Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security “Deep Dive”* Open Discussion * Into shark-infested waters.

Published byBetty Hampton Modified over 6 years ago

Similar presentations

Presentation on theme: "Security “Deep Dive”* Open Discussion * Into shark-infested waters."— Presentation transcript:

1 Security “Deep Dive”* Open Discussion * Into shark-infested waters

2 Q1: Envision a National Research Platform -- are there any “sweeping” statements that we should make about security? (to each their own seems to be punting the issue) Which of the enterprise mechanisms for security are still applicable What is the border? Is there a border anymore? Federated system – What are people’s reasonable expectations of security, e.g. Verify that an AS does source address validation (software exists) Different communities should be reasonably shielded from each other. Compartmentalization (compromise at one point does not compromise others) Allow a centralized system for monitoring SIRTFI (Security incident response …. Federated Identity) Different profiles for “security”? Privacy issues. Keep the physicists out. (Federated Authorization) What can be leveraged that exists already (InCommon, eduroam, ..) Liabilities: Is any of the data regulated? (can we handle data with specific use agreements) Need auditable events. Punt on medical data Security means that there must be a governance structure for an NRP/GRP Identity vs. capability.

3 Big organizations might have deep benches for intrusion detection (and other more specialized tasks),  what can be done improve the situation for those without "deep benches of expertise or people resources"? What’s new? Centers of excellence are possible ways to scale.

4 How 'open' to the network do research platforms really need to be
How 'open' to the network do research platforms really need to be? Could they be mostly "unreachable" as a first line of defense against random probes? Should it be international, too? How to integrate identity management (like eduroam) into gaining accessibility. How does on constrain – Comments from Cees What are we “afraid” of? Put effort in managing connectivity/reachability or energy in blocking “bad actors”? Granting access to something already closed, makes risk managers unhappy. Define set of permitted use models Observe/determine “attack patterns” – Normal PRP/NRP usage might look like DDOS.

Download ppt "Security “Deep Dive”* Open Discussion * Into shark-infested waters."

Similar presentations

Overview of local security issues in Campus Grid environments Bruce Beckles University of Cambridge Computing Service.

Overview of local security issues in Campus Grid environments Bruce Beckles University of Cambridge Computing Service.
Professional Services Overview

Professional Services Overview
2 Issues of the information age Computer _______ and mistakes –Preventing computer related waste & mistakes Computer crime –Computer as tool to commit.

2 Issues of the information age Computer _______ and mistakes –Preventing computer related waste & mistakes Computer crime –Computer as tool to commit.
The State of Security Management By Jim Reavis January 2003.

The State of Security Management By Jim Reavis January 2003.
Computer Security: Principles and Practice

Computer Security: Principles and Practice
Information Assurance and Security: Overview. Information Assurance “Measures that protect and defend information and information systems by ensuring.

Information Assurance and Security: Overview. Information Assurance “Measures that protect and defend information and information systems by ensuring.
Privacy By Design Sample Use Case Privacy Controls Insurance Application- Vehicle Data.

Privacy By Design Sample Use Case Privacy Controls Insurance Application- Vehicle Data.
Stanford’s Patch Management Project   Ced Bennett May 17, 2004 Copyright Cedric Bennett 2004. This work is the intellectual property of the author. Permission.

Stanford’s Patch Management Project   Ced Bennett May 17, 2004 Copyright Cedric Bennett This work is the intellectual property of the author. Permission.
Cloud Computing Cloud Security– an overview Keke Chen.

Cloud Computing Cloud Security– an overview Keke Chen.
SEC835 Database and Web application security Information Security Architecture.

SEC835 Database and Web application security Information Security Architecture.
1 Deployment of Computer Security in an Organization CE-408 Sir Syed University of Engineering & Technology 99-CE-282, 257 & 260.

1 Deployment of Computer Security in an Organization CE-408 Sir Syed University of Engineering & Technology 99-CE-282, 257 & 260.
Thursday, January 23, 2014 10:00 am – 11:30 am. Agenda  Cyber Security Center of Excellence  Project Phase  Implementation  Next Steps 2.

Thursday, January 23, :00 am – 11:30 am. Agenda  Cyber Security Center of Excellence  Project Phase  Implementation  Next Steps 2.
Improving Intrusion Detection System Taminee Shinasharkey CS689 11/2/00.

Improving Intrusion Detection System Taminee Shinasharkey CS689 11/2/00.
Security Security is a measure of the system’s ability to protect data and information from unauthorized access while still providing access to people.

Security Security is a measure of the system’s ability to protect data and information from unauthorized access while still providing access to people.
FIVE STEPS TO REDUCE THE RISK OF CYBERCRIME TO YOUR BUSINESS.

FIVE STEPS TO REDUCE THE RISK OF CYBERCRIME TO YOUR BUSINESS.
Federal Cyber Policy and Assurance Issues Dwayne Ramsey Computer Protection Program Manager Berkeley Lab Cyber Security Summit September 27, 2004.

Federal Cyber Policy and Assurance Issues Dwayne Ramsey Computer Protection Program Manager Berkeley Lab Cyber Security Summit September 27, 2004.
Computer Science Open Research Questions Adversary models –Define/Formalize adversary models Need to incorporate characteristics of new technologies and.

Computer Science Open Research Questions Adversary models –Define/Formalize adversary models Need to incorporate characteristics of new technologies and.
NATO Advanced Research Workshop “Best Practices and Innovative Approaches to Develop Cyber Security and Resiliency Policy Framework” Scenario for Discussion.

NATO Advanced Research Workshop “Best Practices and Innovative Approaches to Develop Cyber Security and Resiliency Policy Framework” Scenario for Discussion.
Other Quality Attributes Other Important Quality attributes Variability: a special form of modifiability. The ability of a system and its supporting artifacts.

Other Quality Attributes Other Important Quality attributes Variability: a special form of modifiability. The ability of a system and its supporting artifacts.
Thoughts on Firewalls: Topologies, Application Impact, Network Management, Tech Support and more Deke Kassabian, April 2007.

Thoughts on Firewalls: Topologies, Application Impact, Network Management, Tech Support and more Deke Kassabian, April 2007.

Similar presentations

Ads by Google