SlideShare a Scribd company logo

Cyber security in industrial control & automation systems - Sam Thom and Laura Tomkins, BAE Submarine Division

PROFIBUS and PROFINET InternationaI - PI UK
PROFIBUS and PROFINET InternationaI - PI UK

This talk will draw on the path-of-least-resistance considering lessons from the Ukraine and similar types of attacks, discussing, from an introductory level, good practice secure architecture models and the challenges posed to their implementation by emerging technology and support requirements. Attention will be paid to the way real-world support & operations solutions can unintentionally, or invisibly bridge security enforcement zones, and what this means for your threat model.

Engineering
1 of 20
Download to read offline
Secure Architecture Challenges for Real Businesses Industrial Control & Automation System Security
2PIUK Post-lunch – DEMO to consider Process - Milkshake Machine Many architectural issues to consider: Remote access Business – OT Site – site Process – process Onsite support from 3rd parties Had to drill into one, chosen 3rd party Img - https://homemcr.org/app/uploads/2014/06/Willy-Wonka-and-the-Chocolate-Factory-11.jpg © 2017
3PIUK whoami Sam Thom Security Analyst with BAE Systems Operational Technology Security Hobbyist: Programming Making Hacks © 2017 Socials (new) @blackf3ll Linkedin – brownie points if you find me sam@blackfell.net What does this mean? I’m not a real process engineer!
4PIUK whoami Laura Tomkins Security Analyst with BAE Systems Operational Technology Security Hobbyist: Programming OSINT © 2017 Socials (new) @laurajohnson88 laura.tomkins8430@gmail.com
5PIUK DEMO – Opportunistic Access? DEMO © 2017 Deciding to build milkshake factory Remembering process automation is actually quite difficult Img - https://i.pinimg.com/736x/c5/ef/3a/c5ef3a3e8e02febb4f334a3f6d5f1ac4.jpg - http://images4.fanpop.com/image/photos/17500000/Willy-Wonka-and-the-Chocolate-Factory-willy-wonka-and-the-chocolate-factory-17596131-500-375.jpg
6PIUK DEMO © 2017 Deciding to build milkshake factory Remembering process automation is actually quite difficult
7PIUK DEMO © 2017 Deciding to build milkshake factory Remembering process automation is actually quite difficult
8PIUK DEMO © 2017 Deciding to build milkshake factory Remembering process automation is actually quite difficult
9PIUK© 2017https://www.youtube.com/watch?v=O4VNzX17J2Y&feature=youtu.be Remembering process automation is actually quite difficult
10PIUK This is all James Bond right? Well we know there are incidents. Ukraine - 2015/2016 German Steel Mill – 2014 Cyber Reason honeypot – 2018 As industry develops technology will improve – Need for support remains. Ref - https://www.cybereason.com/blog/industrial-control-system-specialized-hackers Img - http://news.bbcimg.co.uk/media/images/75207000/jpg/_75207026_bear2.jpg © 2017
11PIUK What does this actually mean Aren't we safe because very few attacks are from third parties? Understanding your exposure helped by knowledge of patterns & best practice. The path of least resistance may be buying access online – requires architectural consideration. © 2017
12PIUK What can we learn? Public reporting had positives and negatives - OT/IT not always considered. Attackers will take the easiest effective route How attacks work & develop should inform our Risks All examples hint at architecture related issues. Img - http://weknowmemes.com/wp-content/uploads/2012/11/if-it-look-stupid-but-works-it-aint-stupid.jpg © 2017
13PIUK What does good look like? IEC & NIST focus on segregation, especially from the OT to business SANS ICS-410 offers a pragmatic model – Purdue based. Steel Mill report, OT is not expected to be internet connected Sensible - you wouldn’t allow level1/2 to internet, would you? © 2017
14PIUK Would you? SHODAN / CENCYS © 2017
15PIUK Would you? SHODAN / CENCYS © 2017
16PIUK Would you? SHODAN / CENCYS © 2017
17PIUK Would you? SHODAN / CENCYS © 2017
18PIUK So what is going on? May be mistakes, but business drivers exist. Balance risk vs business value (i.e. cost) – no under/over treating Consume figures with care – incidents not statistically useful Remember honeypot – actors can change part way Img - https://streets.mn/wp-content/uploads/2014/11/SIDEWLAK-PILLLOW-MEME-500x500.jpg © 2017
19PIUK What has architecture ever done for us? Properly zoning, especially special category assets, can help manage associated risk. Layering your enforcement zones - defence in depth. There are solutions – jump boxes, multiple DMZs, 2FA. Hunting and detection enabled, aiding in IR. Enabling a combined SOC visibility – pivot police! © 2017
20PIUK Thank you Questions © 2017

Recommended

Wissensmanagement 4.2
Wissensmanagement 4.2Wissensmanagement 4.2
Wissensmanagement 4.2Karsten Ehms
 
TWISummit 2019 - Take the Pain out of Browser Automation!
TWISummit 2019 - Take the Pain out of Browser Automation!TWISummit 2019 - Take the Pain out of Browser Automation!
TWISummit 2019 - Take the Pain out of Browser Automation!Thoughtworks
 
