VIASAT PROPRIETARY

Big Data Analyticsfor

Smart Grid Security Intelligence

November 4, 2015

Stefan JuckenGlobal SatCom & Critical Infrastructure ProtectionSecure Network SystemsViaSat Inc.

VIASAT PROPRIETARY 2

Technological Paradigm Shifts

DATA SCIENCE

Machine LearningDISTRIBUTED PROCESSING

In Memory Computing REDUCED COST

Sensors and Devices

Connectivity

VIASAT PROPRIETARY 3

IT Paradigm Shift

Traditional Computing

• HW Centric & Intense• Data Consistency and Integrity• Find & Analyze stored information• Batch paradigm - pull• Query Driven

Big Data Computing

• Application & Data Centric• Speed and Flexibility• Analyze Data in Motion• Low latency paradigm – push• Data Driven

Query Data Results Data RTAnalytics Results

Business

• Determineswhat questionsto ask

IT

• Structures datato answer thatquestion

IT

• Delivers platformto enable creativediscovery

Business

• Explores whatquestions couldbe asked to createnew bus. models

VIASAT PROPRIETARY 4

Big Data Taxonomy: V3

stru

cture

dse

mi-st

ruct

ure

dunst

ruct

ure

dst

ruct

ure

dse

mi-st

ruct

ure

dunst

ruct

ure

d

Batch Near-Realtime stream

Velocity

Variety

VIASAT PROPRIETARY 5

Big Data in the Smart Grid

Source: SAP

VIASAT PROPRIETARY 6

Emerging Threat Landscape

» Attack Trend is Increasing

› Cyberattacks: Designer Malware, Phishing, Fraud, APTs

› Big Data model has great value but also inherently great risk.

› BD security needs to be designed in from day 1 to achieve gridresilience.

› Data Centric Model has to be considered for security approach

» Threats are not just external

» System of Systems Architectures increase complexity

› Unprecedented vulnerability surface

» Enterprise edge is no longer static

» CIP Compliance ≠ Security

» Overlay Security Layer with trust anchors

VIASAT PROPRIETARY 7

ICSSensors

&Traps

syslog

NetworkSensors

Activity &Assets

Big

Da

taS

en

sor

Sw

arm

Big Data Gridlock

@th

espeed

ofpeople

No timelyaction

VIASAT PROPRIETARY 8

The Power of Data Science

Analytics - Enrichment - Correlation

Descriptive – Predictive - Prescriptive

Data inManyForms

Data atRest

Data inMotion

Smart Data

Big Security Intelligence Data

VIASAT PROPRIETARY 9

Security Intelligence Value Chain

ICSSensors

&Traps

syslog

NetworkSensors

Activity &Assets

Big

Da

ta

Analytics/OrchestrationEngine

Collect

process

Analyze

Enrich

correlate

Visualize

SAApply Policy Implement

Security &Restore

@th

espeed

ofdata

Information Knowledge Intelligence Decision Action

VIASAT PROPRIETARY 10

Baseline - Detect - Analyze - Remediate

VIASAT PROPRIETARY 11

Thank You!