This video isn’t available to you right now
Login to check your access and watch the full session
About the session
The individuals developing OT systems are typically one part of a complex design project, they have multiple priorities and influences such as the customers’ requirements, adapting to the changes of the mechanical/process design, human factors, the programme, cost and of course security. As security practitioners we can use periodic interventions during the design lifecycle to assess the design and engineer out risks. But can we do more to influence the designer as they work in a way that delivers robust, secure systems while minimising design iterations.
An anti-pattern is a common solution to a problem that seems like a good idea but actually has negative consequences, they are the opposite of best practices. In this presentation we look at patterns seen in OT system designs and organisations that OT developers should avoid or we as security professional should prevent if we see them. The goal of this presentation is to share the concept of using anti-patterns to help us deliver secure systems, to share some real-world anti-patterns, and to build an anti-pattern body of knowledge.
Charlie Hall, Industrial Cyber Security Consultant, IET