6 martin heininger - security in embedded systems - the upcoming challenge
6 martin heininger - security in embedded systems - the upcoming challenge6 martin heininger - security in embedded systems - the upcoming challenge
6 martin heininger - security in embedded systems - the upcoming challengeIevgenii Katsan
 
IBM Industrie 4.0 journey @CeBIT
IBM Industrie 4.0 journey @CeBITIBM Industrie 4.0 journey @CeBIT
IBM Industrie 4.0 journey @CeBITPlamen Kiradjiev
 
Live Demo: Accelerate the integration of workday applications
Live Demo: Accelerate the integration of workday applicationsLive Demo: Accelerate the integration of workday applications
Live Demo: Accelerate the integration of workday applicationsSnapLogic
 
How to fail early with you social media project - and why
How to fail early with you social media project - and whyHow to fail early with you social media project - and why
How to fail early with you social media project - and whyKarsten Ehms
 
AI in the enterprise
AI in the enterprise AI in the enterprise
AI in the enterprise Ganesan Narayanasamy
 
2015 12-01 digital transformation in industrial automation sanitized
2015 12-01 digital transformation in industrial automation sanitized2015 12-01 digital transformation in industrial automation sanitized
2015 12-01 digital transformation in industrial automation sanitizedThorsten Schroeer
 

Recommended

Wissensmanagement 4.2
Wissensmanagement 4.2Wissensmanagement 4.2
Wissensmanagement 4.2Karsten Ehms
 
TWISummit 2019 - Take the Pain out of Browser Automation!
TWISummit 2019 - Take the Pain out of Browser Automation!TWISummit 2019 - Take the Pain out of Browser Automation!
TWISummit 2019 - Take the Pain out of Browser Automation!Thoughtworks
 
6 martin heininger - security in embedded systems - the upcoming challenge
6 martin heininger - security in embedded systems - the upcoming challenge6 martin heininger - security in embedded systems - the upcoming challenge
6 martin heininger - security in embedded systems - the upcoming challengeIevgenii Katsan
 
IBM Industrie 4.0 journey @CeBIT
IBM Industrie 4.0 journey @CeBITIBM Industrie 4.0 journey @CeBIT
IBM Industrie 4.0 journey @CeBITPlamen Kiradjiev
 
Live Demo: Accelerate the integration of workday applications
Live Demo: Accelerate the integration of workday applicationsLive Demo: Accelerate the integration of workday applications
Live Demo: Accelerate the integration of workday applicationsSnapLogic
 
How to fail early with you social media project - and why
How to fail early with you social media project - and whyHow to fail early with you social media project - and why
How to fail early with you social media project - and whyKarsten Ehms
 
AI in the enterprise
AI in the enterprise AI in the enterprise
AI in the enterprise Ganesan Narayanasamy
 
2015 12-01 digital transformation in industrial automation sanitized
2015 12-01 digital transformation in industrial automation sanitized2015 12-01 digital transformation in industrial automation sanitized
2015 12-01 digital transformation in industrial automation sanitizedThorsten Schroeer
 
Agile at the Intersection of Mobile, Cloud, and the Internet of Things
Agile at the Intersection of Mobile, Cloud, and the Internet of ThingsAgile at the Intersection of Mobile, Cloud, and the Internet of Things
Agile at the Intersection of Mobile, Cloud, and the Internet of ThingsTechWell
 
Modern Data Platforms
Modern Data Platforms Modern Data Platforms
Modern Data Platforms Arne Roßmann
 
IoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an HourIoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an HourTaisuke Yamada
 
TWISummit 2019 - Build Security In
TWISummit 2019 - Build Security InTWISummit 2019 - Build Security In
TWISummit 2019 - Build Security InThoughtworks
 
Computer Vision, Machine Learning and Mobile Robotics
Computer Vision, Machine Learning and Mobile RoboticsComputer Vision, Machine Learning and Mobile Robotics
Computer Vision, Machine Learning and Mobile RoboticsOWOLABI Yussuf Kehinde
 
Integrating Service Mesh with Kubernetes-based connected vehicle platform
Integrating Service Mesh with Kubernetes-based connected vehicle platformIntegrating Service Mesh with Kubernetes-based connected vehicle platform
Integrating Service Mesh with Kubernetes-based connected vehicle platformJun Kai Yong
 
The Future of Infrastructure: Key Trends to consider
The Future of Infrastructure: Key Trends to considerThe Future of Infrastructure: Key Trends to consider
The Future of Infrastructure: Key Trends to considerCapgemini
 
from shadow IT to empowered IT-asanka 2014 08-gartner catalyst
from shadow IT to empowered IT-asanka 2014 08-gartner catalystfrom shadow IT to empowered IT-asanka 2014 08-gartner catalyst
from shadow IT to empowered IT-asanka 2014 08-gartner catalystWSO2
 
From Shadow IT to Empowered IT: Unshackling Your Developers’ Creativity!
From Shadow IT to Empowered IT: Unshackling Your Developers’ Creativity!From Shadow IT to Empowered IT: Unshackling Your Developers’ Creativity!
From Shadow IT to Empowered IT: Unshackling Your Developers’ Creativity!WSO2
 
