Network Security

Question 1

Why are newer DCS and SCADA systems more vulnerable to outside threats than the systems of the past?

Answer 1

Older control systems were vendor specific and came with proprietary software and hardware. This made these control systems more secure.

Modern control systems use standardized protocols derived from Microsoft and Unix. This is cheaper but leaves the networks more vulnerable to threats.

Question 2

What is the purpose of Security Filtering?

Answer 2

An approach that allows outside entities securely connect to a private network

Question 3

What is a firewall?

Answer 3

Network tool that prevents unauthorized devices from entering a private secured network. These can be stand alone devices or combined with hardware like routers and gateways.

Question 4

What is responsible for 80% of firewall breaches?

Answer 4

Incorrect firewall configuration

Question 5

What are the 2 most common firewall configuration mistakes?

Answer 5

Making IP addresses or management interfaces visible

Question 6

How can a firewall be more secured?

Answer 6

1) Update with latest firmware
2) Use unique passwords
3) Have a proper configuration
4) Never using shared accounts
5) Restricting traffic
6) Disabling Simple Network Management Protocol

Question 7

What is an access control list?

Answer 7

Exist in routers or firewalls and are designed to conform to rules that restrict access to the network for specific users

Question 8

What is MAC filtering?

Answer 8

An Access Control List rule that allows only remote MAC addresses to access the network.

Question 9

What is IP filtering?

Answer 9

An ACL rule that filters access by IP addresses.

Question 10

What is a VPN?

Answer 10

Virtual Private Network: strategy that creates a private network within a public network by using tunneling and encryption.

Question 11

What is encryption?

Answer 11

Process of encoding data that can not be deciphered by unauthorized entities. Data is ran through an algorithm that generates “ciphertext”.

Question 12

Describe symmetric or Private Key encryption.

Answer 12

Uses the same key that is known only to the sender and receiver that encrypts and decrypts data.`

Question 13

Describe Asymmetric or Public Key ecryption.

Answer 13

Use a public key and a private key to encrypt and decrypt data. Public key encrypts the data and the private key is used for decryption. This method is not suited for large messages due to slow speed.

Question 14

What is the Industry standard for encryption?

Answer 14

Industry uses Advanced Encryption Standard (AES) that utilizes symmetric encryption and an algorithm to apply multiple rounds of encryption to produce a 128 bit key.

Question 15

Give an example where Remote Access might be used in an Industrial Control Network environment.

Answer 15

Telecommuting