REGISTER
 

Overview | PCIP Class 1 | PCIP Class 2 | PCIP Class 3 | Prerequisites

 

PCIP Class 2 - CIP Technical Course


Being able to properly design, implement, and manage your system security architecture is a key component of every successful security program. However, critical infrastructure systems, which include SCADA (Supervisory Control and Data Acquisition), DCS (Distributed Control Systems), EMS (Energy Management Systems), Emergency Response 911 systems, Telecommunications networks, or other high availability, mission critical environments require different management and security considerations than a traditional IT environment. Sometimes, these systems, applications, or code may be so out-dated, proprietary, or vendor-dependant that administrators are not able to maintain the necessary security safeguards. It is also possible that implementing a security safeguard could turn out to be more disastrous than the risk itself due to unforeseen system impacts. As these, previously isolated, environments begin merging with IP-based networks, they are becoming susceptible to new vulnerabilities. Some of these vulnerabilities have been discounted as outdated in the IT world, when, in reality, they can still wreak havoc in older critical systems environments. These environments also present a different category of vulnerabilities that traditional safeguards designed for IT environments are not equipped to handle.

This class will address these complexities. Students will study the complete lifecycle of a security threat including both basic and highly advanced techniques used by hackers. This advanced level of knowledge is a key component in a complete security program and these techniques are a distinguished skill set, which only a small percentage of IT, and even security, professionals carry. Students will gain a detailed understanding of vulnerabilities as they exist within each of the critical infrastructure sectors and how to safeguard against them safely and properly. This class goes beyond industry “best practices” and is tailored specifically with the critical infrastructure environment in mind as it aims to bridge the age-old gap between these environments and traditional IT environments. This is a challenging, fast-paced class taught in an interactive, hands-on, learning environment. The last two periods of the course are taken up with an examination, consisting of nine questions that test the major concepts taught on the course. Students prepare short narrative answers (no more than 10 minutes per question) that are scored on both content and argument.

While it is recommended to take the Program course first in the series, candidates may opt to attend the PCIP Class 2 CIP Technical Course beforehand. However, both the Program and Technical Courses must be completed before the PCIP Class 3 CIP Applied Course may be undertaken.

Click here for pricing. Textbooks, breakfast and luncheon meals, all courseware materials, and take-home CDs containing tools used in class are included in the cost

Course Outline:

 

