Create an action plan that depicts how to implement at least (5) NIST controls o

Question

Create an action plan that depicts how to implement at least (5) NIST controls on the system in a Prison. These controls will be countermeasures against the (3) common ICS/SCADA vulnerabilities related to configurations, applications, protocols, and so forth, identified BELOW Three common vulnerabilities with ICS and SCADA systems:

Buffer Overflows: this is nothing but a common vulnerability and it is caused by software code to overrun the boundary and even override the memory blocks. This kind of vulnerability can cause program crash and even corrupt the data and also it leads to execution of malicious code into the system.

Unauthenticated Protocols: In the ICS and SCADA systems, authentication protocol is used to transfer authenticated data from one entry to another so that it authenticate in between connection. When ICS and SCADA systems lack authentication, any computer can remotely connect to the network and manipulate the data. This is one of the vulnerabilities.

Poor Password policies and management: one of the most critical vulnerabilities is that weak password used for authentication. It is really important that complex passwords must be used for authentication otherwise it can be subjected to attacks or hackings.

Explanation / Answer

Ans:

Action plans for executing the NIST Control on the systems :

Countermeasures for 3 Common ICS/SCADA vulnerabilities :

Buffer overflow

GNU Compiler Collection, LLVM, Microsoft Visual Studio are few of the measures.

Unauthentication Protocols

Client Side certificates, NTLM etc

Poor Password Policies and Management

Multi-factor authentication, discourage sharing, Monitor any unusuality.

Related Questions

Navigate

• Browse (All)
• Browse C
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.