Presentation is loading. Please wait.

Presentation is loading. Please wait.

National Energy Research Scientific Computing Center (NERSC) Computer Security – The New Threats Stephen Lau NERSC Center Division, LBNL June 24, 2004.

Published byClarissa Douglas Modified over 9 years ago

Similar presentations

Presentation on theme: "National Energy Research Scientific Computing Center (NERSC) Computer Security – The New Threats Stephen Lau NERSC Center Division, LBNL June 24, 2004."— Presentation transcript:

1 National Energy Research Scientific Computing Center (NERSC) Computer Security – The New Threats Stephen Lau NERSC Center Division, LBNL June 24, 2004

2 Overview New Threats Identity Theft Email scams and viruses Grid Security Combating Threats

3 New Threats Threats are evolving –Response to protection measures Increased use of encryption Deployment of anti-virus –Increased use of social engineering Security has become everybody’s responsibility Important Defenses –Host level protection –User education

4 Identity Theft Someone uses your login credentials without your knowledge Very difficult for system admins to detect –They look like you! Feeds off of collaborative nature of high performance computing –Users have multiple accounts on massively shared systems

5 SSH Basic Overview Uses private/public keys Encrypted authentication Uses passphrase Home System Remote System Remote System Private Key Public Key Public Key

6 How Does It Happen? Internal System Unsuspecting User Attacker Sniffed Traffic Compromised Host Internet Imposter Home System

7 Combating Identity Theft Reduce amount of stepping stone behavior –Not always possible Be mindful of login times and hostnames Don’t share accounts and passwords Don’t place private keys and certificates on public systems or public directories Report suspicious behavior

8 Encrypt All The Way! Home System NERSC Remote System SSH Telnet rlogin rsh SSH Use SSH across ALL connections

9 One Time Passwords Token based system –Many systems available Many sites pushing ahead with deployment NERSC actively investigating impact on users –Ideally, one token works across multi-labs –No active plans for deployment yet within NERSC Not a cure-all solution!

10 Email Viruses NERSC has a virus filter for email –About 90% effective –Time lag between release of virus and signature development Install anti-virus software on systems you use –Many sites have site licenses –Make sure it is kept up to date

11 Email Hoaxes aka Phishing Email poses as “Security Patch” or “Account Support” –Asks for username/password for “verification” –Requests that an attachment be run Verify any attachment you are not expecting NEVER give out your username/password. When in doubt, please call NERSC support for verification

12 Grid Security Protect your private certificates! –Be mindful where you place them –Minimize amount of distribution –Remove them from systems you no longer use Use strong passwords. Use SSH to access sites with your Grid certificates!

13 Host Level Protection Please keep your systems up to date –Especially home systems and shared systems Combats “identity theft” problem Install anti-virus software –Primarily on Windows systems Be aware of unexplained changes on your system –Odd performance –Strange windows appearing –System files changed unexpectedly authorized_hosts file changes Changes to /etc/password or /etc/shadow

14 User Education You are the first line of defense against incidents. Take advantage of your site’s security training Keep up to date about latest security news Be mindful of security when accessing or using systems

15 Help Us Help You Report “suspicious activity” –Strange files or directories –Unusual login times –Unverified phone call from “NERSC” asking for passwords or account information Report external incidents –Please report any incidents at sites that you use to access NERSC Report incidents where you suspect credentials are sniffed or stolen

16 Help Us Help You Many incidents quickly become multi-site incidents. Communication is key to containment. Please report any incidents that you think might affect NERSC.

17 Contact Information Stephen Lau –1 Cyclotron Road, M/S 943 –Berkeley, CA 94720 –Phone: +1 (510) 486-7178 –Email: slau@lbl.gov –PGP: 44C8 C9CB C15E 2AE1 7B0A 544E 9A04 AB2B F63F 748B NERSC Computer Security –security@nersc.gov –1-800-666-3772 –http://www.nersc.gov/nusers/security/

Download ppt "National Energy Research Scientific Computing Center (NERSC) Computer Security – The New Threats Stephen Lau NERSC Center Division, LBNL June 24, 2004."

