| Dr. Irfan Ahmed, Virginia Commonwealth University |
|---|
| Title: A Tale of a New PLC in Town: Exploitation and Mitigation of Modicon M221 Programmable Logic Controller Abstract: Schneider Electric introduces Modicon M221 Programmable Logic Controller in 2014 to comply with the requirements of the Industry 4.0 automation and data exchange. We will discuss security design issues in Modicon M221 that are exploitable and can lead to compromise the PLC and its associated physical processes such as nuclear plants and power grid stations. The security design issues include weak password authentication mechanism, vulnerable proprietary ICS network protocol, and unauthorized access to PLC memory remotely. We will also explore mitigation strategies for Modicon M221 and other PLC with similar vulnerabilities. | 
|
| Dr. Qadeer Ahmed, Ohio State University, USA |
|---|
| Title: Re-inventing the Wheels for safety and security Abstract: The modern world gadgets are passing through a major re-inventing phase for better consumer acceptance/satisfaction in terms of efficient, comfort, safety and security. The growing capabilities of connectivity, onboard computation and autonomy has enabled the cyber physical systems to encompass more features as compared to their current and past counterparts. However, as the features space is growing it unveiling new challenges of safety, security and privacy. These concerns are keeping engineers and research busy, as consumers will no longer buy bricks (devices without connectivity, onboard computation and autonomy) in coming days. One of these cyber physical systems is the world of mobility, which is evolving as different technologies (5G, On board GPUs, sensors etc.) are coming together rapidly. This presentation will look at the landscape of modern mobility systems and see how to understand and address the safety and security challenges for mobility systems with the help of cyber ranges. | 
|
| Dr. Omair Shafiq |
|---|
| Talk Abstract: In the unprecedented times of the COVID-19 pandemic, service delivery through web and online e-commerce platforms has become crucial for services provides than ever before. However, online delivery of services and products has benefits and limitations. This includes difficulty in finding out about the experience of service consumers and gaining deeper insights into their intentions of potential purchases in the future. Determining the intentions of service consumers in an automated way can help service providers a lot in enabling automated decision making for their businesses. This talk will address how to go beyond simple interaction analysis, build an intention assessment model by extending an existing negative intention detection models, and detect different possible intentions of service consumers by analyzing their online reviews or posts on e-commerce or social media platforms. The talk will further show how such intention assessment can help service providers gain deeper insights into their service consumers' intentions. | 
|