The Lost Vision in Cyber-Physical Systems - The Anatomy of Programmable Asset Attack Vectors

A programmable asset means that the asset provides a flexible programming function, the asset can execute physical behavior automatically according to the code. In the driven modernized OT environment, we found common programmable assets including PLC, CNC, AM, and industrial robots. However, with the benefit of efficiency and adaptability, it also carries on a more complex lifecycle, leading the assets to be exposed the cyber threats.
We believe increased visibility of the threats can reduce cybersecurity risks and the overall cost of asset owners. In light of this, we analyze the lifecycle of programmable assets and survey their cyber threats at all stages. In addition to supplementing currently less-researched threats, we also show novel attack vectors from programmable assets. In this talk, we will share how attackers execute the initial attack according to the character of the programmable asset, having the opportunity to spread malicious code in the OT environment. Finally, we propose a hybrid SBOM and OT zero trust strategy to mitigate the threats.
*Draft outline, slide, and takeaway are attached in Notes part