This record is used to map a domain name to an IPv4 address
A Record
This protocol provides encryption, integrity, and authentication for IPsec traffic.
What is ESP (Encapsulating Security Payload)?
This three letter acronym is a name for the environment that interconnects and provides infrastructure for generation plants.
GCN
This is used to protect endpoints in our OT networks at the OS level
Windows Defender
What is a PLC
Programable Logic Controller
What is the primary purpose of an MX record
An MX (Mail Exchange) record is used to specify which mail servers are responsible for receiving email for a domain.
This phase establishes a secure, authenticated control channel between IPsec peers.
What is IKE Phase 1?
In the Acronym SCADA, what is the final A?
Aquisition
These are used to provide network protections
Palo Alto Firewalls
What is a SEL 735 used for?
Metering
What is a Resolver (DNS Resolver)?
A DNS resolver is a system (usually a server) that translates a domain name into an IP address so your device can connect to the correct destination.
This IPsec mode encapsulates and encrypts the entire original IP packet, commonly used in site-to-site VPNs.
What is Tunnel Mode?
AMI
This system gathers and automates critical network inventory as well as does some threat detections
Tenable OT
What is a SEL 700g used for?
Protection for Generation Locations
Upon what port does DNS typically operate?
53
What are the required matching parameters for an IPsec Security Association (SA)?
For an SA to come up, both sides must agree on things like:
This environment secures our transmission and distribution systems
SCADA
This system is our primary security data aggregator in OT environments and serves as our SIEM
SPLUNK
What is ignition?
an HMI solution
a server at the very top of the DNS hierarchy. It acts as the starting point for translating domain names into IP addresses.
What is a Root Nameserver?
What is a Phase 2 mismatch (traffic selectors or transform set mismatch)?
This is the most likely cause when Phase 1 succeeds but Phase 2 fails, often due to mismatched encryption domains or transform sets.
This environment is both a backhaul communication network and a network leveraged for secure systems like e911
GridNet
This system does change detection for SCADA
Tripwire
What does a Station Service PLC do?
controls and audits the power generated by the units and fed back to the local control house