrial Control Security USA Sacramento California Oct 6/7
 
IT Cyber Security
IT Cyber Security IT Cyber Security
IT Cyber Security
 
ISO 27017 – What are the Business Advantages of Cloud Security?
ISO 27017 – What are the Business Advantages of Cloud Security?ISO 27017 – What are the Business Advantages of Cloud Security?
ISO 27017 – What are the Business Advantages of Cloud Security?
 
Securing your IoT Implementations
Securing your IoT ImplementationsSecuring your IoT Implementations
Securing your IoT Implementations
 
A survey on the security of cloud computing
A survey on the security of cloud computingA survey on the security of cloud computing
A survey on the security of cloud computing
 
CLASS 2018 - Palestra de Julio Oliveira (Gerente de Tecnologia, Power Grids G...
CLASS 2018 - Palestra de Julio Oliveira (Gerente de Tecnologia, Power Grids G...CLASS 2018 - Palestra de Julio Oliveira (Gerente de Tecnologia, Power Grids G...
CLASS 2018 - Palestra de Julio Oliveira (Gerente de Tecnologia, Power Grids G...
 
ISA Toronto Chapter Presentation-March 2017
ISA Toronto  Chapter Presentation-March 2017ISA Toronto  Chapter Presentation-March 2017
ISA Toronto Chapter Presentation-March 2017
 
Mitre ATT&CK by Mattias Almeflo Nixu
Mitre ATT&CK by Mattias Almeflo NixuMitre ATT&CK by Mattias Almeflo Nixu
Mitre ATT&CK by Mattias Almeflo Nixu
 
Cutting-Edge Network Behavior Audit Technology from BMST
Cutting-Edge Network Behavior Audit Technology from BMSTCutting-Edge Network Behavior Audit Technology from BMST
Cutting-Edge Network Behavior Audit Technology from BMST
 
Be wp cybersmart_buildings (1)
Be wp cybersmart_buildings (1)Be wp cybersmart_buildings (1)
Be wp cybersmart_buildings (1)
 
Be wp cybersmart_buildings
Be wp cybersmart_buildingsBe wp cybersmart_buildings
Be wp cybersmart_buildings
 

More from Memoori

Laying the Data Foundations for Artificial Intelligence!
Laying the Data Foundations for Artificial Intelligence!Laying the Data Foundations for Artificial Intelligence!
Laying the Data Foundations for Artificial Intelligence!Memoori
 
The Market for AI in Commercial Buildings 2024.pdf
The Market for AI in Commercial Buildings 2024.pdfThe Market for AI in Commercial Buildings 2024.pdf
The Market for AI in Commercial Buildings 2024.pdfMemoori
 
A BluePrint for the Future of Smart Building Retrofits
A BluePrint for the Future of Smart Building RetrofitsA BluePrint for the Future of Smart Building Retrofits
A BluePrint for the Future of Smart Building RetrofitsMemoori
 
AI + Memoori = AIM
AI + Memoori = AIMAI + Memoori = AIM
AI + Memoori = AIMMemoori
 
How Tenants & Landlords Can Work Together to Reduce Energy Consumption!
How Tenants & Landlords Can Work Together to Reduce Energy Consumption!How Tenants & Landlords Can Work Together to Reduce Energy Consumption!
How Tenants & Landlords Can Work Together to Reduce Energy Consumption!Memoori
 
How Can Smart Building Technology Become Mainstream?
How Can Smart Building Technology Become Mainstream?How Can Smart Building Technology Become Mainstream?
How Can Smart Building Technology Become Mainstream?Memoori
 
The Carbon Lifestyle - Not a Fad
The Carbon Lifestyle - Not a FadThe Carbon Lifestyle - Not a Fad
The Carbon Lifestyle - Not a FadMemoori
 
Hybrid Work: Driving the Workplace Tech Market!
Hybrid Work: Driving the Workplace Tech Market!Hybrid Work: Driving the Workplace Tech Market!
Hybrid Work: Driving the Workplace Tech Market!Memoori
 
AI IoT Edge Applications Insights and Trends
AI IoT Edge Applications Insights and TrendsAI IoT Edge Applications Insights and Trends
AI IoT Edge Applications Insights and TrendsMemoori
 
What Building Owners Need to Know About Cyber Security Insurance!
What Building Owners Need to Know About Cyber Security Insurance!What Building Owners Need to Know About Cyber Security Insurance!
What Building Owners Need to Know About Cyber Security Insurance!Memoori
 
