Q1. Identify and discuss the various ways that Reconnaissance can be achieved by an attacker or a group of attackers in an Advanced Persistent Threat (APT) attack against Industrial Control Systems. Provide examples from known case studies.
Q1. Identify and discuss the various ways that Reconnaissance can be achieved by an attacker or a group of attackers in an Advanced Persistent Threat (APT) attack against Industrial Control Systems. Provide examples from known case studies.
Q2. Identify the phases of the Cyber Kill Chain model and discuss the technical, management and operational security controls which can be adopted in each phase, such as IDS and AV. Discuss from known case studies how these controls could have mitigated the impact.
Q3. Q4. This question is based on Appendix 1.
Design an appropriate security architecture for the ICS provided above, following a defence-indepth approach. Focus only on the technical design (no need to include incident response, maintenance, training etc.). Your design should be based on logical assumptions about the security state of the system.
Step by step
Solved in 4 steps