Attending this event?
Welcome to the Interactive Agenda for SecurityWeek’s 2017 ICS Cyber Security Conference! (View the full conference website here)  

(You can register for the conference here)
View analytic
Monday, October 23 • 1:30pm - 2:15pm
Why PKI Matters for ICS Security

Sign up or log in to save this to your schedule and see who's attending!

This presentation will discuss the role of certificates in ICS device security, including how they are used and why they are important.  It will also cover how certificates are managed, distributed, and used.  It will cover shortcomings of existing PKI solutions used for Enterprise IT environments and the Internet itself for ICS deployments.  An overview of the requirements of a PKI solution for ICS will be provided. 

PKI (Public Key Infrastructure) is a set of security technologies and services for managing authentication of traditional computer systems, but can also be applied to protect embedded computer systems for industrial and manufacturing applications. 

Topics covered include:

  • Overview of PKI and digital certificates and their role in ICS security
  • Use of certificates for device authentication and secure communication
  • Infrastructure requirements for implementing PKI
  • Shortcomings of existing PKI solutions
  • Requirements for an ICS PKI solution
  • Key injection at the factory
  • Self-managed PKI
  • Cloud based vs. locally managed
  • Device side PKI considerations
  • The role of hardware security: how TPMs, TEEs, TrustZone and other HW security elements are used with PKI 

These topics will provide engineers, product managers, and executives with an overview of how PKI is used for the ICS and provide a framework to start evaluating PKI for their solutions. 


Monday October 23, 2017 1:30pm - 2:15pm

Attendees (5)