Defending Oil & Gas Critical Infrastructures from Cyber-attacks

Prof Dimitris Gritzalis, Athens University of Economics & Business, Greece

Abstract

The importance of the Oil and Gas (O&G) sector on the global economy is a well-known fact. Market reports state that oil investments reached 500B$ in 2019, with global oil around 1M barrels/day. Τhe constant digital growth and the prevalence of Industry 4.0 systems in modern infrastructures has increased the attack surface of the O&G sector. Novel attacks and attack methods are constantly targeting O&G cyber-physical systems. Attacks on such systems can have adverse geopolitical effects and, more often than not, the interconnected nature of O&G infrastructures exacerbates the impact of such attacks due to cascading failures introduced by dependencies of other critical infrastructures on the O&G sector. In this talk, we will present and discuss the current trends on cyberattacks on all sub-sectors of the O&G sector. We will present the current situation, analyze previous incidents, propose indicators, and discuss open issues concerning cyber-attacks on this sector.

Biography

Dr. Dimitris Gritzalis is a Professor of Cybersecurity with the Dept. of Informatics, Athens University of Economics and Business (AUEB), Greece, also serving as Director of the MSc Programme in Information Systems Development and Security. He has served as Associate Rector for Research and President of the Life-long Education Center of the University. Prof Gritzalis has received a BSc (Mathematics, Univ. of Patras), an MSc (Computer Science, City University of New York), and a PhD (Information Systems Security, Univ. of the Aegean). He is the Academic Editor of Computers & Security (Elsevier) and the Scientific Editor of the International Journal of Critical Infrastructure Protection (Elsevier). Prof Gritzalis has also held the positions of the President of the Greek Computer Society and the Associate Data Protection Commissioner of Greece. For more than 30 years he has been providing consulting services, on an international scale, and has published research papers extensively. He has chaired the PC of several international conferences (ACM, IEEE, IFIP, GCS). His current research interests include critical infrastructure protection (Energy, Health, I&CT, Transportation), risk assessment, malware, and smartphone security.