Full Report
The Massachusetts Institute of Technology (MIT), in collaboration with Kaspersky Lab, hosted its second annual “Think Security” seminar devoted to protecting industrial automation systems from cyberattacks. The seminar featured an industrial Capture the Flag (CTF) contest
Analysis Summary
# Industry News: Kaspersky and MIT Collaborate on Industrial Control Systems (ICS) Security Education
## Summary
Kaspersky Lab and the Massachusetts Institute of Technology (MIT) concluded their second annual “Think Security” seminar, a high-level initiative focused on the protection of industrial automation systems. The event combined academic research with practical application, featuring a specialized Industrial Capture the Flag (CTF) competition to bridge the gap between IT security and operational technology (OT).
## Key Details
- **Date:** February 19, 2018
- **Companies Involved:** Kaspersky Lab, Massachusetts Institute of Technology (MIT)
- **Category:** Partnership / Industry Education & Advocacy
## The Story
The "Think Security" seminar represents a strategic alliance between one of the world’s leading cybersecurity vendors and a premier global research institution. The core objective of the event is to address the unique vulnerabilities found in Industrial Control Systems (ICS), which govern critical infrastructure such as power plants, refineries, and manufacturing lines.
The centerpiece of the seminar was an Industrial CTF contest. Unlike traditional cybersecurity competitions that focus on web or mobile vulnerabilities, this event utilized simulated industrial environments. Participants were tasked with defending or exploiting PLC (Programmable Logic Controller) logic and HMI (Human-Machine Interface) systems, reflecting the real-world shift toward targeted attacks on physical infrastructure.
## Business Impact
### For the Companies Involved
- **Kaspersky Lab:** Solidifies its position as a thought leader in the niche but rapidly growing ICS/OT security market. The association with MIT provides high-level academic validation and access to future talent.
- **MIT:** Enhances its curriculum and research capabilities by integrating real-world threat intelligence and industrial security tools from a private sector leader.
### For Competitors
- Competitors like Forescout, Claroty, and Dragos face increased pressure to demonstrate "intellectual leadership" rather than just providing software tools. Kaspersky is successfully positioning itself as an educator and standard-setter in the industrial space.
### For Customers
- End users in the industrial sector benefit from a more specialized workforce. These initiatives help produce engineers who understand that IT security protocols cannot always be applied to OT environments without risking physical damage or downtime.
### For the Market
- This signals a maturing OT security market. The focus is shifting from simple awareness to deep technical competency and "security by design" in industrial components.
## Technical Implications
The seminar highlights the technical divergence between IT and OT. Key technical focus areas included:
- **Protocol Security:** Analyzing proprietary industrial protocols (Modbus, Profinet, etc.) that often lack encryption.
- **Legacy Systems:** Addressing the "air-gap" myth and securing aging hardware that was never intended to be connected to the internet.
- **PLC Forensics:** Developing techniques to detect unauthorized logic changes in controllers.
## Strategic Analysis
- **Market Positioning:** Kaspersky is pivoting from being a "consumer antivirus" company to an "industrial infrastructure guardian."
- **Competitive Advantage:** By hosting CTFs and seminars, Kaspersky builds a community of practice, creating "stickiness" for their brand among the next generation of CSOs and industrial engineers.
- **Challenges:** Ongoing geopolitical scrutiny of Kaspersky (particularly in the US) may limit the institutional reach of these partnerships despite the technical value they provide.
## Industry Reactions
- **Analyst Opinions:** Analysts view these collaborations as essential for closing the "skills gap" in industrial cybersecurity, which remains one of the hardest roles to fill.
- **Expert Commentary:** Cybersecurity experts note that moving the conversation from "general threats" to "industrial automation protection" is critical for the resilience of national infrastructure.
## Future Outlook
- **Predictions:** Expect more "Industrial CTFs" to appear at major security conferences as the distinction between physical and digital security continues to blur.
- **What to watch for:** Increased investment from industrial giants (like Siemens or Schneider Electric) in similar educational partnerships to secure their own supply chains.
## For Security Professionals
Practitioners should note the shift toward **Converged Security**. It is no longer sufficient to secure the perimeter; pros must understand the underlying processes of industrial hardware. Engaging with specialized CTFs and seminars like "Think Security" is becoming a requisite for those moving into infrastructure protection roles.