PCS Workshop-June 2005
home > about > PCS Workshop-June 2005
SCADA Security Workshop
June 2-3, 2005 – The Westin Galleria & Westin Oaks, Houston, Texas
FINAL AGENDA
| Wednesday, June 1, 2005 | |
| 5:00 - 7:00 | Registration -- Hotel Lobby |
| Thursday, June 2, 2005 | |
| 7:30 - 8:30 | Registration / Breakfast -- Plaza Foyer |
| 8:30 - 8:40 | Opening Remarks - Ron Trellue, Sandia National Labs -- Plaza Ballroom I |
| 8:40 - 9:10 | DHS Perspective - Dr. Doug Maughan, DHS: Overview of DHS SCADA security programs and how they complement the I3P initiative. -- Plaza Ballroom I |
| 9:10 - 10:00 | I3P SCADA Security Research Initiative Overview - Ron Trellue, Sandia National Laboratories -- Plaza Ballroom |
| 10:00 - 10:20 | Break -- Plaza Foyer I |
| 10:20 - 11:20 | SCADA
Operator Panel Discussion - What are the top 5 SCADA security concerns
for operators and how can I3P research help address them? -- Plaza Ballroom I Panelists: Steve Elwart, Director of Systems Engineering, Ergon Refining Tom Flowers, Manager, Control Systems, CenterPoint Energy William Rush, Institute Physicist, Gas Technology Institute Al Rivero, Manager, Regulatory Strategy, ChevronTexaco |
| 11:20 - 11:30 | Break -- Plaza Foyer I |
| 11:30 - 12:30 | SCADA
Vendor Panel Discussion - What are the top 5 SCADA security issues that
vendors are trying to address and how can I3P research complement their
efforts? -- Plaza Ballroom Panelists: Bob Huba, Product Manager, DeltaV System Security, Emerson Process Management Jonathan Pollet, CEO, PlantData Technologies Ernest Rakaczky, Director of Security, Invensys Systems Canada Inc. Bryan Singer, Senior Business Consultant, Rockwell Automation |
| 12:30 - 1:30 | Lunch -- Plaza Ballroom II |
| 1:30 - 2:40 | Drivers and Concerns for SCADA Security - Dr. Jason Stamp, Sandia National Laboratories: This presentation will outline motivations for SCADA security R&D through a review of our understanding of the current state of cyber threats and vulnerabilities. A threat model for SCADA systems will be discussed drawing from publicly available information about adversary capabilities. Common vulnerabilities identified in SCADA system assessments will be summarized, including security gaps associated with design, implementation, configuration and management issues. -- Plaza Ballroom I |
| 2:40 - 3:10 | Introduction to Risk Characterization Breakout Session - Dr. Yacov Haimes: This plenary session will present the team's view of the risks associated with SCADA systems using hierarchical holographic modeling (HHM). -- Plaza Ballroom I |
| 3:10 - 3:30 | Break -- Plaza Foyer I |
| 3:30 - 4:45 | Risk Characterization Breakout Session - Using HHM, this interactive breakout will engage participants to elicit the full scope of the SCADA security problem as it is understood jointly by the oil and gas industry and the I3P research team. Participants will be divided into several groups to identify through facilitated discussions the threats, vulnerabilities, and consequences associated with SCADA systems in the oil and gas industry. The teams will augment and rebuild the HHM from several complementary perspectives. For example, a red team will primarily adopt the perspective of the attacker, while a blue team will primarily adopt the perspective of the industry defender. In generating risk scenarios, the teams need to decompose the problem into different scales of perspectives such as: (i) plant processes; (ii) oil and gas companies; (ii) local industry sectors, and (iii) regional and national economies. -- Breakout sessions: Red Team: Plaza Ballroom I; Blue Team: Sage Room; Vendors: San Felipe Room; Stakeholder: Westchester Room |
| 4:45 - 5:20 | Plenary Report Back and Wrap Up - Day 1 Findings -- Plaza Ballroom I |
| 5:20 - 5:30 | Break |
| 5:30 - 6:30 | Poster Session - This informal mixer will provide participants with a chance to meet individually with researchers from the 11 participating institutions and learn more about their recent research activities in cyber security and infrastructure analysis. -- West Alabama Room |
| 6:30 - 8:30 | Dinner (cash bar) -- Plaza Ballroom II |
| Friday, June 3, 2005 | |
| 7:30 - 8:30 | Breakfast -- Plaza Foyer |
| 8:30 - 9:00 | Plans for Technology Transfer Mechanisms and Building Industry Relationships - Dr. Ulf Lindqvist, SRI: The I3P team is committed to actively working with the vendor and user communities to improve SCADA security in the oil and gas industry. Critical to the I3P initiative's success will be the effective transfer of developed tools, technologies, and knowledge from the research team to industry. This presentation will outline the various mechanisms, such as technology demonstration projects, that the team will employ to ensure that research is directed towards industry needs and results are effectively transitioned into practice. -- Plaza Ballroom I |
| 9:00 - 10:00 | Overview of the I3P SCADA Security Research Topics on Interdependencies, Metrics, Inherently Secure SCADA Systems, and Information Sharing*: Dr. Yacov Haimes (UVa), Joe Huffman (PNNL), Dr. Robert Cunningham (MIT-LL), and Michelle Gosselin (MITRE) -- Plaza Ballroom I |
| 10:00 - 10:20 | Break -- Plaza Foyer I |
| 10:20 - 11:20 | Parallel Breakout Session 1 - Interdependencies, Metrics, Inherently Secure SCADA Systems, and Information Sharing*: Workshop participants will attend the breakout topic of their choice to offer guidance on the topic's research focus and deliverables. -- Breakout sessions: Interdependencies: Sage Room; Metrics: San Felipe Room; Inherently Secure Systems: Plaza Ballroom I; Information Sharing: Westchester Room |
