Last Chance: MacBook Air, Dell XPS 13 or $600 off with SANS Online Training Ends December 7

SANSFIRE 2012

Washington, DC | Fri, Jul 6 - Sun, Jul 15, 2012
This event is over,
but there are more training opportunities.

Authentication Issues Between Entities During Protocol Message Exchange in SCADA Systems

  • Manuel Humberto Santander Pelaez, ISC Handler

The SCADA system protocols are designed to be simple and fast so they can respond quickly to events that affect the system. However, this feature makes many of them to not authenticate the messages, and if a command is sent, it just runs it without previous validation. In this talk we will see a demonstration on how to control a RTU and the proposed solutions for a power SCADA and water supply SCADA posing as the central management system.


Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
  • Vendor: Events hosted by external vendor exhibitors.
Additional Sessions
Session Speaker Type
GIAC Program Overview Jeff Frisk, GIAC Director Special Events
SANS Technology Institute Brief President Stephen Northcutt Special Events
Dude, Your Car is PWNed! Rob VandenBrink, ISC Handler SANS@Night
Authentication Issues Between Entities During Protocol Message Exchange in SCADA Systems Manuel Humberto Santander Pelaez, ISC Handler SANS@Night
OWASP Top Ten Tools and Tactics Russ McRee, ISC Handler SANS@Night
Updates on the Exploit Kits Front: You are the Target! Pedro Bueno, ISC Handler SANS@Night
Packet and Malware Collection for the Home Network, Research Starts at Home! Richard Porter, ISC Handler SANS@Night
Critical Infrastructure Control Systems Cybersecurity Matt Luallen SANS@Night
Everything's Hacked! What We Can Do To Help Secure Embedded Devices Jay Radcliffe SANS@Night
The SANS360: The Security Crystal Ball Rob Lee, Moderator SANS@Night
What's New in Windows 8 and Server 2012? Jason Fossen SANS@Night
Monday, July 9
Session Speaker Time Type
General Session - Welcome to SANS Dr. Eric Cole Monday, July 9th, 8:15am - 8:45am Special Events
State of the Internet Panel Discussion Hosted by Dr. Johannes Ullrich, ISC Director and Marcus Sachs, ISC Director Emeritus Monday, July 9th, 7:15pm - 9:15pm Special Events
Tuesday, July 10
Session Speaker Time Type
Vendor Sponsored Lunch Session Tuesday, July 10th, 12:00pm - 1:30pm Vendor Event
Vendor Welcome Reception Tuesday, July 10th, 5:00pm - 7:00pm Vendor Event
Thursday, July 12
Session Speaker Time Type
Test your Knowledge and Capture-the-Flag Skills in an Interactive Security Challenge! Yori Kvitchko Thursday, July 12th, 6:30pm - 9:30pm Special Events
Friday, July 13
Session Speaker Time Type
Test your Knowledge and Capture-the-Flag Skills in an Interactive Security Challenge! Yori Kvitchko Friday, July 13th, 6:30pm - 9:30pm Special Events