Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cybersecurity Users Council: Inter Standards Dimension

Published byRhoda Pearson Modified over 6 years ago

Similar presentations

Presentation on theme: "Cybersecurity Users Council: Inter Standards Dimension"— Presentation transcript:

1 Cybersecurity Users Council: Inter Standards Dimension
In addition to consuming individual cybersecurity standards, the Cybersecurity User’s perspective includes a broader set of both challenges and opportunities. This broader perspective could substantially enhance our feedback to the TCs and help to reduce security portfolio balkanization (fragmentation?). This material identifies a few motivating examples for consideration.

2 Dimension: The Intersection Between Individual CyberSecurity standards.
Multiple TC Standards intersect in detection, response, orchestration, provisioning, … . Security standards (& technologies) should work together across the security technologies & lifecycle. (Note: Standards like Open DXL may enable these kinds of use cases) Correlation: Alerts, logs, …correlated across security technologies - CEC Analytics: Security analytics across standards - regression, ML, modeling Orchestration: Security technologies operating together systemically – (e.g. detect at the WAF, ramp logging, block at the upstream FW, …) Provisioning: Considering security semantics across deployment topology/security architecture. Possible CUC Product: Validated crosscutting use cases, challenges, opportunities to the relevant TCs.

3 Dimension: The Intersection Between CyberSecurity Standards and Platform/App Context
Usage of TC standards may be able to advantage of provisioning context (intended application/service behaviors), orchestration context (expected platform behaviors) and realized topology (structural architecture , as built) … . Security technologies should leverage context established in the platform and application lifcycles. API: API Management frameworks (MuleSoft, ApiGee, Boomi, …) capture intended inter App interaction. Should inform WAFish, gateway and access broker policy. More important with growth in microservice, IoT, and distributed architectures. Behavior captured in RAML, Swagger, API Blueprints, … Platform: Platform orchestration (scale out, load balancing, workload migration, failover, ECMP, PBR, … all leave a normal “behavioral footprint in logs, alerts, and forensics). Design/deployment: Containers, Kubernetes Orchestration, TOSCA (or TOGAF, SABSA, …) Graphs, … all provide security relevant structural intent that has compelling value across detection, response and remediation phases. Possible CUC Product: Validated context enabled use cases, challenges, and opportunities.

4 Dimension: The Intersection Between CyberSecurity Standards and Risk/Audit/Attestation/Argumentation Standards Security centric context can also very useful, bring the layers of governance, audit, attestation, … even security argumentation (future). Risk: Risk mapping standards have proven very useful in security management for critical infrastructure (ref. RiskMap, FedRamp, …), giving all security technologies the same perspective on classification and impact. Audit: Intentional security architecture establishes the audit control architecture and dependencies (SABSA, TOSCA, Application Blueprints, NFV service chain …). Could support automated support for validating audit structure at runtime. Attestation: SLA expression standards (SANS SMART, CSA/ENISA secSLA, MUSA, SLALOM, …) Argumentation (future): Security argumentation can express the broader security characteristics and supportable claims of a system of services, application, functions or components. Requires logics that can support reasoning in the presence of both in- completeness and uncertainty (well beyond first order policy languages e.g. Congress) … at least defeasible policy logics. Possible CUC Product: Validated alignment use cases across governance, policy, , challenges, and opportunities.

5 Dimension: Emerging challenges
Emerging technologies, architectures, application/service frameworks, … are challenging long standing standardization assumptions. Identifiers (IP, MAC, System SID, …) – The decoupling and dynamics of serverless functions (AWS Lambda, OpenWhisk, Cloud Functions, …) challenge the use conventional identifiers. Integrity: The complex supply chain and long operational life of IoT devices, challenge any notion of full stack integrity or control. Diversity: The growing diversification of compute fabrics (GPUs, FPGAs, OCP, SDx, PBR, CBR …) challenge conventional security configuration and control. Opaqueness: Many emerging security innovations limit transparency and independent verification, making security instrumentation difficult (e.g. secure multi party compute, semi- homomorphic encryption, secure enclaves, nested virtualization, public cloud operational security/forensics, ...) Possible CUC Product: Validated challenge identification. Possibly suggestions about plausible directional approaches to the TCs.

6 Proposal Establish a work stream consider these examples for more representative representation of the CUC view. Consideration of which, if any, of the resulting dimensions we should consider pursuing. If we feel that more resourcing is needed to address these kinds of issues, consider whether we could sponsor a CUC position paper as a community conversation starter for broader consideration.

Download ppt "Cybersecurity Users Council: Inter Standards Dimension"

Similar presentations

IBM DEVELOP, NETWORK, PROMOTE & GROW Cloud Transformation: What are the risks, pitfalls and challenges to be addressed? Steve Strutt, CTO Cloud Computing,

IBM DEVELOP, NETWORK, PROMOTE & GROW Cloud Transformation: What are the risks, pitfalls and challenges to be addressed? Steve Strutt, CTO Cloud Computing,
DMTF Cloud Standards Cloud Management & OVF Update to ITU-T SG13.