| 11:20 - 12:20 | Parallel Breakout Session 2 - Interdependencies, Metrics, Inherently Secure SCADA Systems, and Information Sharing*: This repeated session allows attendees to participate in a second topic discussion. -- Breakout sessions: Interdependencies: Sage Room; Metrics: San Felipe Room; Inherently Secure Systems: Plaza Ballroom I; Information Sharing: Westchester Room |
| 12:20 - 1:20 | Lunch -- Plaza Ballroom II |
| 1:20 - 2:30 | Plenary Report Back - Highlight Research Priorities for Each Topic; Identify Overall Research Priorities and Potential Cross-cutting Technology Demos -- Plaza Ballroom I |
| 2:30 - 3:00 | Wrap Up - Day 2 Findings -- Plaza Ballroom I |
| 3:00 - 3:20 | Break -- Plaza Foyer |
| 3:20 - 4:00 | Informal Discussions - Develop Working Groups and Partnerships -- Plaza Ballroom I |
* The 4 breakout sessions on June 3rd will cover the following issues:
Interdependencies - In this session, the direct and indirect risks of cyber attack to SCADA systems of the oil and gas sector will be investigated. The session will proceed with identification of SCADA-dependent operations, other internal relevant physical parameters, and its interconnectedness with other critical infrastructures and sectors of the nation. Interdependency effects will be explored in several perspectives: (i) specific oil and gas plants, (ii) local industry sectors, and (iii) regional and national economies. Three major categories of interdependencies will be explored, namely: (i) SCADA-controlled process interdependencies at the plant and corporate levels; (ii) economic sectors that utilize the services provided by the oil and gas infrastructure (i.e., sectors to whom oil and gas infrastructure provide outputs); and (iii) economic sectors that support the recovery of SCADA systems (i.e., sectors from whom oil and gas infrastructure obtain inputs). In addition, the session will cover other infrastructure sectors upon which oil and gas depends, the SCADA systems these interdependent infrastructures use, and the vulnerability these remote SCADA sites pose for oil and gas infrastructure. The discussion will focus on the factors that affect the severity of the consequences of SCADA attacks, such as percentage of reduced productivity, risk of injury to personnel or property, outage/recovery duration, redundancy of failed SCADA element(s), and geographic scope, among others. The affected geographic regions and supply chains will be studied so that a more focused regional economic data can be obtained for the interdependency analysis.
Metrics - SCADA security metrics are necessary to assess a system's or organization's security posture, the associated risk, and support the business case for security investments. This session will explore metrics that might be helpful for managing process control systems in the oil and gas industry. We will discuss information useful for security metrics and determine whether information of that nature is readily available. The following questions will be posed to help develop requirements for metrics: 1) What are the consequences (economic, safety, etc.) of a failure or intrusion of this particular system or subsystem? 2) Are security policies in effect and can verification of those policies be automated? 3) Are any sensors in place that could be utilized to acquire information useful for security metrics? 4) Would it be practical for the industry to implement sensors to provide certain information useful for security metrics? 5) Is available information in a common format or can it be easily converted to a common format? 6) What sort of report/display would integrate well with their current systems?
Inherently Secure SCADA Systems - SCADA systems can be designed, developed, configured and installed securely, but doing so requires expertise applied at many times at many levels, and in many places. In this breakout session we will describe some of the times and places that security needs to be considered, and will discuss some of the security tools that are just starting to be researched by I3P team members. Proposed tools include a tool to eliminate security-relevant software bugs and a SCADA protocol security analyzer; a tool to help design secure operational networks, and a tool to monitor SCADA networks. This is your opportunity to ask security experts about the future of SCADA security, and to offer your opinions and affect research directions for coming SCADA security enhancements.
Information Sharing - The primary goal of this session is to facilitate dialogue among the I3P researchers and the industry participants pertaining to the current and future information sharing needs of the SCADA community. Among other things, we will discuss the requirements for sharing information within and across an organization's SCADA and business networks; the possibilities for information sharing among SCADA operators, and within and across industry sectors; the possibilities for information sharing and collaboration with government and/or civilian authorities (e.g., for the purposes of sharing threat information and/or coordinating emergency response); obstacles to information sharing (e.g., technical, procedural, legal, economic, social/cultural); and measures that could be taken to address these obstacles. Information collected during this breakout session will help kick-off a requirements collection effort. At the conclusion of the requirements collection phase, the team will build initial proof-of-concept solutions targeting one or more of the critical sharing needs of the community. The hope is that through technology transition, the solutions (or commercialized versions of the solutions) can be provided to the SCADA community.
