This session will delve into the nature and variety of vulnerabilities and attacks (including ransomware, with recent examples of the consequences). It will also look at approaches to develop a security framework – for example, the Industrial Internet Consortium IoT Security Framework. Other discussion points will include:

• Assessing security maturity
• Zero Trust principles
• Software vulnerabilities (leveraging what I know from participating in the Dept of Commerce initiative on software traceability)
• Edge security (PKI at the edge)
• Using secure data distribution protocols such as DDS, and blockchain for traceability