Description: Digital Substation is a core of the modern Smart Grid technologies. More that 4000 of IEC 61850 compatible substations operated in Europe, 20 000+ worldwide. During this talk SCADA StrangeLove team will share results of deep technical security analysis of key Digital Substation components, such as network protocols, relay protection terminals and SCADA, network devices. Mission-centric threat modelling approach for Digital Substations will be discussed.
The goal of the talk is to demonstrate how technical vulnerabilities in the IT components can be used to bypass industrial and functional safety features and create cablemelting or blackout conditions. Few (fixed) vulnerabilities in Relay Protection terminals discovered by the SCADA StrangeLove team will be discussed.
Biography: Sergey Gordeychik
Sergey Gordeychik was appointed Deputy CTO and Head of Security Services at Kaspersky Lab in 2015. His responsibilities include establishing the vision for Kaspersky Lab’s R&D services and leading the technological development for threat intelligence, security assessment, incident response and vulnerability research for enterprise, banks, telecom and ICS/SCADA niches.
Before moving to Kaspersky Lab, Sergey gained a wealth of practical experience in the cybersecurity industry. In particular, he led the development of enterprise security products at Positive Technologies and was a director of Positive Hack Days Forum. From 2012 he is leading SCADA StrangeLove industrial cybersecurity research team. Sergey graduated from the Far Eastern State Transport University in 1999. He is a popular speaker on internationals security conferences such as CCC, CodeBlue, POC, Zeroniighs, member of the ENISA TRANSSEC expert group and CIGRE problem group D2/B5.
Biography: Alexander Timorin
Alexander leads the ICS security group. He has deep knowledge and experience in penetration testing, ICS security assessment and research. Alexander contribute SCADA StrangeLove team, gave talks at different international security conferences, such as Confidence, Hack.lu, CodeBlue, CCC, Power of Community etc. He has found dozens of zero day vulnerabilities in ICS hardware and software of popular vendors, maintains ICS/SCADA network security toolkits.
For More Information Please Visit:- http://area41.io/
Tags:
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.