CENDOO & ai one SemTech presentation
CENDOO & ai one SemTech presentationCENDOO & ai one SemTech presentation
CENDOO & ai one SemTech presentationCENDOO AG
 
Ahluwalia ibm up con keynote (published)
Ahluwalia ibm up con keynote (published)Ahluwalia ibm up con keynote (published)
Ahluwalia ibm up con keynote (published)sapenov
 
Keynote Ouverture Plénière - Sébastien Verger
Keynote Ouverture Plénière - Sébastien VergerKeynote Ouverture Plénière - Sébastien Verger
Keynote Ouverture Plénière - Sébastien VergerRSD
 
Ibm software network2012 claudio cinquepalmi #ibmsocialbiz
Ibm software network2012 claudio cinquepalmi #ibmsocialbiz Ibm software network2012 claudio cinquepalmi #ibmsocialbiz
Ibm software network2012 claudio cinquepalmi #ibmsocialbiz Claudio Cinquepalmi
 
IBM Bluemix Tech Meetup 18-02-2015
IBM Bluemix Tech Meetup 18-02-2015IBM Bluemix Tech Meetup 18-02-2015
IBM Bluemix Tech Meetup 18-02-2015gjuljo
 
Future Role of the Architect
Future Role of the ArchitectFuture Role of the Architect
Future Role of the ArchitectRiccardo Bennett-Lovsey
 
Plm 2
Plm 2Plm 2
Plm 2Alex Chuê
 
Is it harder to find a taxi when it is raining?
Is it harder to find a taxi when it is raining? Is it harder to find a taxi when it is raining?
Is it harder to find a taxi when it is raining? Wilfried Hoge
 
We4IT lcty 2013 - captain mobility - mobile domino applications offline capab...
We4IT lcty 2013 - captain mobility - mobile domino applications offline capab...We4IT lcty 2013 - captain mobility - mobile domino applications offline capab...
We4IT lcty 2013 - captain mobility - mobile domino applications offline capab...We4IT Group
 
Innotech Vietnam Profile
Innotech Vietnam ProfileInnotech Vietnam Profile
Innotech Vietnam ProfileLe Phuong
 
CheckPoint Software
CheckPoint SoftwareCheckPoint Software
CheckPoint SoftwareJanis Gloystein
 
11. PI_Ford_Dunton_IOLINK_Safety.pdf
11. PI_Ford_Dunton_IOLINK_Safety.pdf11. PI_Ford_Dunton_IOLINK_Safety.pdf
11. PI_Ford_Dunton_IOLINK_Safety.pdfPROFIBUS and PROFINET InternationaI - PI UK
 
7. Ford_Dunton_TSN_CRM.pdf
7. Ford_Dunton_TSN_CRM.pdf7. Ford_Dunton_TSN_CRM.pdf
7. Ford_Dunton_TSN_CRM.pdfPROFIBUS and PROFINET InternationaI - PI UK
 

More Related Content

Similar to Cyber security in industrial control & automation systems - Sam Thom and Laura Tomkins, BAE Submarine Division

Agile at the Intersection of Mobile, Cloud, and the Internet of Things
Agile at the Intersection of Mobile, Cloud, and the Internet of ThingsAgile at the Intersection of Mobile, Cloud, and the Internet of Things
Agile at the Intersection of Mobile, Cloud, and the Internet of ThingsTechWell
 
Modern Data Platforms
Modern Data Platforms Modern Data Platforms
Modern Data Platforms Arne Roßmann
 
IoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an HourIoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an HourTaisuke Yamada
 
TWISummit 2019 - Build Security In
TWISummit 2019 - Build Security InTWISummit 2019 - Build Security In
TWISummit 2019 - Build Security InThoughtworks
 
Computer Vision, Machine Learning and Mobile Robotics
Computer Vision, Machine Learning and Mobile RoboticsComputer Vision, Machine Learning and Mobile Robotics
Computer Vision, Machine Learning and Mobile RoboticsOWOLABI Yussuf Kehinde
 
Integrating Service Mesh with Kubernetes-based connected vehicle platform
Integrating Service Mesh with Kubernetes-based connected vehicle platformIntegrating Service Mesh with Kubernetes-based connected vehicle platform
Integrating Service Mesh with Kubernetes-based connected vehicle platformJun Kai Yong
 
The Future of Infrastructure: Key Trends to consider
The Future of Infrastructure: Key Trends to considerThe Future of Infrastructure: Key Trends to consider
The Future of Infrastructure: Key Trends to considerCapgemini
 
from shadow IT to empowered IT-asanka 2014 08-gartner catalyst
from shadow IT to empowered IT-asanka 2014 08-gartner catalystfrom shadow IT to empowered IT-asanka 2014 08-gartner catalyst
from shadow IT to empowered IT-asanka 2014 08-gartner catalystWSO2
 
