PRESENTATION:
|
Converting Cyber Attacks into Successful Cyber-Physical Attacks
|
PRESENTER(S):
|
Cedric Levy-Bencheton, Managing Consultant for IOActive
|
CONFERENCE:
|
|
LOCATION:
|
Copthorne Tara Kensington, London, UK
|
DATE & TIME:
|
September 28, 2016 at 9:35 AM
|
Access to a control network does not itself constitute an attack. Somehow this important fact is often omitted from public documentation. Cédric Lévy-Bencheton will address an attacker’s challenges in designing disruptive assaults on physical infrastructure or operations. This talk draws from Lévy-Bencheton’s extensive experience in offensive cyber-physical security, and covers the complete process of designing and performing a successful attack:
- Infrastructure and process reconnaissance (passive and active)
- Engineering attack scenarios
- Types and complexities of cyber-physical attacks
- Unique attack vectors
- Execution of the attack
About Cédric Lévy-Bencheton
Dr. Cédric Lévy-Bencheton is Managing Consultant at IOActive, where he actively promotes the need for security in every domain of society, with a focus on the Internet of Things and Industrial Control Systems. Previously, Dr. Lévy-Bencheton was expert in cyber security at ENISA, the European Union Agency for Network and Information Security, where he developed the area of Smart Infrastructures and the concept of security for Safety. He has also designed critical networks for public transports and has worked in telecommunications research. Dr. Lévy-Bencheton earned a Ph.D. in Telecommunications from University Lyon in 2011.
About Industrial Control Cyber Security Europe
Against a backdrop of continued cyber attacks against energy firms such as the Ukraine Power Industry, the massive attacks against the Norway oil and gas industry, Saudi Aramco and the continued threats such as Stuxnet, Dragonfly and Black Energy, the Cyber Senate return for the 3rd Annual Industrial Control Cybersecurity Europe meeting to bring key stakeholders together to address our responsibility in ensuring the safety, reliability and stability of our Critical National Infrastructure. For more information, visit http://www.industrialcontrolcyberseceurope.com.
About IOActive
IOActive is the industry’s only research-driven, high-end information security services firm with a proven history of better securing our customers through real-world scenarios created by our security experts. Our world-renowned consulting and research teams deliver a portfolio of specialist security services ranging from penetration testing and application code assessment to chip reverse engineering across multiple industries. IOActive is the only security services firm that has a dedicated practice focusing on Smart Cities and the transportation and technology that connects them. Global 500 companies across every industry continue to trust IOActive with their most critical and sensitive security issues. Founded in 1998, IOActive is headquartered in Seattle, US, with global operations through the Americas, EMEA, and Asia Pac regions. Visit www.ioactive.com for more information. Follow IOActive on Twitter: http://twitter.com/ioactive.
###