'Open the pod bay dampers, Hal': ASHRAE to simulate automation hacker attack during winter meeting
A hacker using the Malicious Mobile Code has crippled _systems at the Pentagon and Microsoft. A security analyst is working to return their systems to normal.
What happens next is up to attendees to the Building Automation Computer Security after 9-11 seminar at the American Society of Heating, Refrigerating and Air-Conditioning Engineers' 2003 Winter Meeting in Chicago. During the seminar, participants will assume the role of hacker or analyst as part of an interactive presentation titled, "A Day in the Life of a Hacker."
The presentation challenges the audience to play the roles in a game of measures, attacks, and countermeasures.
"Most of the demonstrated attacks are not stopped by firewalls or intrusion detection systems," according to presenter Michael Endrizzi, InterSec Communications Inc., Eagan, Minn.
"As a result, the audience will understand that technical countermeasures alone are self-defeating. The only way to effectively fight the battle is to combine technology with a security infrastructure made up of people, processes and procedures."
The seminar will address general principles of prevention, detection, and response to network and systems security risks for building automation systems.
It will be held from 10:15 a.m. To 12:15 p.m., Jan. 27, 2003. The seminar is sponsored by ASHRAE's technical committees on computer applications and control theory and application.