From Shadow IT to Empowered IT: Unshackling Your Developers’ Creativity!
From Shadow IT to Empowered IT: Unshackling Your Developers’ Creativity!From Shadow IT to Empowered IT: Unshackling Your Developers’ Creativity!
From Shadow IT to Empowered IT: Unshackling Your Developers’ Creativity!WSO2
 
CENDOO & ai one SemTech presentation
CENDOO & ai one SemTech presentationCENDOO & ai one SemTech presentation
CENDOO & ai one SemTech presentationCENDOO AG
 
Ahluwalia ibm up con keynote (published)
Ahluwalia ibm up con keynote (published)Ahluwalia ibm up con keynote (published)
Ahluwalia ibm up con keynote (published)sapenov
 
Keynote Ouverture Plénière - Sébastien Verger
Keynote Ouverture Plénière - Sébastien VergerKeynote Ouverture Plénière - Sébastien Verger
Keynote Ouverture Plénière - Sébastien VergerRSD
 
Ibm software network2012 claudio cinquepalmi #ibmsocialbiz
Ibm software network2012 claudio cinquepalmi #ibmsocialbiz Ibm software network2012 claudio cinquepalmi #ibmsocialbiz
Ibm software network2012 claudio cinquepalmi #ibmsocialbiz Claudio Cinquepalmi
 
IBM Bluemix Tech Meetup 18-02-2015
IBM Bluemix Tech Meetup 18-02-2015IBM Bluemix Tech Meetup 18-02-2015
IBM Bluemix Tech Meetup 18-02-2015gjuljo
 
Is it harder to find a taxi when it is raining?
Is it harder to find a taxi when it is raining? Is it harder to find a taxi when it is raining?
Is it harder to find a taxi when it is raining? Wilfried Hoge
 
We4IT lcty 2013 - captain mobility - mobile domino applications offline capab...
We4IT lcty 2013 - captain mobility - mobile domino applications offline capab...We4IT lcty 2013 - captain mobility - mobile domino applications offline capab...
We4IT lcty 2013 - captain mobility - mobile domino applications offline capab...We4IT Group
 
Innotech Vietnam Profile
Innotech Vietnam ProfileInnotech Vietnam Profile
Innotech Vietnam ProfileLe Phuong
 

Similar to Cyber security in industrial control & automation systems - Sam Thom and Laura Tomkins, BAE Submarine Division (20)

Agile at the Intersection of Mobile, Cloud, and the Internet of Things
Agile at the Intersection of Mobile, Cloud, and the Internet of ThingsAgile at the Intersection of Mobile, Cloud, and the Internet of Things
Agile at the Intersection of Mobile, Cloud, and the Internet of Things
 
Modern Data Platforms
Modern Data Platforms Modern Data Platforms
Modern Data Platforms
 
IoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an HourIoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an Hour
 
TWISummit 2019 - Build Security In
TWISummit 2019 - Build Security InTWISummit 2019 - Build Security In
TWISummit 2019 - Build Security In
 
Computer Vision, Machine Learning and Mobile Robotics
Computer Vision, Machine Learning and Mobile RoboticsComputer Vision, Machine Learning and Mobile Robotics
Computer Vision, Machine Learning and Mobile Robotics
 
Integrating Service Mesh with Kubernetes-based connected vehicle platform
Integrating Service Mesh with Kubernetes-based connected vehicle platformIntegrating Service Mesh with Kubernetes-based connected vehicle platform
Integrating Service Mesh with Kubernetes-based connected vehicle platform
 
The Future of Infrastructure: Key Trends to consider
The Future of Infrastructure: Key Trends to considerThe Future of Infrastructure: Key Trends to consider
The Future of Infrastructure: Key Trends to consider
 
from shadow IT to empowered IT-asanka 2014 08-gartner catalyst
from shadow IT to empowered IT-asanka 2014 08-gartner catalystfrom shadow IT to empowered IT-asanka 2014 08-gartner catalyst
from shadow IT to empowered IT-asanka 2014 08-gartner catalyst
 
From Shadow IT to Empowered IT: Unshackling Your Developers’ Creativity!
From Shadow IT to Empowered IT: Unshackling Your Developers’ Creativity!From Shadow IT to Empowered IT: Unshackling Your Developers’ Creativity!
From Shadow IT to Empowered IT: Unshackling Your Developers’ Creativity!
 
CENDOO & ai one SemTech presentation
CENDOO & ai one SemTech presentationCENDOO & ai one SemTech presentation
CENDOO & ai one SemTech presentation
 
Ahluwalia ibm up con keynote (published)
Ahluwalia ibm up con keynote (published)Ahluwalia ibm up con keynote (published)
Ahluwalia ibm up con keynote (published)
 
Keynote Ouverture Plénière - Sébastien Verger
Keynote Ouverture Plénière - Sébastien VergerKeynote Ouverture Plénière - Sébastien Verger
Keynote Ouverture Plénière - Sébastien Verger
 
Ibm software network2012 claudio cinquepalmi #ibmsocialbiz
Ibm software network2012 claudio cinquepalmi #ibmsocialbiz Ibm software network2012 claudio cinquepalmi #ibmsocialbiz
Ibm software network2012 claudio cinquepalmi #ibmsocialbiz
 
IBM Bluemix Tech Meetup 18-02-2015
IBM Bluemix Tech Meetup 18-02-2015IBM Bluemix Tech Meetup 18-02-2015
IBM Bluemix Tech Meetup 18-02-2015
 
Future Role of the Architect
Future Role of the ArchitectFuture Role of the Architect
Future Role of the Architect
 
Plm 2
Plm 2Plm 2
Plm 2
 
Is it harder to find a taxi when it is raining?
Is it harder to find a taxi when it is raining? Is it harder to find a taxi when it is raining?
Is it harder to find a taxi when it is raining?
 
