ICSage Agenda Updates

ICSage is a new addition this year to S4 that focuses on the creation, deployment, use and defense of ICS cyber weapons. It is on the Friday, January 17th following S4x14. See the full agenda and register now. While we were turning away a number of good talks for...

More S4x14 Sessions

Continuing to highlight some sessions that will be at S4x14, Jan 14-17 in Miami Beach. Register Now. SCADA Apologist or SCADA Realist with Eric Byres and Dale Peterson Is Eric a SCADA Apologist or SCADA Realist? Is Dale living in a dream world filled with unrealistic...

S4x14 Sessions

Just in case you lacked the time to view the full S4x14 agenda, here are some highlights: Learn About All Those DNP3 Vulns with Adam Crain and Chris Sistrunk You’ve seen all the ICS-CERT bulletins regarding vulnerabilities in DNP3 protocol stacks. Hear from the...

Friday News & Notes

Whither EnergySec? We wrote about the Dept of Energy defunding of EnergySec/NESCO back in March. It was a major blow and resulted in the loss of a large part of the founding team. Like other small businesses, EnergySec has tried to survive and adjust to succeed in the...

S4x14 Update – 4

Time to register for S4x14. The Friday sessions are almost full. ICSage has 15 seats left, 8 seats left for the Response and Serial Fuzzing of ICS Protocol Stacks class, and 9 seats left for the Introduction to Hardware Hacking for ICS Professionals class. S4x14...

Secure By Design – Part 2 Praying To False Certifications

Many asset owners would like a check box approach to security, where some independent, reputable organization certifies the system or component is secure by design. There are a growing number of security certifications that are trying to meet this need. Even if every...

S4x14 Update

Thanksgiving is over and S4x14 is filling up. Now is the time to guarantee your spot. Check out the agenda and register for Digital Bond’s S4x14, January 14-17 in Miami Beach. Hotel Rooms The last date the conference hotels are holding rooms is 14 December....

Friday News & Notes

And we’re back … with items from recent weeks. A reminder to check out the S4x14 agenda and register for the event Jan 14-17 in Miami Beach. ISA announced that Codenomicon’s fuzzing tools are approved for use in the Communications Robustness Testing...

Secure By Design: Part 1 Basics & RFP

We have covered Insecure By Design issues in ICS repeatedly on this site and at S4, resulting in some challenges to define what would make a PLC Secure By Design. This is a much harder task, but I will present some thoughts in a series of articles beginning here. The...