Infrastructure Protection, Vulnerability Analysis, and Network Architectures

Read the required literature and especially review the videos.

REQUIRED READING******

Common cyber-security vulnerabilities observed in control system assessments by the INL NSTB program (2008), Department of Energy. Retrieved from: http://energy.gov/oe/downloads/common-cyber-security-vulnerabilities-observed-control-system-assessments-inl-nstb
National infrastructure protection plan (2009). [Read 5.2 The CIKR Protection Component of the Homeland Security Mission, and 5.3 Relationship of the NIPP and SSPs to Other CIKR Plans and Programs, pp. 76-79]. Retrieved from: http://www.dhs.gov/xlibrary/assets/NIPP_Plan.pdf
President Obama (2010). Presidential proclamation–Critical infrastructure protection month. The White House, November 30, 2010. Retrieved from: http://www.whitehouse.gov/the-press-office/2010/11/30/presidential-proclamation-critical-infrastructure-protection-month
Sector-specific plans (SSPs), Department of Homeland Security. Retrieved from: http://www.dhs.gov/critical-infrastructure-sectors
Required Videos******
*Lewis, T. (2004). Critical infrastructure protection module: Energy supply chain. 15 minute video: https://www.chds.us/coursefiles/cip/lectures/energy/cip_energy_supplychain/player.html
* Lewis, T. (2004). Energy vulnerability analysis-Part 1. 25 minute video: https://www.chds.us/coursefiles/cip/lectures/energy/cip_energy_vulnerabilityanalysis_p01/player.html
* Lewis, T. (2004). Critical infrastructure: Vulnerability analysis and protection, SCADA structure. 17 minute video: https://www.chds.us/coursefiles/cip/lectures/scada/cip_SCADA/player.html
* Lewis, T. (2004). SCADA vulnerability analysis. 25 minute video: https://www.chds.us/coursefiles/cip/lectures/scada/cip_SCADA_vulnerabilityanalysis/player.html
Answer the following:
1.Why are refinery and storage stages more vulnerable than at other supply chain components?
2.IT-ISAC: Explain what this is and its role in IT and computer products.
3.“SCADA protection is scattered among governmental agencies and commercial groups.” Give some examples of overlap.
4.Explain the relationship of National Infrastructure Protection Plan (NIPP) and Sector-Specific Plans (SSPs). Also, their relationship with Department of Homeland Security.
5.Explain the function of an SSP; choose a particular SSP and describe its purpose. Also, why did you choose that particular plan?

Assignment Expectations

Length: This Case Assignment should be at least 7 pages not counting the title page and references.

References: At least two references should be included from academic sources (e.g. peer-reviewed journal articles). Required readings are included. Quoted material should not exceed 10% of the total paper (since the focus of these assignments is critical thinking). Use your own words and build on the ideas of others. When material is copied verbatim from external sources, it MUST be enclosed in quotes. The references should be cited within the text and also listed at the end of the assignment in the References section (preferably in APA format).

Required Reading

Common cyber-security vulnerabilities observed in control system assessments by the INL NSTB program (2008), Department of Energy. Retrieved from: http://energy.gov/oe/downloads/common-cyber-security-vulnerabilities-observed-control-system-assessments-inl-nstb

National infrastructure protection plan (2009). [Read 5.2 The CIKR Protection Component of the Homeland Security Mission, and 5.3 Relationship of the NIPP and SSPs to Other CIKR Plans and Programs, pp. 76-79]. Retrieved from: http://www.dhs.gov/xlibrary/assets/NIPP_Plan.pdf

President Obama (2010). Presidential proclamation–Critical infrastructure protection month. The White House, November 30, 2010. Retrieved from: http://www.whitehouse.gov/the-press-office/2010/11/30/presidential-proclamation-critical-infrastructure-protection-month

Sector-specific plans (SSPs), Department of Homeland Security. Retrieved from: http://www.dhs.gov/critical-infrastructure-sectors

Required Videos

*Lewis, T. (2004). Critical infrastructure protection module: Energy supply chain. 15 minute video: https://www.chds.us/coursefiles/cip/lectures/energy/cip_energy_supplychain/player.html

* Lewis, T. (2004). Energy vulnerability analysis-Part 1. 25 minute video: https://www.chds.us/coursefiles/cip/lectures/energy/cip_energy_vulnerabilityanalysis_p01/player.html

* Lewis, T. (2004). Critical infrastructure: Vulnerability analysis and protection, SCADA structure. 17 minute video: https://www.chds.us/coursefiles/cip/lectures/scada/cip_SCADA/player.html

* Lewis, T. (2004). SCADA vulnerability analysis. 25 minute video: https://www.chds.us/coursefiles/cip/lectures/scada/cip_SCADA_vulnerabilityanalysis/player.html

Suggested Reading

An introduction to SCADA (2012). Bentek Systems. Retrieved from:http://www.scadalink.com/support/scada.html

Campbell. R. (2011). The smart grid and cybersecurity: Regulatory policy and issues. Congressional Research Service: CRS Report for Congress. Retrieved from: http://www.fas.org/sgp/crs/misc/R41886.pdf

Terrorism and the electric power delivery system (2012). National Research Council. Retrieved from: http://www.nap.edu/catalog.php?record_id=12050

*Permission granted by Naval Postgraduate School, Center for Homeland Defense and Security, 28JAN11.

Recommended Sites

Bomb Making Materials Awareness Program, Department of Homeland Security. http://www.dhs.gov/files/programs/gc_1259938444548.shtm

Homeland Security and Defense: Center for Infrastructure Protection and Homeland Security. GM University. http://cip.gmu.edu/index.php?option=com_content&view=category&id=54&Itemid=133

National Infrastructure Simulation and Analysis Center(NISAC), Los Alamos. http://www.lanl.gov/programs/nisac/

National Infrastructure Coordinating Center, Department of Homeland Security. http://www.dhs.gov/national-infrastructure-coordinating-center

National Infrastructure Protection Plan. http://www.dhs.gov/national-infrastructure-protection-plan

Get a 10% discount on an order above $50
Use the following coupon code :DUE