We4IT lcty 2013 - captain mobility - mobile domino applications offline capab...
We4IT lcty 2013 - captain mobility - mobile domino applications offline capab...We4IT lcty 2013 - captain mobility - mobile domino applications offline capab...
We4IT lcty 2013 - captain mobility - mobile domino applications offline capab...
 
Innotech Vietnam Profile
Innotech Vietnam ProfileInnotech Vietnam Profile
Innotech Vietnam Profile
 
CheckPoint Software
CheckPoint SoftwareCheckPoint Software
CheckPoint Software
 

More from PROFIBUS and PROFINET InternationaI - PI UK

More from PROFIBUS and PROFINET InternationaI - PI UK (20)

11. PI_Ford_Dunton_IOLINK_Safety.pdf
11. PI_Ford_Dunton_IOLINK_Safety.pdf11. PI_Ford_Dunton_IOLINK_Safety.pdf
11. PI_Ford_Dunton_IOLINK_Safety.pdf
 
7. Ford_Dunton_TSN_CRM.pdf
7. Ford_Dunton_TSN_CRM.pdf7. Ford_Dunton_TSN_CRM.pdf
7. Ford_Dunton_TSN_CRM.pdf
 
6. SRCI Profibus International v2.pdf
6. SRCI Profibus International v2.pdf6. SRCI Profibus International v2.pdf
6. SRCI Profibus International v2.pdf
 
13. CEMA - AUTOMOTIVE.pdf
13. CEMA - AUTOMOTIVE.pdf13. CEMA - AUTOMOTIVE.pdf
13. CEMA - AUTOMOTIVE.pdf
 
12. PI_OPC_UK.pdf
12. PI_OPC_UK.pdf12. PI_OPC_UK.pdf
12. PI_OPC_UK.pdf
 
4. APL PI Presentation 2023.pdf
4. APL PI Presentation 2023.pdf4. APL PI Presentation 2023.pdf
4. APL PI Presentation 2023.pdf
 
10. PI_Dunton - OT Security.pdf
10. PI_Dunton - OT Security.pdf10. PI_Dunton - OT Security.pdf
10. PI_Dunton - OT Security.pdf
 
9. PA DIM presentation.pdf
9. PA DIM presentation.pdf9. PA DIM presentation.pdf
9. PA DIM presentation.pdf
 
3. Ford Dunton Mark Freeman.pdf
3. Ford Dunton Mark Freeman.pdf3. Ford Dunton Mark Freeman.pdf
3. Ford Dunton Mark Freeman.pdf
 
2. Ford_Dunton_Introductions_CRM.pdf
2. Ford_Dunton_Introductions_CRM.pdf2. Ford_Dunton_Introductions_CRM.pdf
2. Ford_Dunton_Introductions_CRM.pdf
 
PI UK Seminar (Nov 2021) - Online Certified Training Courses
PI UK Seminar (Nov 2021) - Online Certified Training CoursesPI UK Seminar (Nov 2021) - Online Certified Training Courses
PI UK Seminar (Nov 2021) - Online Certified Training Courses
 
PI UK Seminar (Nov 2021) - PROFINET Implementation and Testing
PI UK Seminar (Nov 2021) - PROFINET Implementation and TestingPI UK Seminar (Nov 2021) - PROFINET Implementation and Testing
PI UK Seminar (Nov 2021) - PROFINET Implementation and Testing
 
PI UK Seminar (Nov 2021) - PROFINET Design Basics
PI UK Seminar (Nov 2021) - PROFINET Design BasicsPI UK Seminar (Nov 2021) - PROFINET Design Basics
PI UK Seminar (Nov 2021) - PROFINET Design Basics
 
PI UK Seminar (Nov 2021) - PROFINET Gateways
PI UK Seminar (Nov 2021) - PROFINET GatewaysPI UK Seminar (Nov 2021) - PROFINET Gateways
PI UK Seminar (Nov 2021) - PROFINET Gateways
 
PI UK Seminar (Nov 2021) - PROFIBUS and PROFINET Device Configuration
PI UK Seminar (Nov 2021) - PROFIBUS and PROFINET Device ConfigurationPI UK Seminar (Nov 2021) - PROFIBUS and PROFINET Device Configuration
PI UK Seminar (Nov 2021) - PROFIBUS and PROFINET Device Configuration
 
