What is FERC?
Federal Energy Regulatory Commission
Who is the director of Security?
Clay Storey
Trustworthy, Innovative, Collaborative
This IPsec protocol provides encryption and confidentiality for data as it travels across a network.
What is ESP (Encapsulating Security Payload)?
a server at the very top of the DNS hierarchy. It acts as the starting point for translating domain names into IP addresses.
What is a Root Nameserver?
HMI
Who is the CISO at Avista
Alexis Alexander
What is Avista's Mission ?
We enable vibrant communities through energy. Safely, Responsibly, Affordably.
This IPsec mode encrypts only the original IP packet payload, leaving the original IP header intact.
What is Transport Mode?
This protocol provides encryption, integrity, and authentication for IPsec traffic.
What is ESP (Encapsulating Security Payload)?
This is the first Dam downstream of Lake CDA
Post Falls
Who is the Senior VP of Operations and Technology
Wayne Manuel
What states does Avista serve?
Washington, Idaho, Oregon, Montana
This key exchange protocol is commonly used with IPsec VPNs to negotiate security associations and cryptographic keys.
What is IKE (Internet Key Exchange)?
This three letter acronym is the smart itron metering environment
AMI
This Hydro Project was not in scope for FERC due to tribal interconnectivity
Little Falls
Who is the President & Chief Executive Officer ?
Heather Rosentrater
Name the 8 Hydro-Electric Facilities
Noxon
Cabinet Gorge
Post Falls
Upper Falls
Monroe Street
9 Mile
Long Lake
Little Falls
In IKEv2, these Security Associations carry protected user traffic and can be rekeyed independently of the IKE SA that manages them.
What are Child SAs?
This system is our primary security data aggregator in OT environments and serves as our SIEM
Splunk
What is a "sunny day" in terms of the FERC Audit?
a normal day
Who is the Director Digital Innovation, Data & Chief Enterprise Architect
Hossein Nikdel
Name 4 non-hydro generating plants
KettleFalls
Northeast
Bolder Park
A tunnel appears up, Phase 1/IKE SA is established, and no packets are encrypted. Packet captures show traffic bypassing the VPN entirely. An engineer should first verify these rules that determine whether traffic is considered "interesting" enough to trigger or use IPsec.
What are the security policies or crypto ACLs?
What does a Station Service PLC do?
controls and audits the power generated by the units and fed back to the local control house