3 Step Guide to Your Holistic Building Experience Journey
3 Step Guide to Your Holistic Building Experience Journey3 Step Guide to Your Holistic Building Experience Journey
3 Step Guide to Your Holistic Building Experience JourneyMemoori
 
The Developers Smart Building Project Canvas
The Developers Smart Building Project CanvasThe Developers Smart Building Project Canvas
The Developers Smart Building Project CanvasMemoori
 
Smart, Connected Restrooms. A Cornerstone of Today's Smart Healthy Buildings
Smart, Connected Restrooms. A Cornerstone of Today's Smart Healthy BuildingsSmart, Connected Restrooms. A Cornerstone of Today's Smart Healthy Buildings
Smart, Connected Restrooms. A Cornerstone of Today's Smart Healthy BuildingsMemoori
 
Using Software Robots to Unlock Energy Efficiency in Aging Buildings
Using Software Robots to Unlock Energy Efficiency in Aging BuildingsUsing Software Robots to Unlock Energy Efficiency in Aging Buildings
Using Software Robots to Unlock Energy Efficiency in Aging BuildingsMemoori
 
The Case for an Open IoT ‘Data Fabric’ for Smart Buildings Integration
The Case for an Open IoT ‘Data Fabric’ for Smart Buildings IntegrationThe Case for an Open IoT ‘Data Fabric’ for Smart Buildings Integration
The Case for an Open IoT ‘Data Fabric’ for Smart Buildings IntegrationMemoori
 
Why Should I Adopt a Digital Twin?
Why Should I Adopt a Digital Twin?Why Should I Adopt a Digital Twin?
Why Should I Adopt a Digital Twin?Memoori
 
Tagging with AI to Enable Data-Driven Smart Building Applications at Scale!
Tagging with AI to Enable Data-Driven Smart Building Applications at Scale!Tagging with AI to Enable Data-Driven Smart Building Applications at Scale!
Tagging with AI to Enable Data-Driven Smart Building Applications at Scale!Memoori
 
Project Haystack - 10 Years of Bringing Data Semantics to the Built Environment!
Project Haystack - 10 Years of Bringing Data Semantics to the Built Environment!Project Haystack - 10 Years of Bringing Data Semantics to the Built Environment!
Project Haystack - 10 Years of Bringing Data Semantics to the Built Environment!Memoori
 
Overcoming Tech Obsolescence in Smart Buildings
Overcoming Tech Obsolescence in Smart BuildingsOvercoming Tech Obsolescence in Smart Buildings
Overcoming Tech Obsolescence in Smart BuildingsMemoori
 
Catching Up with the Brick Schema for Smart Buildings
Catching Up with the Brick Schema for Smart BuildingsCatching Up with the Brick Schema for Smart Buildings
Catching Up with the Brick Schema for Smart BuildingsMemoori
 

More from Memoori (20)

Laying the Data Foundations for Artificial Intelligence!
Laying the Data Foundations for Artificial Intelligence!Laying the Data Foundations for Artificial Intelligence!
Laying the Data Foundations for Artificial Intelligence!
 
The Market for AI in Commercial Buildings 2024.pdf
The Market for AI in Commercial Buildings 2024.pdfThe Market for AI in Commercial Buildings 2024.pdf
The Market for AI in Commercial Buildings 2024.pdf
 
A BluePrint for the Future of Smart Building Retrofits
A BluePrint for the Future of Smart Building RetrofitsA BluePrint for the Future of Smart Building Retrofits
A BluePrint for the Future of Smart Building Retrofits
 
AI + Memoori = AIM
AI + Memoori = AIMAI + Memoori = AIM
AI + Memoori = AIM
 
How Tenants & Landlords Can Work Together to Reduce Energy Consumption!
How Tenants & Landlords Can Work Together to Reduce Energy Consumption!How Tenants & Landlords Can Work Together to Reduce Energy Consumption!
How Tenants & Landlords Can Work Together to Reduce Energy Consumption!
 
How Can Smart Building Technology Become Mainstream?
How Can Smart Building Technology Become Mainstream?How Can Smart Building Technology Become Mainstream?
How Can Smart Building Technology Become Mainstream?
 