PI UK Seminar (Nov 2021) - PROFINET of Things
PI UK Seminar (Nov 2021) - PROFINET of ThingsPI UK Seminar (Nov 2021) - PROFINET of Things
PI UK Seminar (Nov 2021) - PROFINET of Things
 
PI UK Seminar (Nov 2021) - Update on APL
PI UK Seminar (Nov 2021) - Update on APLPI UK Seminar (Nov 2021) - Update on APL
PI UK Seminar (Nov 2021) - Update on APL
 
PROFINET to PROFIBUS gateways - Peter Thomas - 03 june 2020
PROFINET to PROFIBUS gateways - Peter Thomas - 03 june 2020PROFINET to PROFIBUS gateways - Peter Thomas - 03 june 2020
PROFINET to PROFIBUS gateways - Peter Thomas - 03 june 2020
 
PROFIBUS lightning surge protection - Peter Thomas, CSL - 10 june 2020
PROFIBUS lightning surge protection - Peter Thomas, CSL - 10 june 2020 PROFIBUS lightning surge protection - Peter Thomas, CSL - 10 june 2020
PROFIBUS lightning surge protection - Peter Thomas, CSL - 10 june 2020
 
PROFINET network diagnostics and support - May 2020 - Peter Thomas
PROFINET network diagnostics and support - May 2020 - Peter ThomasPROFINET network diagnostics and support - May 2020 - Peter Thomas
PROFINET network diagnostics and support - May 2020 - Peter Thomas
 

Recently uploaded

CCS355 Neural Network & Deep Learning UNIT III notes and Question bank .pdf
CCS355 Neural Network & Deep Learning UNIT III notes and Question bank .pdfCCS355 Neural Network & Deep Learning UNIT III notes and Question bank .pdf
CCS355 Neural Network & Deep Learning UNIT III notes and Question bank .pdfAsst.prof M.Gokilavani
 
Sachpazis Costas: Geotechnical Engineering: A student's Perspective Introduction
Sachpazis Costas: Geotechnical Engineering: A student's Perspective IntroductionSachpazis Costas: Geotechnical Engineering: A student's Perspective Introduction
Sachpazis Costas: Geotechnical Engineering: A student's Perspective IntroductionDr.Costas Sachpazis
 
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...srsj9000
 
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...Soham Mondal
 
College Call Girls Nashik Nehal 7001305949 Independent Escort Service Nashik
College Call Girls Nashik Nehal 7001305949 Independent Escort Service NashikCollege Call Girls Nashik Nehal 7001305949 Independent Escort Service Nashik
College Call Girls Nashik Nehal 7001305949 Independent Escort Service NashikCall Girls in Nagpur High Profile
 
Call Girls Delhi {Jodhpur} 9711199012 high profile service
Call Girls Delhi {Jodhpur} 9711199012 high profile serviceCall Girls Delhi {Jodhpur} 9711199012 high profile service
Call Girls Delhi {Jodhpur} 9711199012 high profile servicerehmti665
 
Current Transformer Drawing and GTP for MSETCL
Current Transformer Drawing and GTP for MSETCLCurrent Transformer Drawing and GTP for MSETCL
Current Transformer Drawing and GTP for MSETCLDeelipZope
 
VICTOR MAESTRE RAMIREZ - Planetary Defender on NASA's Double Asteroid Redirec...
VICTOR MAESTRE RAMIREZ - Planetary Defender on NASA's Double Asteroid Redirec...VICTOR MAESTRE RAMIREZ - Planetary Defender on NASA's Double Asteroid Redirec...
VICTOR MAESTRE RAMIREZ - Planetary Defender on NASA's Double Asteroid Redirec...VICTOR MAESTRE RAMIREZ
 
chaitra-1.pptx fake news detection using machine learning
chaitra-1.pptx fake news detection using machine learningchaitra-1.pptx fake news detection using machine learning
chaitra-1.pptx fake news detection using machine learningmisbanausheenparvam
 
Architect Hassan Khalil Portfolio for 2024
Architect Hassan Khalil Portfolio for 2024Architect Hassan Khalil Portfolio for 2024
Architect Hassan Khalil Portfolio for 2024hassan khalil
 
Oxy acetylene welding presentation note.
Oxy acetylene welding presentation note.Oxy acetylene welding presentation note.
Oxy acetylene welding presentation note.eptoze12
 
Application of Residue Theorem to evaluate real integrations.pptx
Application of Residue Theorem to evaluate real integrations.pptxApplication of Residue Theorem to evaluate real integrations.pptx
Application of Residue Theorem to evaluate real integrations.pptx959SahilShah
 
microprocessor 8085 and its interfacing
microprocessor 8085 and its interfacingmicroprocessor 8085 and its interfacing
microprocessor 8085 and its interfacingjaychoudhary37
 
HARMONY IN THE NATURE AND EXISTENCE - Unit-IV
HARMONY IN THE NATURE AND EXISTENCE - Unit-IVHARMONY IN THE NATURE AND EXISTENCE - Unit-IV
HARMONY IN THE NATURE AND EXISTENCE - Unit-IVRajaP95
 
