Practical intrusion detection and security monitoring for utility SCADA systems by Robin Massink

Robin Massink

This presentation will provide an in-depth approach to security monitoring and intrusion detection for SCADA systems within utilities. In this presentation we will provide insight in how real threats can be monitored, and provide a step-by-step approach for implementing relevant monitoring use-cases. Besides implementation, we will address the several pitfalls we encountered, and indicate the type of events we have detected in our SCADA network.