The Carbon Lifestyle - Not a Fad
The Carbon Lifestyle - Not a FadThe Carbon Lifestyle - Not a Fad
The Carbon Lifestyle - Not a Fad
 
Hybrid Work: Driving the Workplace Tech Market!
Hybrid Work: Driving the Workplace Tech Market!Hybrid Work: Driving the Workplace Tech Market!
Hybrid Work: Driving the Workplace Tech Market!
 
AI IoT Edge Applications Insights and Trends
AI IoT Edge Applications Insights and TrendsAI IoT Edge Applications Insights and Trends
AI IoT Edge Applications Insights and Trends
 
What Building Owners Need to Know About Cyber Security Insurance!
What Building Owners Need to Know About Cyber Security Insurance!What Building Owners Need to Know About Cyber Security Insurance!
What Building Owners Need to Know About Cyber Security Insurance!
 
3 Step Guide to Your Holistic Building Experience Journey
3 Step Guide to Your Holistic Building Experience Journey3 Step Guide to Your Holistic Building Experience Journey
3 Step Guide to Your Holistic Building Experience Journey
 
The Developers Smart Building Project Canvas
The Developers Smart Building Project CanvasThe Developers Smart Building Project Canvas
The Developers Smart Building Project Canvas
 
Smart, Connected Restrooms. A Cornerstone of Today's Smart Healthy Buildings
Smart, Connected Restrooms. A Cornerstone of Today's Smart Healthy BuildingsSmart, Connected Restrooms. A Cornerstone of Today's Smart Healthy Buildings
Smart, Connected Restrooms. A Cornerstone of Today's Smart Healthy Buildings
 
Using Software Robots to Unlock Energy Efficiency in Aging Buildings
Using Software Robots to Unlock Energy Efficiency in Aging BuildingsUsing Software Robots to Unlock Energy Efficiency in Aging Buildings
Using Software Robots to Unlock Energy Efficiency in Aging Buildings
 
The Case for an Open IoT ‘Data Fabric’ for Smart Buildings Integration
The Case for an Open IoT ‘Data Fabric’ for Smart Buildings IntegrationThe Case for an Open IoT ‘Data Fabric’ for Smart Buildings Integration
The Case for an Open IoT ‘Data Fabric’ for Smart Buildings Integration
 
Why Should I Adopt a Digital Twin?
Why Should I Adopt a Digital Twin?Why Should I Adopt a Digital Twin?
Why Should I Adopt a Digital Twin?
 
Tagging with AI to Enable Data-Driven Smart Building Applications at Scale!
Tagging with AI to Enable Data-Driven Smart Building Applications at Scale!Tagging with AI to Enable Data-Driven Smart Building Applications at Scale!
Tagging with AI to Enable Data-Driven Smart Building Applications at Scale!
 
Project Haystack - 10 Years of Bringing Data Semantics to the Built Environment!
Project Haystack - 10 Years of Bringing Data Semantics to the Built Environment!Project Haystack - 10 Years of Bringing Data Semantics to the Built Environment!
Project Haystack - 10 Years of Bringing Data Semantics to the Built Environment!
 
Overcoming Tech Obsolescence in Smart Buildings
Overcoming Tech Obsolescence in Smart BuildingsOvercoming Tech Obsolescence in Smart Buildings
Overcoming Tech Obsolescence in Smart Buildings
 
Catching Up with the Brick Schema for Smart Buildings
Catching Up with the Brick Schema for Smart BuildingsCatching Up with the Brick Schema for Smart Buildings
Catching Up with the Brick Schema for Smart Buildings
 

Recently uploaded

Traction part 2 - EOS Model JAX Bridges.
Traction part 2 - EOS Model JAX Bridges.Traction part 2 - EOS Model JAX Bridges.
Traction part 2 - EOS Model JAX Bridges.Anamaria Contreras
 
20200128 Ethical by Design - Whitepaper.pdf
20200128 Ethical by Design - Whitepaper.pdf20200128 Ethical by Design - Whitepaper.pdf
20200128 Ethical by Design - Whitepaper.pdfChris Skinner
 
TriStar Gold Corporate Presentation - April 2024
TriStar Gold Corporate Presentation - April 2024TriStar Gold Corporate Presentation - April 2024
TriStar Gold Corporate Presentation - April 2024Adnet Communications
 
Go for Rakhi Bazaar and Pick the Latest Bhaiya Bhabhi Rakhi.pptx
Go for Rakhi Bazaar and Pick the Latest Bhaiya Bhabhi Rakhi.pptxGo for Rakhi Bazaar and Pick the Latest Bhaiya Bhabhi Rakhi.pptx
Go for Rakhi Bazaar and Pick the Latest Bhaiya Bhabhi Rakhi.pptxRakhi Bazaar
 
