No Silver Bullets: Application Whitelisting in ICS
Andrew Ginter of Waterfall Security explains what Application Whitelisting will and will not protect against. He still recommends the technology for ICS, but it is not a silver bullet as some vendors outright claim or imply.
He focuses much of the discussion on how application whitelisting deals with interpreted code.
At the end of the presentation Andrew covers whether application whitelisting would have stopped Stuxnet and Stuxnet's authors, with two different answers.