HARMONY IN THE HUMAN BEING - Unit-II UHV-2
HARMONY IN THE HUMAN BEING - Unit-II UHV-2HARMONY IN THE HUMAN BEING - Unit-II UHV-2
HARMONY IN THE HUMAN BEING - Unit-II UHV-2RajaP95
 
Study on Air-Water & Water-Water Heat Exchange in a Finned Tube Exchanger
Study on Air-Water & Water-Water Heat Exchange in a Finned Tube ExchangerStudy on Air-Water & Water-Water Heat Exchange in a Finned Tube Exchanger
Study on Air-Water & Water-Water Heat Exchange in a Finned Tube ExchangerAnamika Sarkar
 
Call Girls Narol 7397865700 Independent Call Girls
Call Girls Narol 7397865700 Independent Call GirlsCall Girls Narol 7397865700 Independent Call Girls
Call Girls Narol 7397865700 Independent Call Girlsssuser7cb4ff
 
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur EscortsHigh Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur EscortsCall Girls in Nagpur High Profile
 

Recently uploaded (20)

CCS355 Neural Network & Deep Learning UNIT III notes and Question bank .pdf
CCS355 Neural Network & Deep Learning UNIT III notes and Question bank .pdfCCS355 Neural Network & Deep Learning UNIT III notes and Question bank .pdf
CCS355 Neural Network & Deep Learning UNIT III notes and Question bank .pdf
 
Sachpazis Costas: Geotechnical Engineering: A student's Perspective Introduction
Sachpazis Costas: Geotechnical Engineering: A student's Perspective IntroductionSachpazis Costas: Geotechnical Engineering: A student's Perspective Introduction
Sachpazis Costas: Geotechnical Engineering: A student's Perspective Introduction
 
★ CALL US 9953330565 ( HOT Young Call Girls In Badarpur delhi NCR
★ CALL US 9953330565 ( HOT Young Call Girls In Badarpur delhi NCR★ CALL US 9953330565 ( HOT Young Call Girls In Badarpur delhi NCR
★ CALL US 9953330565 ( HOT Young Call Girls In Badarpur delhi NCR
 
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...
 
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
 
College Call Girls Nashik Nehal 7001305949 Independent Escort Service Nashik
College Call Girls Nashik Nehal 7001305949 Independent Escort Service NashikCollege Call Girls Nashik Nehal 7001305949 Independent Escort Service Nashik
College Call Girls Nashik Nehal 7001305949 Independent Escort Service Nashik
 
Call Girls Delhi {Jodhpur} 9711199012 high profile service
Call Girls Delhi {Jodhpur} 9711199012 high profile serviceCall Girls Delhi {Jodhpur} 9711199012 high profile service
Call Girls Delhi {Jodhpur} 9711199012 high profile service
 
Current Transformer Drawing and GTP for MSETCL
Current Transformer Drawing and GTP for MSETCLCurrent Transformer Drawing and GTP for MSETCL
Current Transformer Drawing and GTP for MSETCL
 
VICTOR MAESTRE RAMIREZ - Planetary Defender on NASA's Double Asteroid Redirec...
VICTOR MAESTRE RAMIREZ - Planetary Defender on NASA's Double Asteroid Redirec...VICTOR MAESTRE RAMIREZ - Planetary Defender on NASA's Double Asteroid Redirec...
VICTOR MAESTRE RAMIREZ - Planetary Defender on NASA's Double Asteroid Redirec...
 
Call Us -/9953056974- Call Girls In Vikaspuri-/- Delhi NCR
Call Us -/9953056974- Call Girls In Vikaspuri-/- Delhi NCRCall Us -/9953056974- Call Girls In Vikaspuri-/- Delhi NCR
Call Us -/9953056974- Call Girls In Vikaspuri-/- Delhi NCR
 
chaitra-1.pptx fake news detection using machine learning
chaitra-1.pptx fake news detection using machine learningchaitra-1.pptx fake news detection using machine learning
chaitra-1.pptx fake news detection using machine learning
 
Architect Hassan Khalil Portfolio for 2024
Architect Hassan Khalil Portfolio for 2024Architect Hassan Khalil Portfolio for 2024
Architect Hassan Khalil Portfolio for 2024
 
Oxy acetylene welding presentation note.
Oxy acetylene welding presentation note.Oxy acetylene welding presentation note.
Oxy acetylene welding presentation note.
 
Application of Residue Theorem to evaluate real integrations.pptx
Application of Residue Theorem to evaluate real integrations.pptxApplication of Residue Theorem to evaluate real integrations.pptx
Application of Residue Theorem to evaluate real integrations.pptx
 
microprocessor 8085 and its interfacing
microprocessor 8085 and its interfacingmicroprocessor 8085 and its interfacing
microprocessor 8085 and its interfacing
 
HARMONY IN THE NATURE AND EXISTENCE - Unit-IV
HARMONY IN THE NATURE AND EXISTENCE - Unit-IVHARMONY IN THE NATURE AND EXISTENCE - Unit-IV
HARMONY IN THE NATURE AND EXISTENCE - Unit-IV
 
