Security Conferences
From SCADApedia
A list of SCADA and Digital Control System related security conferences (alphabetically listed) and their associated sponsors/hosts.
Contents |
Control System Security Conferences
These conferences focus on control system security.
ACS
The ACS (Applied Control Sollutions) Cyber Security Conference is sponsored by Control Magazine and ControlGlobal.com and chaired by Joe Weiss. It is typically held in August around a National Lab or government owned electric asset. ACS covers topics such as regulation, mitigating vulnerabilities, case histories, and demonstrations of SCADA hacking.
ISA Expo
The annual ISA Expo Conference includes a track on cyber security. It is typically held in Houston in October. The ISA is also offering a Control System Cyber Security Conference in August in the Chicago Area. ISA conference topics focus on integrating security into existing control systems.
PCSF/PCSIC
The PCSIC (Process Control Systems Industry Conference & formerly known as PCSF) conference focuses on "End-user involvement in collaborating towards advances in control system cyber security policy, practices." PCSIC is sponsored by the DHS and chaired by Sean McGurk of the DHS.
PCSIC offers both presentations and hands on training.
S4
The S4 (SCADA Security Scientific Symposium) is sponsored by Digital Bond and chaired by Dale Peterson. We believe it to be the premeir SCADA/Control System security research conference and "purposely avoid cultivating a broad audience, avoid basic and non-technical material, and work on every detail to focus on creating the right environment to foster detailed technical discussions amongst experts".
S4 offers both presentations and hand on training, including for the 2009 conference a course in "advanced SCADA hacking."
SANS SCADA Security Summit
While not specifically a SCADA/Control system conference SANS has regularly offered a Process Control Summit as part of their conference. These SANS courses have been sponsored by the DOE and taught by memebers of the INL. Courses have consisted of a four hour security awareness class and an eight hour hands on intermediate SCADA hacking course.
Security Conferences
These are classic IT security, black, white or gray hat conferences that often have one or more control system presentations.
Black Hat Briefings
Black Hat is a general IT security conference that has had specific session on SCADA and Control system topics. It is typically held in Las Vegas, NV towards the end of July
Past SCADA topics at Black Hat Briefings have included:
- SCADA Security and Terrorism: We're Not Crying Wolf! by David Maynor and Robert Graham.
- SCADA Security by Jason Larsen [Black Hat DC].
- Fuzzing SCADA Protocols by Sergey Bratus.
These topics presented at a general IT conference indicate that the hacking community is becoming increasingly aware of SCADA systems.
CanSec West
CanSec West sponsored by the Canadian Government as well as by multiple industry partners. It is considered Canada's premier cyber security conference. It consists of three days of a single presentation track focusing on new ideas and emerging technologies. The conference is preceded by 2 days of hands on training courses covering both offensive and defensive techniques including honeypots, system hardening, vulnerability discovery, and fuzzing.
Calendar of Events
In chronological order:
| Date | Event | Location |
|---|---|---|
| 7 Oct 2008 | National Petrochemical & Refiners Assoc Cyber Security Roundable | Orlando, FL |
| 14-16 Oct 2008 | ISA Expo | Houston, TX |
| 21-22 Jan 2009 | Digital Bond's SCADA Security Scientific Symposium (S4) | Miami Beach, FL |
