The most trusted source for computer security training, certification and research.

select a course
Las Vegas, NV - September 28 - 30, 2006
Global Information Assurance Certification

SANS Training should be attended by all IT staff as they have a wealth of knowledge to give.
-Leigh Lopez, CSVN

SPECIAL

Intermediate SCADA Security: Session 1

Thursday, September 28, 2006 : 8am - 5pm


This course includes the results of the latest research being undertaken at the Idaho National Laboratory's SCADA Test Bed.

Who should attend:

Information security personnel, control system security personnel, network engineers, control system engineers/integrators, and developers.

Agenda:

  • General Security Observations and Pitfalls
  • Control System Network Communications Overview
  • Potential Control System Network Entry Points and Defenses
  • Control System Network Scanning and Vulnerability Identification (in a non-intrusive manner)
  • Network Monitoring and Simple Intrusion Detection
  • Dissecting Control System Protocols
  • Common Programming Pitfalls
  • Modern Hardware and OS Mitigation Strategies
  • Incident Response Essentials for the Control System Community

This course is an updated version of a similar course presented at several SCADA user group meetings and industry conferences.

Accompanying this course is a sample control system network that will be used to demonstrate a couple of exploits used for unauthorized manipulation of the control system and mitigation solutions. This network will also be used during the course for the hands-on exercises that will help you develop control system cyber security skills that you can apply when you return home.

What previous attendees say about this course:

  • "The tools are great and getting to use them is really helpful."
  • "Great hands-on material, I can put the info into practical application now."
  • "The material is directly applicable to the industry."
  • "Outstanding; instructors are very knowledgeable and have hands-on experience."

This is critical to any business to protect sensitive data.
-Melissa Black, Lockheed Martin

Author Statement

My name is Kenneth (Ken) Rohde and I am one of the cyber security researchers at the Department of Energy's Idaho National Laboratory working in the SCADA Test Bed. The SS2 course has received great reviews from process control and security managers and staff who have attended it at several user group meetings. I look forward to presenting it at the SCADA Security Summit in Las Vegas. Structured to help students not only understand exactly how attacks against control systems could be launched and why they work, this course also provides mitigation strategies to increase the cyber security posture of your control system network. Because it is hands-on, you'll get a deeper understanding of how the various tools work.
- Kenneth Rohde