1911 Gold Corporate Presentation Apr 2024.pdf
1911 Gold Corporate Presentation Apr 2024.pdf1911 Gold Corporate Presentation Apr 2024.pdf
1911 Gold Corporate Presentation Apr 2024.pdfShaun Heinrichs
 
Kenya Coconut Production Presentation by Dr. Lalith Perera
Kenya Coconut Production Presentation by Dr. Lalith PereraKenya Coconut Production Presentation by Dr. Lalith Perera
Kenya Coconut Production Presentation by Dr. Lalith Pereraictsugar
 
Horngren’s Financial & Managerial Accounting, 7th edition by Miller-Nobles so...
Horngren’s Financial & Managerial Accounting, 7th edition by Miller-Nobles so...Horngren’s Financial & Managerial Accounting, 7th edition by Miller-Nobles so...
Horngren’s Financial & Managerial Accounting, 7th edition by Miller-Nobles so...ssuserf63bd7
 
MAHA Global and IPR: Do Actions Speak Louder Than Words?
MAHA Global and IPR: Do Actions Speak Louder Than Words?MAHA Global and IPR: Do Actions Speak Louder Than Words?
MAHA Global and IPR: Do Actions Speak Louder Than Words?Olivia Kresic
 
WSMM Technology February.March Newsletter_vF.pdf
WSMM Technology February.March Newsletter_vF.pdfWSMM Technology February.March Newsletter_vF.pdf
WSMM Technology February.March Newsletter_vF.pdfJamesConcepcion7
 
NAB Show Exhibitor List 2024 - Exhibitors Data
NAB Show Exhibitor List 2024 - Exhibitors DataNAB Show Exhibitor List 2024 - Exhibitors Data
NAB Show Exhibitor List 2024 - Exhibitors DataExhibitors Data
 
Technical Leaders - Working with the Management Team
Technical Leaders - Working with the Management TeamTechnical Leaders - Working with the Management Team
Technical Leaders - Working with the Management TeamArik Fletcher
 
Pitch Deck Teardown: Xpanceo's $40M Seed deck
Pitch Deck Teardown: Xpanceo's $40M Seed deckPitch Deck Teardown: Xpanceo's $40M Seed deck
Pitch Deck Teardown: Xpanceo's $40M Seed deckHajeJanKamps
 
Guide Complete Set of Residential Architectural Drawings PDF
Guide Complete Set of Residential Architectural Drawings PDFGuide Complete Set of Residential Architectural Drawings PDF
Guide Complete Set of Residential Architectural Drawings PDFChandresh Chudasama
 
Entrepreneurship lessons in Philippines
Entrepreneurship lessons in  PhilippinesEntrepreneurship lessons in  Philippines
Entrepreneurship lessons in PhilippinesDavidSamuel525586
 
Healthcare Feb. & Mar. Healthcare Newsletter
Healthcare Feb. & Mar. Healthcare NewsletterHealthcare Feb. & Mar. Healthcare Newsletter
Healthcare Feb. & Mar. Healthcare NewsletterJamesConcepcion7
 
Unveiling the Soundscape Music for Psychedelic Experiences
Unveiling the Soundscape Music for Psychedelic ExperiencesUnveiling the Soundscape Music for Psychedelic Experiences
Unveiling the Soundscape Music for Psychedelic ExperiencesDoe Paoro
 
PSCC - Capability Statement Presentation
PSCC - Capability Statement PresentationPSCC - Capability Statement Presentation
PSCC - Capability Statement PresentationAnamaria Contreras
 
APRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdfAPRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdfRbc Rbcua
 
Ten Organizational Design Models to align structure and operations to busines...
Ten Organizational Design Models to align structure and operations to busines...Ten Organizational Design Models to align structure and operations to busines...
Ten Organizational Design Models to align structure and operations to busines...Seta Wicaksana
 

Recently uploaded (20)

Traction part 2 - EOS Model JAX Bridges.
Traction part 2 - EOS Model JAX Bridges.Traction part 2 - EOS Model JAX Bridges.
Traction part 2 - EOS Model JAX Bridges.
 
