Software Update Frameworks and the CI Supply Chain
Brian Romansky
S4x24 - ICS Security Conference · Day 3 · Stage 2
In his S4 conference talk, "Software Update Frameworks and the CI Supply Chain," Brian Romansky of Convolution Solutions and George Washington University delves into the complex and often contradictory nature of software updates, particularly within **Operational Technology (OT)** environments. The presentation highlights a critical paradox: while software updates are essential for patching vulnerabilities and improving functionality in **Information Technology (IT)**, they simultaneously introduce significant attack surface and operational risks in critical infrastructure. Romansky argues that the traditional approaches to software updates, often designed for IT, are fundamentally inadequate for the unique demands and stringent security requirements of OT systems.
AI review
Romansky tackles the critical and often-overlooked paradox of software updates in Operational Technology (OT) environments. He meticulously dissects the failures of traditional IT-centric update mechanisms, particularly basic digital signatures, against sophisticated supply chain attacks. The true value lies in his proposal to extend The Update Framework (TUF) with a novel 'deployer role,' providing a cryptographically sound and operationally practical solution for on-premises, multi-signature validation crucial for critical infrastructure. This isn't just theory; it's a blueprint for secure…