Download presentation
Presentation is loading. Please wait.
Published byBarry Hodges Modified over 9 years ago
1
CERT AM: Securing NREN in Armenia
2
Armenian NREN ASNET AM – Connecting more than 40 academic institutes of NAS RA and more than 10 other research, educational and cultural organizations ARENA – Network association, providing Internet access for research and educational organizations within the framework of Virtual Silk Highway project
3
LIBNET AM – Armenian Libraries Consortium manages “Developing of Armenian Libraries computerized network” project, which interconnects libraries trough fiber optical channels School network – managed by Harmony Foundation in the framework of ongoing ASCP project of connecting 330 schools in Armenia Armenian NREN
4
Establishment of CERT AM Internet Society – Armenia (ISOC AM) was chosen for the following reasons: ISOC AM is the local internet community, ISOC AM is a member of CEENET representing Armenia NREN and participates in other CEENET projects like Porta Optica, ISOC AM is more responsive to the international cooperation and activity, Major ISPs and corporate/educational networks of Armenia are members of ISOC AM 1. Hosting organization
5
ISOC AM is a manager and registry (AM NIC) of AM TLD and as such accumulates an important information on security, vulnerabilities, attacks. ISOC AM has a training center with qualified trainers, ISOC AM is conducting network administrators training courses, ISOC AM training center is a CIW authorized training center with training programs in Web design for E- commerce and Security, ISOC AM is a participant of e-rider and community centers (telecenters) programmes. 1. Hosting organization Establishment of CERT AM
6
Common security problems Viruses Spam Hacking resources Dos and DDos attacks 2. Analyzing the current situation Establishment of CERT AM
7
2. Analyzing the current situation - ASNET Establishment of CERT AM
8
1.WORM_NETSKY.C 2.HTML_Netsky.P 3.WORM_NETSKY.DAM 4.WORM_BAGLE.GEN-2 5.WORM_NETSKY.Z 6.WORM_BAGLE.CL 7.WORM_GREW.A 8.WORM_MYDOOM.M 9.WORM_MYTOB.AF 10.WORM_MYTOB.DM 2. Analyzing the current situation - ASNET Establishment of CERT AM Top 10 viruses in 2006
9
Fighting against viruses Antivirus software on users’ machines Scanning incomming email attachments 2. Analyzing the current situation - ASNET Establishment of CERT AM
10
Spam fighting techniques DNS-based blacklists Content filtering 2. Analyzing the current situation - ASNET Establishment of CERT AM Result: about 21000 spam messages being blocked daily
11
Example of Hacker attacks SSH brute force attacks 2. Analyzing the current situation - ASNET Establishment of CERT AM About 500 attacks are identified and blocked monthly
12
Assigning some of the IT staff of each REN as Chief Information Security Officers (CISO) with the corresponding job description Organize an orientation meeting for CISOs and establish a community of CISOs Receive a description of software and hardware products installed in each of the RENs from CISOs 3. Defining constituents and their resources Establishment of CERT AM
13
Reactive Incident response Proactive Vulnerability reports Technology watch Security Quality Management Awareness building 4. Defining services Establishment of CERT AM
14
Have an online incident report form Have security advisories available online Have best practice documents available Have security related articles and news available Have a download area for downloading security tools Have the contact information of CERT AM Have a mailing list subscription form Have statistics of security attacks, etc. 5. Maintaining the web site Establishment of CERT AM
15
Organizing workshops and seminars for users and administrators of NREN Organizing regular meetings of CISOs 6. Maintaining awareness building process Establishment of CERT AM
16
It is planned for CERT AM to become a member of international CSIRT communities such as FIRST It is planned to hold a number of workshops inviting representatives from foreign CSIRTs 7. International relations Establishment of CERT AM
17
THANK YOU
Similar presentations
© 2025 SlidePlayer.com. Inc.
All rights reserved.