20200128 Ethical by Design - Whitepaper.pdf
20200128 Ethical by Design - Whitepaper.pdf20200128 Ethical by Design - Whitepaper.pdf
20200128 Ethical by Design - Whitepaper.pdf
 
TriStar Gold Corporate Presentation - April 2024
TriStar Gold Corporate Presentation - April 2024TriStar Gold Corporate Presentation - April 2024
TriStar Gold Corporate Presentation - April 2024
 
Go for Rakhi Bazaar and Pick the Latest Bhaiya Bhabhi Rakhi.pptx
Go for Rakhi Bazaar and Pick the Latest Bhaiya Bhabhi Rakhi.pptxGo for Rakhi Bazaar and Pick the Latest Bhaiya Bhabhi Rakhi.pptx
Go for Rakhi Bazaar and Pick the Latest Bhaiya Bhabhi Rakhi.pptx
 
1911 Gold Corporate Presentation Apr 2024.pdf
1911 Gold Corporate Presentation Apr 2024.pdf1911 Gold Corporate Presentation Apr 2024.pdf
1911 Gold Corporate Presentation Apr 2024.pdf
 
Kenya Coconut Production Presentation by Dr. Lalith Perera
Kenya Coconut Production Presentation by Dr. Lalith PereraKenya Coconut Production Presentation by Dr. Lalith Perera
Kenya Coconut Production Presentation by Dr. Lalith Perera
 
Horngren’s Financial & Managerial Accounting, 7th edition by Miller-Nobles so...
Horngren’s Financial & Managerial Accounting, 7th edition by Miller-Nobles so...Horngren’s Financial & Managerial Accounting, 7th edition by Miller-Nobles so...
Horngren’s Financial & Managerial Accounting, 7th edition by Miller-Nobles so...
 
MAHA Global and IPR: Do Actions Speak Louder Than Words?
MAHA Global and IPR: Do Actions Speak Louder Than Words?MAHA Global and IPR: Do Actions Speak Louder Than Words?
MAHA Global and IPR: Do Actions Speak Louder Than Words?
 
WSMM Technology February.March Newsletter_vF.pdf
WSMM Technology February.March Newsletter_vF.pdfWSMM Technology February.March Newsletter_vF.pdf
WSMM Technology February.March Newsletter_vF.pdf
 
NAB Show Exhibitor List 2024 - Exhibitors Data
NAB Show Exhibitor List 2024 - Exhibitors DataNAB Show Exhibitor List 2024 - Exhibitors Data
NAB Show Exhibitor List 2024 - Exhibitors Data
 
Technical Leaders - Working with the Management Team
Technical Leaders - Working with the Management TeamTechnical Leaders - Working with the Management Team
Technical Leaders - Working with the Management Team
 
Pitch Deck Teardown: Xpanceo's $40M Seed deck
Pitch Deck Teardown: Xpanceo's $40M Seed deckPitch Deck Teardown: Xpanceo's $40M Seed deck
Pitch Deck Teardown: Xpanceo's $40M Seed deck
 
Guide Complete Set of Residential Architectural Drawings PDF
Guide Complete Set of Residential Architectural Drawings PDFGuide Complete Set of Residential Architectural Drawings PDF
Guide Complete Set of Residential Architectural Drawings PDF
 
Entrepreneurship lessons in Philippines
Entrepreneurship lessons in  PhilippinesEntrepreneurship lessons in  Philippines
Entrepreneurship lessons in Philippines
 
The Bizz Quiz-E-Summit-E-Cell-IITPatna.pptx
The Bizz Quiz-E-Summit-E-Cell-IITPatna.pptxThe Bizz Quiz-E-Summit-E-Cell-IITPatna.pptx
The Bizz Quiz-E-Summit-E-Cell-IITPatna.pptx
 
Healthcare Feb. & Mar. Healthcare Newsletter
Healthcare Feb. & Mar. Healthcare NewsletterHealthcare Feb. & Mar. Healthcare Newsletter
Healthcare Feb. & Mar. Healthcare Newsletter
 
Unveiling the Soundscape Music for Psychedelic Experiences
Unveiling the Soundscape Music for Psychedelic ExperiencesUnveiling the Soundscape Music for Psychedelic Experiences
Unveiling the Soundscape Music for Psychedelic Experiences
 
PSCC - Capability Statement Presentation
PSCC - Capability Statement PresentationPSCC - Capability Statement Presentation
PSCC - Capability Statement Presentation
 
APRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdfAPRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdf
 
Ten Organizational Design Models to align structure and operations to busines...
Ten Organizational Design Models to align structure and operations to busines...Ten Organizational Design Models to align structure and operations to busines...
Ten Organizational Design Models to align structure and operations to busines...
 

