This event has ended. Visit the official site or create your own event on Sched.
Welcome to the Interactive Agenda for SecurityWeek’s 2017 ICS Cyber Security Conference! (View the full conference website here)  (You can register for the conference here)
View analytic
Tuesday, October 24 • 11:45am - 12:30pm
SCADA Bug Killing: Technologies and Timeline

Sign up or log in to save this to your schedule and see who's attending!

Finding and remediating a subtle SCADA protocol bug is not easy nor is it immediate. A reputable automation company will already have tested many aspects of the software and hardware. And yet, sometimes bugs do slip through. This is the story of a device that slogged through many software audits and fuzz testing. It had been on the market for a few years already. But there was still an egregious flaw lurking in the device. This presentation is about the timeline and the technologies behind a software flaw detection and remediation effort. It also has relevance to SCADA protocol design, as well as security exploit response.

Keywords: DNP3, PLC, RTU, Vulnerability, fuzzing, SCADA

avatar for Jacob Brodsky

Jacob Brodsky

Jacobs Cyber Innovation Lab
Having spent nearly 30 years of his Control Systems Engineering careerat the Washington Suburban Sanitary Commission, Jake Brodsky has a lotof hard won experience (making mistakes), learning to live with his creations. He has eagerly shared this experience with various standards... Read More →

Tuesday October 24, 2017 11:45am - 12:30pm
Windsor Ballroom CDE