Similar presentations

Www.etr2awarp.net/stepchange Are you Resilient? Diane Howorth Business Development Manager European Telecommunications Resilience & Recovery Association.

Are you Resilient? Diane Howorth Business Development Manager European Telecommunications Resilience & Recovery Association.
Cyber Stalking Cyber Stalking Phishing Hacker 1. Never reveal your home address !!! This rule is especially important for women who are business professionals.

Cyber Stalking Cyber Stalking Phishing Hacker 1. Never reveal your home address !!! This rule is especially important for women who are business professionals.
Thank you to IT Training at Indiana University Computer Malware.

Thank you to IT Training at Indiana University Computer Malware.
Addressing spam email and enforcing a Do Not Email Registry using a Certified Electronic Mail System Information Technology Advisory Group, Inc.

Addressing spam and enforcing a Do Not Registry using a Certified Electronic Mail System Information Technology Advisory Group, Inc.
Security Training Lunch ‘n Learn. Agenda  Threat Analysis  Legal Issues  Threat Mitigation  User Security  Mobile Security  Policy Enforcement.

Security Training Lunch ‘n Learn. Agenda  Threat Analysis  Legal Issues  Threat Mitigation  User Security  Mobile Security  Policy Enforcement.
Cyber check Do you work safely and responsibly online? Do you know about the risks to your cyber security? What are your online responsibilities ? How.

Cyber check Do you work safely and responsibly online? Do you know about the risks to your cyber security? What are your online responsibilities ? How.
Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.

Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.
Information Security Confidential Two-Factor Authentication Solution Overview Shawn Fulton January 15th, 2015.

Information Security Confidential Two-Factor Authentication Solution Overview Shawn Fulton January 15th, 2015.
Acceptable Use Policy –The Acceptable Use Policy defines the rules of the machine and internet connection you are on. –Specific policies differ by machine.

Acceptable Use Policy –The Acceptable Use Policy defines the rules of the machine and internet connection you are on. –Specific policies differ by machine.
Guide to Massachusetts Data Privacy Laws & Steps you can take towards Compliance.

Guide to Massachusetts Data Privacy Laws & Steps you can take towards Compliance.
Telnet and FTP. Telnet Lets you use the resources of some other computer on the Internet to access files, run programs, etc. Creates interactive connection.

Telnet and FTP. Telnet Lets you use the resources of some other computer on the Internet to access files, run programs, etc. Creates interactive connection.
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
ONLINE SAFETY Online safety Money Works: Level 1 Topic 3.

ONLINE SAFETY Online safety Money Works: Level 1 Topic 3.
IDENTITY THEFT ARE YOU SAFE?. HOW DOES THIS HAPPEN TO ME? Internet “Security “ When using a public computer, never access any vital accounts like banking.

IDENTITY THEFT ARE YOU SAFE?. HOW DOES THIS HAPPEN TO ME? Internet “Security “ When using a public computer, never access any vital accounts like banking.
File Transfer and Use of Clear Text Passwords Update NERSC Users Group Meeting Stephen Lau NERSC June 21, 2015.

File Transfer and Use of Clear Text Passwords Update NERSC Users Group Meeting Stephen Lau NERSC June 21, 2015.
Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services

Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services
Metamorphic Viruses Pat Walpole. Introduction What are metamorphic viruses Why they are dangerous Defenses against them.

Metamorphic Viruses Pat Walpole. Introduction What are metamorphic viruses Why they are dangerous Defenses against them.
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
GET CONTROL! Avoid The Headache… Five Simple Steps to a Safer Computer – NUIT Tech Talk.

GET CONTROL! Avoid The Headache… Five Simple Steps to a Safer Computer – NUIT Tech Talk.
DIGITAL CITIZENSHIP 6 TH – 8 TH UNIT 1 LESSON 3 SCAMS & SCHEMES What is identity theft, and how can you protect yourself from it?

DIGITAL CITIZENSHIP 6 TH – 8 TH UNIT 1 LESSON 3 SCAMS & SCHEMES What is identity theft, and how can you protect yourself from it?

Similar presentations

Ads by Google