DMTF Cloud Standards Cloud Management & OVF Update to ITU-T SG13.
Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.

Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.
NIST Big Data Public Working Group Security and Privacy Subgroup Presentation September 30, 2013 Arnab Roy, Fujitsu Akhil Manchanda, GE Nancy Landreville,

NIST Big Data Public Working Group Security and Privacy Subgroup Presentation September 30, 2013 Arnab Roy, Fujitsu Akhil Manchanda, GE Nancy Landreville,
Automated Policy Enforcement Adam Vincent, Layer 7 Federal Technical Director

Automated Policy Enforcement Adam Vincent, Layer 7 Federal Technical Director
1© Copyright 2015 EMC Corporation. All rights reserved. SDN INTELLIGENT NETWORKING IMPLICATIONS FOR END-TO-END INTERNETWORKING Simone Mangiante Senior.

1© Copyright 2015 EMC Corporation. All rights reserved. SDN INTELLIGENT NETWORKING IMPLICATIONS FOR END-TO-END INTERNETWORKING Simone Mangiante Senior.
Securing Legacy Software SoBeNet User group meeting 25/06/2004.

Securing Legacy Software SoBeNet User group meeting 25/06/2004.
Virtual Machine Hosting for Networked Clusters: Building the Foundations for “Autonomic” Orchestration Based on paper by Laura Grit, David Irwin, Aydan.

Virtual Machine Hosting for Networked Clusters: Building the Foundations for “Autonomic” Orchestration Based on paper by Laura Grit, David Irwin, Aydan.
© Copyright 2011 Hewlett-Packard Development Company, L.P. 1 Sundara Nagarajan (“SN”) CLOUD SYSTEMS AUTOMATION.

© Copyright 2011 Hewlett-Packard Development Company, L.P. 1 Sundara Nagarajan (“SN”) CLOUD SYSTEMS AUTOMATION.
Summary Device protocols tied intimately to applications. A need to significantly reduce critical data update times. Current network bandwidth consumption.

Summary Device protocols tied intimately to applications. A need to significantly reduce critical data update times. Current network bandwidth consumption.
NIST Big Data Public Working Group Security and Privacy Subgroup Presentation September 30, 2013 Arnab Roy, Fujitsu Akhil Manchanda, GE Nancy Landreville,

NIST Big Data Public Working Group Security and Privacy Subgroup Presentation September 30, 2013 Arnab Roy, Fujitsu Akhil Manchanda, GE Nancy Landreville,
Objective: Enable portability and semi-automatic management of applications across clouds regardless of provider platform or infrastructure thus expanding.

Objective: Enable portability and semi-automatic management of applications across clouds regardless of provider platform or infrastructure thus expanding.
1 ALCATEL-LUCENT — PROPRIETARY AND CONFIDENTIAL COPYRIGHT © 2015 ALCATEL-LUCENT. ALL RIGHTS RESERVED. NFV transforms the way service providers architect.

1 ALCATEL-LUCENT — PROPRIETARY AND CONFIDENTIAL COPYRIGHT © 2015 ALCATEL-LUCENT. ALL RIGHTS RESERVED. NFV transforms the way service providers architect.
© 2012 IBM Corporation IBM Security Systems 1 © 2012 IBM Corporation Cloud Security: Who do you trust? Martin Borrett Director of the IBM Institute for.

© 2012 IBM Corporation IBM Security Systems 1 © 2012 IBM Corporation Cloud Security: Who do you trust? Martin Borrett Director of the IBM Institute for.
Cisco Consulting Services for Application-Centric Cloud Your Company Needs Fast IT Cisco Application-Centric Cloud Can Help.

Cisco Consulting Services for Application-Centric Cloud Your Company Needs Fast IT Cisco Application-Centric Cloud Can Help.
1 Acquisition Automation – Challenges and Pitfalls Breakout Session # E11 Name: Jim Hargrove and Allen Edgar Date: Tuesday, July 31, 2012 Time: 2:30 pm-3:45.

1 Acquisition Automation – Challenges and Pitfalls Breakout Session # E11 Name: Jim Hargrove and Allen Edgar Date: Tuesday, July 31, 2012 Time: 2:30 pm-3:45.
SDN and Beyond Ghufran Baig Mubashir Adnan Qureshi.

SDN and Beyond Ghufran Baig Mubashir Adnan Qureshi.
IoT R&I on IoT integration and platforms INTERNET OF THINGS

IoT R&I on IoT integration and platforms INTERNET OF THINGS
Issues in Cloud Computing. Agenda Issues in Inter-cloud, environments  QoS, Monitoirng Load balancing  Dynamic configuration  Resource optimization.

Issues in Cloud Computing. Agenda Issues in Inter-cloud, environments  QoS, Monitoirng Load balancing  Dynamic configuration  Resource optimization.
When RINA Meets NFV Diego R. López Telefónica

When RINA Meets NFV Diego R. López Telefónica

Similar presentations

Ads by Google