Chapter 3 Endpoint Security Flashcards
What is change management?
The process of ensuring an organization follows a standard process for requesting, reviewing, approving, and implementing changes
What is an RFC in change management?
A Request for Change is a description, explanation, risk assessment, impact, roll back plan, scope, schedule, and affected items for a change
What is a CAB in change management?
A Change Advisory Board is a group in an organization that approves or denies major changes
What authority approves or denies minor changes in a RFCs? Major Changes?
Minor changes can be approved by a manager.
Major changes can be approved by a CAB (Change Advisory Board)
What are routine changes?
Routine changes are pre approved changes in the change management system. They still require an RFC, but the RFC is immediately approved.
What is versioning in change management?
Versioning assigns each release of software an incrementing number used to identify update versions.
What are ICS systems?
A Industrial Control System are devices that control industrial production and operations. Systems include energy infrastructures, manufacturing plants, industrial facilities, logistics operations, and other critical infrastructures.
What are the three ICS types?
SCADA (Supervisory Control And Data Acquisition), DCSs (Distributed Control Systems), and PLCs (Programmable Logic Controllers)
What are SCADA systems?
SCADA (Supervisory Control And Data Acquisition) systems are control systems that require remote monitoring and management of their infrastructure and production systems.
What are telemetry units?
Individual remote sensors commonly used in SCADA systems that provide reports back to the central collection system and has some local control. The central system uses the reports to adjust the production or control systems
Why and how are SCADA systems vulnerable and often targeted?
Most ICS manufacturers recommend not updating or patching sensors and control devices since these systems must continuously operate and provide stability. Attacks on SCADA systems target the feedback from telemetry units, or the local sensor and control unit, to provide incorrect information. This causes the central data control system to falsely adjust production or control systems
What are DCSs mainly used in?
Distributed Control Systems are frequently used to control water and wastewater treatment and distribution systems, power plants, refineries, and production lines.
What are PLCs?
Programmable Logic Controllers are systems designed to handle difficult environments with special temperature, vibration, or other requirements while still functioning. PLCs will not have a monitor or other interfaces beyond buttons or lights.
