{"description": "ICS techniques mitigated by Out-of-Band Communications Channel, ATT&CK mitigation M0810 (v1.0)", "name": "Out-of-Band Communications Channel (M0810)", "domain": "ics-attack", "versions": {"layer": "4.5", "attack": "17", "navigator": "5.1.0"}, "techniques": [{"techniqueID": "T0830", "comment": "Utilize out-of-band communication to validate the integrity of data from the primary channel.\n", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T0878", "comment": "Provide an alternative method for alarms to be reported in the event of a communication failure.\n", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T0803", "comment": "Provide an alternative method for sending critical commands message to outstations, this could include using radio/cell communication to send messages to a field technician that physically performs the control function.\n", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T0804", "comment": "Provide an alternative method for sending critical report messages to operators, this could include using radio/cell communication to obtain messages from field technicians that can locally obtain telemetry and status data.\n", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T0805", "comment": "Ensure devices have an alternative method for communicating in the event that a valid COM port is unavailable.\n", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T0813", "comment": "Provide operators with redundant, out-of-band communication to support monitoring and control of the operational processes, especially when recovering from a network outage  (Citation: National Institute of Standards and Technology April 2013). Out-of-band communication should utilize diverse systems and technologies to minimize common failure modes and vulnerabilities within the communications infrastructure. For example, wireless networks (e.g., 3G, 4G) can be used to provide diverse and redundant delivery of data.\n", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T0815", "comment": "Provide operators with redundant, out-of-band communication to support monitoring and control of the operational processes, especially when recovering from a network outage  (Citation: National Institute of Standards and Technology April 2013). Out-of-band communication should utilize diverse systems and technologies to minimize common failure modes and vulnerabilities within the communications infrastructure. For example, wireless networks (e.g., 3G, 4G) can be used to provide diverse and redundant delivery of data.\n", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T0826", "comment": "Provide operators with redundant, out-of-band communication to support monitoring and control of the operational processes, especially when recovering from a network outage  (Citation: National Institute of Standards and Technology April 2013). Out-of-band communication should utilize diverse systems and technologies to minimize common failure modes and vulnerabilities within the communications infrastructure. For example, wireless networks (e.g., 3G, 4G) can be used to provide diverse and redundant delivery of data.\n", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T0827", "comment": "Provide operators with redundant, out-of-band communication to support monitoring and control of the operational processes, especially when recovering from a network outage  (Citation: National Institute of Standards and Technology April 2013). Out-of-band communication should utilize diverse systems and technologies to minimize common failure modes and vulnerabilities within the communications infrastructure. For example, wireless networks (e.g., 3G, 4G) can be used to provide diverse and redundant delivery of data.\n", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T0829", "comment": "Provide operators with redundant, out-of-band communication to support monitoring and control of the operational processes, especially when recovering from a network outage  (Citation: National Institute of Standards and Technology April 2013). Out-of-band communication should utilize diverse systems and technologies to minimize common failure modes and vulnerabilities within the communications infrastructure. For example, wireless networks (e.g., 3G, 4G) can be used to provide diverse and redundant delivery of data.\n", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T0831", "comment": "Utilize out-of-band communication to validate the integrity of data from the primary channel.\n", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T0832", "comment": "Utilize out-of-band communication to validate the integrity of data from the primary channel.\n", "score": 1, "color": "#66b1ff", "showSubtechniques": false}], "gradient": {"colors": ["#ffffff", "#66b1ff"], "minValue": 0, "maxValue": 1}, "legendItems": [{"label": "mitigated by Out-of-Band Communications Channel", "color": "#66b1ff"}]}