This event has ended. Visit the official site or create your own event on Sched.
Welcome to the Interactive Agenda for SecurityWeek’s 2021 APAC ICS Cyber Security Conference! (View the full conference website and register for the conference here)   -- LOGIN TO VIRTUAL EVENT HERE
Back To Schedule
Wednesday, June 23 • 9:45am - 10:15am
The Changing Landscape Of Software Supply Chain Security for ICS

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

The late 2020 SolarWinds hack introduced the world to the extreme risk posed by supply chain attacks to critical systems. By penetrating the software development process of the SolarWinds company, the attackers managed to infiltrate multiple branches of the US government, the US military, and most of the Fortune 500 companies. Known in the press as the SolarWinds or SUNBURST attack, over 18,000 companies were affected.

This talk will start by diving into the technical details of the SolarWinds incident. We will compare that attack with previous supply chain attacks against industrial control systems (ICS) and show why the high Return on Investment (RoI) for attackers means the ICS supply chain will face many more attacks in the future. We’ll review research on the current exploitability of the ICS software supply chain, as well as specific recommendations from the Atlantic Council on how to guard against these kinds of attacks. We’ll also discuss how Software Bill of Materials (SBOMs) are an essential, defensive tool for supply chain security and describe why advanced AI techniques are going to be essential to stay ahead of these well-funded, sophisticated attacks.

Learning Objectives
  • Understand the anatomy of the SolarWinds attack and the implications for ICS software supply chain security
  • Learn recommended best practices, including using SBOMs, to best prepare for and guard against these types of attacks
  • Learn how the Financial Industry is using SBOMs to manage risk sharing across parties.

avatar for Eric Byres

Eric Byres

Chief Technology Officer, aDolus Technology Inc.
Eric Byres is widely recognized as one of the world’s leading experts in the field of industrial control system (ICS) and Industrial Internet of Things (IIoT) cybersecurity. He is the inventor of the Tofino Security technology – the most widely deployed ICS-specific firewall in... Read More →

Wednesday June 23, 2021 9:45am - 10:15am GMT+08