Threat Vectors and Attack Surfaces Related to Malware, Spyware and BYOD
Wednesday, June 19, 2019: 10:30 AM - 11:15 AM
DescriptionThe enterprise market has for several years acknowledged the threat vectors and attack surfaces related to malware, spyware and BYOD. As such, enterprises have leveraged commercially available solutions in attempt to mitigate these risks. ICS operators, particularly electric utilities, have also made gains in protecting against these threat vectors, but most often, the protection has been deployed within the enterprise rather than the OT operational domain. Further, many evolving risks such as botnets as a service, cyber warfare, social engineering and the attack surface explosion that now includes IOT endpoints showcase the constantly increasing threat vectors that are not well mitigated in both the enterprise and ICS/OT domains. In fact, the Ukraine cyberattacks of 2016 and 2017 leveraged many of these threat vectors. Cisco Systems has partnered with various industry stakeholders to create an architecture and secure communications platform in the ICS/OT domain that will attempt to mitigate these threat vectors, attack surfaces and the Ukraine Kill Chains. This session will review the results of this collaboration, including the architectural guidelines, OT use cases, and validation and scoring of the resultant reference platform.