The Best Online Cybersecurity Training in the World - SANS OnDemand

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

Securing industrial control systems: A peek into building automation security

  • Friday, March 16th, 2018 at 11:00 AM EST (15:00:00 UTC)
  • Thomas Brandstetter
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

You can now attend the webcast using your mobile device!

Overview

A number of talks in the last few years have addressed various topics in the generic area of industrial control system insecurity but only few have tapped into security of building automation systems, albeit its prevalence. The usage of building automation, regardless if in private homes or corporate buildings, aims to optimize comfort, energy efficiency and physical access for its users. Is cyber security part of the equation? Unfortunately, not to the extent one might expect, cyber security is quite often found to be sacrificed either for comfort or efficiency.

 

This webcast leads attendees into the world of building automation control systems and describes common use cases of this fascinating subsection of industrial control systems. In the second part, a primer on relevant building automation protocols will be given. Thirdly, prototypic attack scenarios through building automation systems will be explained that one should consider, and how even without exploits, a number of protocol functions in common building automation protocols like BACnet/IP and KNXnet/IP can support a malicious adversary going for those scenarios.

For penetration testers who would like to explore this interesting field of industrial security research, we also include a section on tooling. We will discuss noteworthy tools both from the security toolbox but also from the building automation toolbox for carrying out a number of attacks or their preparatory steps.

We will close out the webcast by discussing existing security measures proposed by the building automation industry as well as their adoption problems found in this field.

Speaker Bio

Thomas Brandstetter

A computer security expert with almost 20 years of hands-on experience, Prof. Thomas Brandstetter is already a veteran in his field of expertise, cyber security in the industrial sector. 

He is best known as the incident handler of Stuxnet for Siemens in 2010 as well as the founder of the Siemens Product Cyber Emergency Readiness Team, which is still one of the most effective industrial incident and vulnerability response teams worldwide today.

He currently divides his time on the one hand being managing director of Limes Security, a company specializing in top-notch industrial cyber security consulting and secure software development coaching, on the other as being Professor at the University of Applied Sciences St. Poelten, where he teaches various computer security courses at bachelor and master security degree programs. 

In addition, he is active instructor at the prestigious SANS technology institute, where he regularly teaches courses in the field of industrial control system security throughout Europe and the Middle East. He also was appointed recently as Honorary Professor of Cyber Security at the esteemed Faculty of Technology of DeMontfort University in Leicester, UK.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.