Reading...
Play button
Play button
Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
47 Cards in this Set
- Front
- Back
|
What was issued which established a national program called "Critical Infrastructure Protection (CIP)"
|
Presidential Decision Directive PDD-63
|
|
|
What was issued specifically for Critical Infrastructure Identification, Prioritization, and Protection (CIIPP) in accordance with the Patriot Act
|
Homeland Security Presidential Directive (HSPD-7)
|
|
|
Banking and finance
|
Dep of Treasury
|
|
|
Transportation
|
Dep of Transportation
|
|
|
Power
|
Dep of Energy
|
|
|
Information and Communications
|
Dep of Commerce
|
|
|
Federal and municipal services
|
Overseen jointly by Federal and State agencies
|
|
|
Emergency Services
|
Health and Human Services
|
|
|
Fire Departments
|
Federal Emergency Management Agency (FEMA)
|
|
|
Law Enforcement
|
Department of Justice and the Federal Bureau of Investigation
|
|
|
Public Works
|
Environmental Protection Agency (EPA)
|
|
|
Agriculture and Food
|
Dep of Agriculture
|
|
|
National monuments and icons
|
Dep of the Interior
|
|
|
10 defense critical infrastructure SECTORS that are protected by the DoD
|
1. Financial Services
2. Transportation 3. Public Works 4. GIG C2 5. ISR 6. Health Affairs 7. Personnel 8. Space 9. Logistics 10. Defense Industrial Base |
|
|
DoD 7 areas of FOCUS
|
1. Policy and Strategy
2. Intel Support 3. Industrial Policy 4. Defense Security 5. IA 6. R&D 7. Education and Awareness |
|
|
CIP Event Life cycle
|
1. Analysis and Assessment (occurs before an event): Foundation and most important phase.
2. Remediation (occurs before an event): precautionary measures and actions taken before an event occurs to fix the known cyber and physical vulnerabilities that could cause an outage or compromise a NDI or any critical assets. 3. Indications and Warning (before/during event): Daily sector monitoring to assess the msn assurance capabilities of CI assets and to determine if there are event indicators to report. indications based on tactical, operational and strategic level. Tactical - input comes from asset owners. Operational - NDI sectors/NATO/allies. Strategic - intel/law enforcement/private sectors. 4. Mitigation (before and during):Comprises actions taken before or during an event in response to warnings or incidents. 5. Incident Response (after): Plans and activities taken to eliminate the cause or source of an infrastructure event. 6. Reconstruction (after): Rebuild or restore |
|
|
CIP Event Life cycle Step 1
|
1. Analysis and Assessment (occurs before an event): Foundation and most important phase. (Key)
|
|
|
CIP Event Life cycle Step 2
|
2. Remediation (occurs before an event):
fix the known cyber and physical vulnerabilities that could cause an outage or compromise a National Defense Infrastructure or any critical assets. |
|
|
CIP Event Life cycle Step 3
|
3. Indications and Warning (before/during event): Daily sector monitoring to assess the msn assurance capabilities of CI assets and to determine if there are event indicators to report. indications based on tactical, operational and strategic level. Tactical - input comes from asset owners. Operational - NDI sectors/NATO/allies. Strategic - intel/law enforcement/private sectors
|
|
|
CIP Event Life cycle Step 4
|
4. Mitigation (before and during):Comprises actions taken before or during an event in response to warnings or incidents.
|
|
|
CIP Event Life cycle Step 5
|
5. Incident Response (after): Plans and activities taken to eliminate the cause or source of an infrastructure event.
|
|
|
CIP Event Life cycle Step 6
|
6. Reconstruction (after): Rebuild or restore. Most challenging and least developed
|
|
|
Process based manufacturing industries typically utilize three processes.
|
1. Continuous manufacturing: Run continuously. Fuel, steam flow, petroleum, and distillation.
2. Batch: distinct processing steps, conducted on a quantity of material. Distinct start and end. Food processing. 3. Discrete-based: Series of steps on a single device to create end product. Electronic and mechanical parts. |
|
|
SCADA Systems
|
Highly distributed systems used to control geographically dispersed assets, where centralized data acquisitions and control are critical to system operations.