  1. CIP Model Review
  2. Critical Assets (Technical)
  3. IT Refresher / Overview
  4. SCADA / DCS Overview
  5. Sector-Specific Technology
    1. SCADA / DCS within specific sectors (Oil/Gas, Utility, Transportation, Manufacturing)
      1. Digital and Analog I/O
      2. Smart Transmitters
      3. RTUs vs. PLCs vs. IEDs
      4. RS-232, RS-485, and RS-422
      5. Typical Communication Protocols, Including TCP/IP Ethernet Protocols
      6. Profibus, Fieldbus, Hart, Modbus Plus, and Other Field Buses
    2. Other technologies within specific sectors
      1. Tracking Systems
        1. Electronic Supply Chain Technology
        2. SAP, Oracle, and ERP Systems
        3. Bar Code Scanning
        4. RFID
        5. GPS
        6. Funds Tracking Technologies (Cash, Checks, Credit Cards, etc.)
        7. Medical Specific Systems (e.g. medical records, prescriptions, insurance submissions)
        8. Agriculture and Livestock Tracking
        9. Emergency Response and 911 Systems
      2. Payment Systems
        1. Fed Wire Transfer System (Money Wiring)
        2. Electronic Checking Systems
        3. Credit Card Transactions
        4. E-commerce, E-cart, and Online Transactions
      3. Telecom Systems
        1. Industrial Wireless Communications
        2. Radio (Serial and Ethernet)
        3. Microwave
        4. CDPD
        5. Leased Lines, ISDN, Modems
        6. Dialup Vulnerabilities
        7. Dialup Solutions
        8. Voice Over IP (VoIP)
        9. Mobile Wireless
        10. GPRS/1XRTT
        11. Satellite
        12. VSAT
  6. Security Overview
    1. Threat, Vulnerability, Risk
    2. C.I.A. Triad (Confidentiality, Integrity, Availability)
    3. Threat, Exploit, Vulnerability Triangle
  7. Technical Threats
    1. Viruses, Trojans, Worms, Malware
      1. Case study / Demonstration
    2. Hackers
      1. Classifications
      2. Motivations
      3. Hacker Methodology (Attacks/Exploits)
        1. Anatomy of an Attack
        2. Network Recon/Covert Recon
        3. Information Disclosure
        4. Finding a Way In
        5. Network Sniffing
        6. Password Cracking
        7. Host Based Attacks & Privilege Escalation
        8. Trojans and Rootkits
        9. Automated Hacking Tools
        10. Social Engineering & Sys Admin Profiling
      4. Advanced Hacker Methodology
        1. Privilege Escalation Techniques (Symlink Vulnerabilities, Permissions, Race Conditions, and More.)
        2. IP Spoofing
        3. Sniffing a Switched Environment
        4. Session Hijacking/Man-In-The-Middle
        5. Bypassing Encryption
        6. Network Protocol Based Attacks
        7. Covert Channels And Protocol Tunneling
        8. Packet Injection
        9. Bypassing IP-Based ACL and Firewall Rules
        10. IDS Evasion Techniques
        11. Web Hacking (Cross-Site Scripting, SQL Injection, and More)
        12. Wi-Fi Hacking
      5. Class Demonstrations
  8. Technical Vulnerabilities
    1. Basic Programming Language Overview
    2. Basic Programming Primer
    3. Stack and Heap Data Structures
    4. Understanding Overflows (Stack/Buffer, Heap, Integer)
    5. Understanding Format String Vulnerabilities
    6. Understanding Off-by-one Errors
    7. Payloads and Attack Vectors
    8. The Kernel and Core Files
    9. Syscall Redirection
    10. 0-Day Vulnerabilities
    11. Protocol “Fuzzing”
    12. Wi-Fi Weaknesses
    13. Biometric Weaknesses
    14. Voice Over IP (VoIP) Weaknesses
    15. Mobile Wireless Weaknesses
    16. GPRS/1XRTT Weaknesses
    17. Satellite Weaknesses
    18. VSAT Weaknesses
    19. Vulnerability by Sector (Technical)
    20. Class Demonstrations
  9. SCADA / DCS and Technical Risks
    1. General Technical Risks
    2. Technical Risks by Sector
    3. Breakout Session
  10. Policies, Standards, Guidelines, Regulations
    1. NERC CIP 002 – 009
    2. NIST 800-82
    3. AGA 12
    4. ISO Standards
    5. Others
    6. Challenges to Compliance (Case Study)
  11. Safeguards by Category (Technical)
    1. Intrusion Detection/Prevention Systems Management for CIP - "Industrial Strength" Countermeasures and Defensive Strategies
    2. Innovative Methods for Isolating Corporate LAN from SCADA LAN
    3. Getting Around COTS (Commercial Off The Shelf) - Defensive Security Scripting (Use the native shell to write proactive IDS-like scripts to help protect your high-availability systems)
    4. Remote Access for SCADA Support Using 2-Factor Authentication Coupled with Thin-Client Technology
    5. Encrypting SCADA Node Traffic Within the Control Room
    6. Encryption Primer
    7. Non-Executable Stacks
    8. Canary Values
    9. Breakout Session
  12. Incident Response and Consequence Management
    1. BCP (Business Continuity Planning) Review
    2. Response (Technical)
    3. Disaster Recover
    4. Forensics Overview
    5. Breakout Session
  13. Legal Aspects (Cyber/Technical)
    1. Cyber Security Laws and Acts
  14. What Lies Ahead
  15. End of Day Technical Hands-on Labs (Days 1 and 2, Student Optional)

 Search
Copyright 2006   Critical Infrastructure Institute  Terms Of Use  Privacy Statement