The Current Status of Cyber Security in the BAS Industry

  • 1. New Deal for Buildings The Current Status of Cyber Security in the BAS Industry Smart Building Series 5th Feb 2019
  • 2. New Deal Cybersecurity Summit Held at AHR Expo 2019, January 14, 2019 Atlanta, GA
  • 3. New Deal for Buildings New Deal Objectives Revisit the Relationship between BAS Vendors and Building Owners/Operators newdeal.blog
  • 4. Facility IT The New Deal Landscape HVAC Lighting Security & CCTV Construction & Commissioning Power & Utilities Environment Energy & Building Automation Systems (BAS) Facility Managemen t CMMS (Maintenance ) Hospitality IWMS RE & Property Management Life Safety Infrastructure Big Data Analytics ERP/CRM Cyber Security Comms Facility IT The Application of Information Technology to Maximize the Value of Facilities for their Owners & Occupants
  • 5. Facility IT HVAC Lighting Security & CCTV Construction & Commissioning Power & Utilities Environment Facility Managemen t CMMS (Maintenance ) Hospitality IWMS RE & Property Management Life Safety Infrastructure Big Data Analytics ERP/CRM Cyber Security Comms Attack Surface
  • 7. Historical Timeline for Building Automation Security 20041820 1926 1973 1983 Mechanical & Pneumatic Controls Security Through VPNs & VLANS 1999 2009 CISCO/Cimetrics Begin IT Friendly Security Initiative BACnet IT Working Group Founded Arab Oil Embargo Mini Computer Control BACnet IP Annex J BACnet International Founded BACnet Manufacturer’s Association BACnet Addendum G Started Central Heating Air Conditioning Direct Digital Control 2019 BACnet SC Released (Hopefully Summer 2019) 1995 2018 BACnet SC Public Review And Preliminary Interoperability Testing 2002 BTL Listing Begins
  • 8.
  • 10. BACnet/SC Overview ●A “secure” BACnet communication for TCP/IP networks ○ Uses standard TCP/IP network security technology (TLS) ○ Messages are encrypted ○ Devices are authenticated using certificates ●Compatible with existing BACnet installations ○ BACnet/SC compliant routers will be needed ●Supports both IPv4 and IPv6 10
  • 11. BACnet/SC Deployment ●Centralized BACnet/SC hubs instead of distributed BBMDs ○ One or two hubs per BACnet/SC network (“primary” and “failover”) ●Every BACnet/SC device has a unique certificate ○ Signed by a site’s designated Certificate Authority ●Deployed in VLANs or VPNs, as well as “insecure” networks 11
  • 12. Special Thanks to BACnet IT-WG Contributors ● Dave Robin, Automated Logic ● Carl Neilson, Delta Controls ● Cliff Copass, Johnson Controls ● David Fisher, Polarsoft ● Mike Osborne, Reliable Controls ● Christoph Zeller, Sauter ● Bernhard Isler and Philippe Goetz, Siemens ● Chandra Appanna, Cisco Systems* ● Charles Frankston, Cimetrics* ● … and others 12
  • 13. Security Categories Addressed by BACnet/SC Authentication: Users Devices ✔ Encryption ✔ Authorization Software updates to address vulnerabilities Vulnerability Detection Intrusion Detection Network Management / Monitoring
  • 14. #FacilityIT Securing BAS, an Industry Imperative Presented at the Summit by Andy McMillan, President BACnet International
  • 15. Key Elements of Success ●Goal Alignment ○ Acceleration of evolution to more secure BAS ○ Effective Evolution (smooth migration) ●Audience Identification/Clarification ○ Suppliers ○ Owner/Operators and their Agents (System Designers/Implementers) ●Collective Timeline(s) ●Leverage Existing Organizations ●Open Minds and Respect for Experience
  • 16. Suppliers ●Market Awareness and Tipping Point Review ●Timeline Communication ●BACnet/SC Implementation Training ●BACnet/SC Test Development and Implementation ●Best Practice Development and Dissemination
  • 17. Owner/Operators ●Timeline Communication ●Security Culture Awareness Training ●Best Practice Implementation Development/Dissemination ●IT Manager Communication ●Case Study Development/Dissemination
  • 18. New Deal Cybersecurity Summit Video of the Summit online at summit.newdeal.blog