HARMONY IN THE HUMAN BEING - Unit-II UHV-2
HARMONY IN THE HUMAN BEING - Unit-II UHV-2HARMONY IN THE HUMAN BEING - Unit-II UHV-2
HARMONY IN THE HUMAN BEING - Unit-II UHV-2
 
Study on Air-Water & Water-Water Heat Exchange in a Finned Tube Exchanger
Study on Air-Water & Water-Water Heat Exchange in a Finned Tube ExchangerStudy on Air-Water & Water-Water Heat Exchange in a Finned Tube Exchanger
Study on Air-Water & Water-Water Heat Exchange in a Finned Tube Exchanger
 
Call Girls Narol 7397865700 Independent Call Girls
Call Girls Narol 7397865700 Independent Call GirlsCall Girls Narol 7397865700 Independent Call Girls
Call Girls Narol 7397865700 Independent Call Girls
 
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur EscortsHigh Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur Escorts
 

Cyber security in industrial control & automation systems - Sam Thom and Laura Tomkins, BAE Submarine Division

  • 1. Secure Architecture Challenges for Real Businesses Industrial Control & Automation System Security
  • 2. 2PIUK Post-lunch – DEMO to consider Process - Milkshake Machine Many architectural issues to consider: Remote access Business – OT Site – site Process – process Onsite support from 3rd parties Had to drill into one, chosen 3rd party Img - https://homemcr.org/app/uploads/2014/06/Willy-Wonka-and-the-Chocolate-Factory-11.jpg © 2017
  • 3. 3PIUK whoami Sam Thom Security Analyst with BAE Systems Operational Technology Security Hobbyist: Programming Making Hacks © 2017 Socials (new) @blackf3ll Linkedin – brownie points if you find me sam@blackfell.net What does this mean? I’m not a real process engineer!
  • 4. 4PIUK whoami Laura Tomkins Security Analyst with BAE Systems Operational Technology Security Hobbyist: Programming OSINT © 2017 Socials (new) @laurajohnson88 laura.tomkins8430@gmail.com
  • 5. 5PIUK DEMO – Opportunistic Access? DEMO © 2017 Deciding to build milkshake factory Remembering process automation is actually quite difficult Img - https://i.pinimg.com/736x/c5/ef/3a/c5ef3a3e8e02febb4f334a3f6d5f1ac4.jpg - http://images4.fanpop.com/image/photos/17500000/Willy-Wonka-and-the-Chocolate-Factory-willy-wonka-and-the-chocolate-factory-17596131-500-375.jpg
  • 6. 6PIUK DEMO © 2017 Deciding to build milkshake factory Remembering process automation is actually quite difficult
  • 7. 7PIUK DEMO © 2017 Deciding to build milkshake factory Remembering process automation is actually quite difficult
  • 8. 8PIUK DEMO © 2017 Deciding to build milkshake factory Remembering process automation is actually quite difficult
  • 10. 10PIUK This is all James Bond right? Well we know there are incidents. Ukraine - 2015/2016 German Steel Mill – 2014 Cyber Reason honeypot – 2018 As industry develops technology will improve – Need for support remains. Ref - https://www.cybereason.com/blog/industrial-control-system-specialized-hackers Img - http://news.bbcimg.co.uk/media/images/75207000/jpg/_75207026_bear2.jpg © 2017
  • 11. 11PIUK What does this actually mean Aren't we safe because very few attacks are from third parties? Understanding your exposure helped by knowledge of patterns & best practice. The path of least resistance may be buying access online – requires architectural consideration. © 2017
  • 12. 12PIUK What can we learn? Public reporting had positives and negatives - OT/IT not always considered. Attackers will take the easiest effective route How attacks work & develop should inform our Risks All examples hint at architecture related issues. Img - http://weknowmemes.com/wp-content/uploads/2012/11/if-it-look-stupid-but-works-it-aint-stupid.jpg © 2017
  • 13. 13PIUK What does good look like? IEC & NIST focus on segregation, especially from the OT to business SANS ICS-410 offers a pragmatic model – Purdue based. Steel Mill report, OT is not expected to be internet connected Sensible - you wouldn’t allow level1/2 to internet, would you? © 2017
  • 14. 14PIUK Would you? SHODAN / CENCYS © 2017
  • 15. 15PIUK Would you? SHODAN / CENCYS © 2017
  • 16. 16PIUK Would you? SHODAN / CENCYS © 2017
  • 17. 17PIUK Would you? SHODAN / CENCYS © 2017
  • 18. 18PIUK So what is going on? May be mistakes, but business drivers exist. Balance risk vs business value (i.e. cost) – no under/over treating Consume figures with care – incidents not statistically useful Remember honeypot – actors can change part way Img - https://streets.mn/wp-content/uploads/2014/11/SIDEWLAK-PILLLOW-MEME-500x500.jpg © 2017
  • 19. 19PIUK What has architecture ever done for us? Properly zoning, especially special category assets, can help manage associated risk. Layering your enforcement zones - defence in depth. There are solutions – jump boxes, multiple DMZs, 2FA. Hunting and detection enabled, aiding in IR. Enabling a combined SOC visibility – pivot police! © 2017