Out-of-Band Communications Channel

From attackics
Revision as of 15:43, 25 September 2020 by Oalexander (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search
Out-of-Band Communications Channel
Mitigation
ID M0810
NIST SP 800-53 Rev. 4 SC-37

Description

Have alternative methods to support communication requirements during communication failures and data integrity attacks.12


Techniques Addressed by Mitigation

NameUse
Alarm SuppressionProvide an alternative method for alarms to be reported in the event of a communication failure.
Block Command MessageProvide an alternative method for sending critical commands message to outstations, this could include using radio/cell communication to send messages to a field technician that physically performs the control function.
Block Reporting MessageProvide an alternative method for sending critical report messages to operators, this could include using radio/cell communication to obtain messages from field technicians that can locally obtain telemetry and status data.
Block Serial COMEnsure devices have an alternative method for communicating in the event that a valid COM port is unavailable.
Denial of ControlProvide operators with redundant, out-of-band communication to support monitoring and control of the operational processes, especially when recovering from a network outage 1. Out-of-band communication should utilize diverse systems and technologies to minimize common failure modes and vulnerabilities within the communications infrastructure. For example, wireless networks (e.g., 3G, 4G) can be used to provide diverse and redundant delivery of data.
Denial of ViewProvide operators with redundant, out-of-band communication to support monitoring and control of the operational processes, especially when recovering from a network outage 1. Out-of-band communication should utilize diverse systems and technologies to minimize common failure modes and vulnerabilities within the communications infrastructure. For example, wireless networks (e.g., 3G, 4G) can be used to provide diverse and redundant delivery of data.
Loss of AvailabilityProvide operators with redundant, out-of-band communication to support monitoring and control of the operational processes, especially when recovering from a network outage 1. Out-of-band communication should utilize diverse systems and technologies to minimize common failure modes and vulnerabilities within the communications infrastructure. For example, wireless networks (e.g., 3G, 4G) can be used to provide diverse and redundant delivery of data.
Loss of ControlProvide operators with redundant, out-of-band communication to support monitoring and control of the operational processes, especially when recovering from a network outage 1. Out-of-band communication should utilize diverse systems and technologies to minimize common failure modes and vulnerabilities within the communications infrastructure. For example, wireless networks (e.g., 3G, 4G) can be used to provide diverse and redundant delivery of data.
Loss of ViewProvide operators with redundant, out-of-band communication to support monitoring and control of the operational processes, especially when recovering from a network outage 1. Out-of-band communication should utilize diverse systems and technologies to minimize common failure modes and vulnerabilities within the communications infrastructure. For example, wireless networks (e.g., 3G, 4G) can be used to provide diverse and redundant delivery of data.
Man in the MiddleUtilize out-of-band communication to validate the integrity of data from the primary channel.
Manipulation of ControlUtilize out-of-band communication to validate the integrity of data from the primary channel.
Manipulation of ViewUtilize out-of-band communication to validate the integrity of data from the primary channel.