WORKSHOP - Pentesting the Smart Grid

Presented at Black Hat USA 2011, Unknown date/time (Unknown duration)

This workshop will take a deep dive into the penetration testing of the hardware and network protocols of three of the most important systems of the Smart Grid, namely smart meters, SCADA, and synchrophasors. We'll look at the common features provided by AMI meters, dissect the ANSI c12 family of protocols they use, and the systems they connect to. Next we'll look the most common SCADA protocols used in the Smart Grid (DNP3 and IEC 61850), the devices they control, and the infrastructure used for substation automation. Finally we'll look at synchrophasor architectures, look at their most common protocol (C37.118), and discuss how they are used in Wide-Area Monitoring, Protection, and Control (WAMPAC). To wrap up the workshop, we'll play with embedded hardware pentesting techniques and introduce a new live Linux distro created for this purpose. Overview of Smart Grid Architecture Deep dive into AMI Smart Meters Architectural Overview Functions & Data Flows Breakdown ANSI C12.xx Deep dive into SCADA Architectural Overview Functions & Data Flows Breakdown DNP3 & IEC 61850 Deep dive into Sycnrophasors Architectural Overview Functions & Data Flows Breakdown IEEE C12.118 Embedded Hardware Pentesting Flash/EEPROM Dumping Bus Sniffing Key Extraction Conclusions and Wrap-up

Presenters:

• Justin Searle

Links:

• https://www.blackhat.com/html/bh-us-11/bh-us-11-archives.html#Searle

Similar Presentations:

• Black Hat USA 2010 / Electricity for Free? The Dirty Underbelly of SCADA and Smart Meters
• Black Hat USA 2011 / Pentesting the Smart Grid
• DEF CON 19 (2011) / Attacking and Defending the Smart Grid