Supporting Network Security Design

Question 1

Network Segmentation

Answer 1

It means dividing networks into zones which have defined trust levels. Segmentation can be achieved through VLANs and subnets.

Question 2

Intrusion Detection System Detection types:

Answer 2

1. Signature-based: matches traffic pattern
2. Anomaly based: detects abnormal behavior
   IDS is installed behind firewall, requires sniffer like mirroring and it is not detectable by attackers because it does not have IP address.

Question 3

Intrusion Prevention System (IPS)

Answer 3

Preventive measures: ends the malicious session, temporarily blocks attacker’s IP, Throttle bandwidth, apply complex rules, modify packets, and runs custom scripts.
It’s built into modern firewalls and proxies and all traffic flows through the IPS.

Question 4

Internet of Things (IoT)

Answer 4

Embedded devices with networking, and software that can communicate with each other and other systems.

Question 5

What are examples of Physical Access Controls Systems (PACs)

Answer 5

Smart locks, alarms, surveillance

Question 6

What are examples of Building Automation Systems (BAS)

Answer 6

Controls HVAC, power, lighting, etc.

Question 7

Industrial Internet of Things (IIoT)

Answer 7

Embedded devices and IoT devices used in industrial sectors like energy, mining, etc.

Question 8

AIC Triad

Answer 8

IIoT focuses on safety, availability and integrity.
Availability > Integrity > Confidentiality

Question 9

Industrial Control Systems (ICS)

Answer 9

Controls machinery and automates processes in critical infrastructure.

Question 10

Distributed Control System (DCS)

Answer 10

A type of ICS managing automation within a single site.

Question 11

Core components of ICS

Answer 11

1. Programmable Logic Controllers: Embedded controllers that manage sensors and actuators (motors, valves, etc.)
2. Human-machine Interfaces (HMI): Local panels or software used by operators to control or configure PLCs.
3. Control Server: Governs the entire process automation system.
4. Data Historian: Centralized database storing all historical data from the control loop (for analysis and auditing)

Question 12

Supervisory Control and Data Aquisition (SCADA)

Answer 12

Coordinates control of multiple remote sites or large-scale industrial systems. Runs as software on ordinary computers to monitor, collect data, and control operations remotely.

Question 13

Operational Technology Network (OT)

Answer 13

Communications network designed to implement an industrial control system rather than data networking.

Question 14

Pan-tilt-zoom camera

Answer 14

Cameras that can zoom and rotate to track target

Question 15

Geofencing

Answer 15

Creating a virtual boundary around a real-world location. Location services can detect if a device enters or exits the boundary.