Your message has been sent

You can find the message in your personal profile at "My messages".

An error occured

Please try again.

Make an appointment with

So that you can make an appointment, the calendar will open in a new tab on the personal profile of your contact person.

Create an onsite appointment with

So that you can make an onsite appointment, the appointment request will open in a new tab.

Make onsite appointment

Forums it-sa Expo Knowledge Forum A

Critical infrastructures rely on PSIM. We hacked it!

Presentation for the German Association for Critical Infrastructure Protection - BSKI e.V.

Buy trade fair ticket

You can register for this action soon.

You can register for the digital action soon.

Please come back at the scheduled date and time.

The action is currently live. Please scroll down to watch.

This action is only available onsite: Forums it-sa Expo

Add action to bookmarks and download as iCal

Join now

Note: If you continue, the contact data you provided during registration may be transmitted to the respective provider in accordance with our General Terms and Conditions.

Please log in or register in advance so that you can take part in actions or watch the action videos!

This action has already taken place. This action will soon be available as a video.

This action has already taken place. Please scroll down to watch the video.

This action has already taken place. Please login or register to watch the video.

This action has already taken place. It's not available any more.

You are in!

Your ticket / access to the action was sent to you by email.

There is a problem with the action at the moment. Please come back later or contact support.

calendar_today Thu, 27.10.2022, 12:15 - 12:45

event_available On site

Action Video

south_east

Action description

south_east

Speaker

south_east

Themes

Industry 4.0 / IoT / Edge Computing

Event

This action is part of the event Forums it-sa Expo

Action Video

Action description

A Physical Security Management System (PSIM) or in German - Gefahrenmanagementsystem (GMS) - is a software for efficient security management in properties, buildings and facilities. Via a multitude of interfaces, it records the statuses and enables the control of security-related systems, such as access control systems, video surveillance systems, intrusion detection systems, and many more. Depending on the application, such a system can be used to arm/disarm intrusion detection areas, open/lock doors, trigger fire alarms. Etc.

PSIM systems are particularly widespread in companies with increased or particularly high security requirements. They are often used by operators of critical infrastructures such as energy suppliers, network operators, water suppliers, airports, etc.

Within the scope of our security research, we have examined the leading PSIM system "WinGuard" of Advancis Software & Services GmbH and were able to identify relevant vulnerabilities. By exploiting these vulnerabilities, we were able to obtain admin rights and bring the system under our control.

Note: The publication of our findings is made in the context of a Responsible Disclosure. Advancis Software & Services GmbH closed all security vulnerabilities very quickly after our notice and provided their customers with a software update.
... read more