|
|
|
Distributed Control System (DCS)
|
Used to control processes such as electrical power generation, oil refineries, water/waste-water treatment, and manufacturing production. Integrated as a control architecture containing a supervisory level of control overseeing multiple integrated sub-systems that are responsible for controlling the details of a localized process.
|
|
|
Energy Management and Control System (EMCS)
|
Integrated central control and display panel that incorporates the building fire alarm system and controls for building HVAC and lighting system.
|
|
|
Building Automation System (BAS)
|
Computerized, intelligence network of electronic devices, designed to MONITOR and CONTROL the MECHANICAL and LIGHTING systems in a building.
|
|
|
Process Control System (PCS)
|
Located within a more confined factory or plant centric area when compared to SCADA. On a LAN.
|
|
|
Human-Machine Interface
|
Software or hardware (server) that allows human operators to monitor the state of a process under control, modify control settings to change the control objective, and manually override automatic control operations in the event of an emergency.
|
|
|
Remote Terminal Unit (RTU)
|
Special purpose data acquisition and control unit esigned to support SCADA remote stations. Field devices often equipped with WIRELESS radio interfaces to support remote situations where wire based comm are unavailable.
|
|
|
Programmable Logic Controllers (PLC)
|
Computer based, solid state devices that control almost all industrial equipment and processes. Logic level. Resemble ladder diagrams.
|
|
|
Proportional-integral-derivative (PID)
|
Allows system to anticipate and adjust setting based off the "error" value as then difference between an acceptable setpoint and a measured process variable.
|
|
|
What does each value in PID represent?
|
P - Proportional value determines the reaction to the CURRENT error
I - Integral value determines the reaction based on the SUM of RECENT errors. D - Derivative value determines the reaction based on the rate at which the error HAS BEEN CHANGING. |
|
|
Utilizes an actuating device to control the process directly WITHOUT using feedback
|
Open-loop control system (water valve)
|
|
|
Uses a measurement of the output and feedback of the signal to compare it with the desired output
|
closed-loop control system (AC system)
|
|
|
The measure of the output is called
|
Feedback signal
|
|
|
Feedback control system
|
Tends to maintain a prescribed relationship of one system variable to another by comparing functions of these variables and using the difference as a means of control.
|
|
|
Closed loop communications come in three types
|
Mechanical linkages
pneumatic signals hardwired electrical signals |
|
|
Intelligent Electronic Devices (IED)
|
"Smart" sensor/actuator containing the intel rqd to acquire data, communicate to other devices and perform local processing and control. Allow for automatic control at the local level.
|
|
|
Diagnostics and mnx utilities are used to
|
Prevent, identify, and recover from abnormal operation or failure.
|
|
|
Operate continuously over the duration of a process with cycle times ranging on the order of milliseconds to minutes
|
Supervisory-level loops and lower loops
|
|
|
Hosts the DCS or PLC supervisory control software that is designed to communicate with lower level control devices
|
Control Server
|
|
|
Master Terminal Unit (MTU)/SCADA Server
|
Acts as the master in a SCADA system. RTU and PLC devices located at remote field sites usually act as slaves. Heart of ICS.
|
|
|
Two types of transmission from MTU
|
Response to poll
Report by exception |
|
|
Data historian
|
Centralized db for logging all process information within an ICS.
|
|
|
IO Server
|
Responsible for collecting, buffering, and providing access to process information from control sub components such as PLC, RTU, & IED. Used for interfacing third party control components, such as an HMI and a control server.
|
|
|
Major components of an ICS network
|
-Fieldbus Network:link sensors and other devices to a PLC or other controller.
-Control Network:Connects supervisory control level to lower level control modules. -Layer 2/3 device -FW -Modems -Remote Access Points |
