ATT&CK v16 has been released! Check out the blog post for more information.

Redundancy of Service

Redundancy could be provided for both critical ICS devices and services, such as back-up devices or hot-standbys.

ID: M0811

Security Controls: NIST SP 800-53 Rev. 5 - CP-9

Version: 1.0

Created: 06 June 2019

Last Modified: 19 September 2023

Version Permalink

Live Version

Techniques Addressed by Mitigation

Domain	ID		Name	Use
ICS	T0892		Change Credential	Retain cold-standby or replacement hardware of similar models to ensure continued operations of critical functions if the primary system is compromised or unavailable. ^[1]
ICS	T0813		Denial of Control	Hot-standbys in diverse locations can ensure continued operations if the primarily system are compromised or unavailable. At the network layer, protocols such as the Parallel Redundancy Protocol can be used to simultaneously use redundant and diverse communication over a local network. ^[1]
ICS	T0815		Denial of View	Hot-standbys in diverse locations can ensure continued operations if the primarily system are compromised or unavailable. At the network layer, protocols such as the Parallel Redundancy Protocol can be used to simultaneously use redundant and diverse communication over a local network. ^[1]
ICS	T0826		Loss of Availability	Hot-standbys in diverse locations can ensure continued operations if the primarily system is compromised or unavailable. At the network layer, protocols such as the Parallel Redundancy Protocol can be used to simultaneously use redundant and diverse communication over a local network. ^[1]
ICS	T0827		Loss of Control	Hot-standbys in diverse locations can ensure continued operations if the primarily system are compromised or unavailable. At the network layer, protocols such as the Parallel Redundancy Protocol can be used to simultaneously use redundant and diverse communication over a local network. ^[1]
ICS	T0829		Loss of View	Hot-standbys in diverse locations can ensure continued operations if the primarily system are compromised or unavailable. At the network layer, protocols such as the Parallel Redundancy Protocol can be used to simultaneously use redundant and diverse communication over a local network. ^[1]

References

M. Rentschler and H. Heine The Parallel Redundancy Protocol for industrial IP networks Retrieved. 2020/09/25