1. Home
  2. Mitigations
  3. Network Segmentation

Network Segmentation

Architect sections of the network to isolate critical systems, functions, or resources. Use physical and logical segmentation to prevent access to potentially sensitive systems and information. Use a DMZ to contain any internet-facing services that should not be exposed from the internal network. Configure separate virtual private cloud (VPC) instances to isolate critical cloud systems. [1]

ID: M1030
Version: 1.0
Created: 27 September 2022
Last Modified: 05 February 2025
Space Layer
download view

Techniques Addressed by Mitigation

Domain ID Name Use
T2034 Spacecraft's Components Discovery

References

  1. The MITRE Corporation. (2015-2022). MITRE ATT&CK® Retrieved September 27, 2022.