Explore the challenges and strategies involved in assessing the impact of critical vulnerabilities on various sectors of critical infrastructure in this 33-minute talk by Iain Deason from the Cybersecurity and Infrastructure Security Agency. Delve into the complexities of understanding risk when novel vulnerabilities are disclosed, particularly in control systems. Discover techniques used to evaluate potential ecosystem-wide impacts and learn about different approaches for comprehending the risk equation associated with new vulnerabilities in critical infrastructure. Gain insights into handling vulnerabilities in medical devices, open standards, and scenarios involving widespread issues or media attention. Examine policies, processes, and paperwork related to vulnerability management, and access valuable references and resources for further study.
Understanding the Impact of Critical Vulnerabilities in Critical Infrastructure: A Detective Story
Overview
Syllabus
Intro
What are the things
What is our Ecosystem?
Some Examples
What if is is everywhere?
What if they get media attention?
What if it is in Medical Devices?
What if it is based on an open standard?
Policies, Processes, Paperwork
References and Resources
Taught by
Linux Foundation
