Explore defensive counting techniques for accurately quantifying industrial control system (ICS) exposure on the Internet in this 21-minute conference talk from BSidesLV. Delve into the challenges of distinguishing real ICS devices from honeypots and personal projects when analyzing Internet-connected systems speaking ICS protocols. Learn about the comprehensive analysis process, from data collection to device verification, and understand the importance of contextualizing exposure numbers. Gain insights into why critical thinking is essential when interpreting Internet-based security research, and discover methods for painting a more accurate picture of ICS device exposure in critical infrastructure environments.
Defensive Counting - Quantifying ICS Exposure on the Internet
Overview
Syllabus
Ground Truth, Tue, Aug 6, 17:00 - Tue, Aug 6, CDT
Taught by
BSidesLV
Related Courses
-
What Do We Learn When We Scan the Internet Every Hour?
-
Living with the Enemy - How to Protect Yourself and Energy Systems
-
Defending Critical Infrastructure: Deep Enumeration and Proprietary Protocol Analysis
-
Using a Cloud Telescope to Observe Internet-Wide Botnet Propagation Activity
-
Building on Device Vulnerabilities: Attack Modes for Industrial Control Systems - Lecture 4
-
ICS Threat Activity Groups - Dragos 2018 Year in Review
