Industrial control systems are used in electric power, water, pipelines, etc. These systems were designed for performance and safety considerations, not security. Traditional IT security technologies, policies, and testing may not apply to these systems. Moreover, there is currently no university with an interdisciplinary program accross multiple engineering disciplines to address control system cyber security. There have already been more than 200 actual control system cyber incidents to date, though most have not been identified as cyber. In the US alone, there have been 4 control system cyber incidents that have killed people, 3 major cyber-related electric outages, 2 nuclear plants shut down from full power, etc. With the advent of Stuxnet, cyber has been introduced as an offensive weapon. The purpose of this presentation is to provide a state-of-the-state view of control system cyber security.
Book: Joe Weiss, Protecting Industrial Control Systems from Electrionic Threats
CNN video: Idaho 'ground zero' in cyber-terror war
Download the slides for this presentation in PDF format.
About the speaker:
Joseph Weiss is an industry expert on control systems and electronic
security of control systems, with more than 35 years of experience in
the energy industry. Mr. Weiss spent more than 14 years at the Electric
Power Research Institute (EPRI) where he led a variety of programs
including the Nuclear Plant Instrumentation and Diagnostics Program, the
Fossil Plant Instrumentation & Controls Program, the Y2K Embedded Systems
Program and, the cyber security for digital control systems.
Applied Control Solutions, LLC
(408) 253-7974 Fax
(408) 832-5396 Cell
joe (dot) weiss (at) realtimeacss (dot) com