Presentation is loading. Please wait.

Presentation is loading. Please wait.

Technology Solutions Conference School Security Technology Solutions Conference School Security.

Published byLorraine Stevens Modified over 8 years ago

Similar presentations

Presentation on theme: "Technology Solutions Conference School Security Technology Solutions Conference School Security."— Presentation transcript:

1 Technology Solutions Conference School Security Technology Solutions Conference School Security

2 2 Network Security Prevention Recovery Forensics Security Audit New Trends Security Issues

3 3 Firewalls Servers Desktops Network Applications User Training Policies Basic Assumptions Prevention

4 4 Prevention - Firewalls What data do you want to protect? Known databases such as student and financial information Local databases kept on hard drives What is a firewall? Not a content filter Poor configurations and lack of patch maintenance very common Personal firewalls for your home

5 5 Prevention - Firewalls Intrusion Detection Software What is a DMZ? Web server dilemmas Placement of server Access for content management

6 6 Prevention - Servers Keep up with server maintenance and security patches Nimda took advantage of known holes Code Red, Polymorphic worms Subscribe to virus definitions and be sure to update Not all virus protection software is created equal

7 7 Security - Servers Remove all generic and guest defaults after install Web server hacked via generic login Check for inactive web modules They can be accessed and generic setups abused

8 8 Prevention - Desktops A: drive Vulnerable to infected floppy disks and other non-authorized files and applications C: drive Vulnerable to configuration changes, and access to restricted resources (students hid Internet access) FTP Vulnerable to downloads of infected files or other non-authorized files and applications

9 9 Security & Hackers Internal Attacks: Students and Staff Hackers External Attacks: Internet & e-Mail Parasitic Attacks: Bandwith, Storage, Processing Common Security Issues

10 10 Internal Attacks: Student & Staff Hackers Denial of Service Web server attacks Unauthorized Intrusions Admin server accounts SASI Id’s Anonymous surfing Port 443

11 11 External Attacks: Internet & e-Mail Spamming and Smurfing Rejected e-mail e-Mail Viruses ILOVEYOU, Melissa, Anna K, Sircam Back Orifice Worms Code Red Nmda Polymorhic worms

12 12 Parasitic Attacks Bandwidth School T1 used fully 24 hours a day Wireless access, NYC Antenna & Liverpool Resource consumption.exe files music videos games

13 13 Common Security Issues Kids used to maintain parts of network – (ie web server) Virus subscription not purchased Security patches not up to date on servers and workstations Firewall: None, poorly configured, not up to date on patches

14 14 Common Security Issues Web server inside or outside Firewall Applications and/or servers not set up correctly (leaving Guest ID’s, Anonymous users, FTP) No disaster recovery and backups are not rigorous

15 15 Common Security Issues No restrictions on desktops for students Floppy access, FTP, loading software No policy for security: escalation, passwords, etc.

16 16 Prevention - Desktops Windows Explorer Students see all network resources Right Click Students can cut, paste, and delete important files including system configuration

17 17 Prevention - Network Require specific logons Lab aid giving generic logons so students could bypass system Pornography found on C: drive in teachers’ room Secure your remote access to network Maintenance done by third parties Virtual Private Networks (VPNs) Are your hubs and switches physically secure?

18 18 Prevention - Network Configure your routers with access lists Check hubs, switches and routers for web management modules and change default passwords

19 19 Prevention - Applications Microsoft Office – “save as” Can student see network drives? Microsoft Office and Encarta templates Students get Internet access and can download unauthorized Microsoft patches Downloads of plugins and other software Programming courses such as C++ and Visual Basic Have access to basic network functions

20 20 Prevention - Policies.exe files Slow Internet and/or network performance Overwhelmed hard drives and network servers Passwords No policy on changing Fewer passwords for ease of use purposes “Shoulder surfing”, yellow stickies, etc.

21 21 Prevention - Policies Loading software locally Technical issues – not in “Ghost image” Printing and application support issues Copyright issues Accidentally “blow out” system Docking home computers Students running “cracking” programs and access SASI passwords

22 22 Prevention - Policies Disks from home Technical vulnerabilities Copyright vulnerabilities Students doing maintenance May compromise security intentionally or unintentionally

23 23 Prevention - Policies Removal of access when someone leaves E-mail, Calendar, network logon, etc. Early notification of problems such as viruses What process in place to notify users of new viruses, etc. More than one person with key knowledge and access. Network backdoors setup Secret backups and password changes done before termination 18 months rebuilding system because of no documentation

24 24 Prevention – Policies Enforcement of policies If practice doesn’t follow policy than policies are not valid.

25 25 Recovery Save to the network Saving to the C: drive means no backups Verify that they are done Who is responsible? Who is their backup? External backups vs internal Proper tape rotation Off-site storage Periodic backup check before and emergency

26 26 Recovery Damaged servers RAID drives Maintenance contract or spare drives Mirrored or backup servers Hot site Routers, switches, hubs Maintenance contract of replacements

27 27 Recovery Applications media archived Escalation procedure to move to recovery quicker and to limit damages May need to isolate problem May need to change passwords

28 28 Forensics Log files: Intrusion detection logs Firewall logs Router logs Server logs Application logs

29 29 Forensics Unique log-ins Isolate systems Notify authorities Print screens (IM’ing, chat, e-mail, etc.) Terror threat to local HS Ballad of an e-mail terrorist Hard Dive recovery Anonymizer sites

Download ppt "Technology Solutions Conference School Security Technology Solutions Conference School Security."

Similar presentations

Information Security The Responsibility of Security Lies on The Shoulders of Each and Every User……. R. LaRocca 1997 Robert LaRocca - Director Information.

Information Security The Responsibility of Security Lies on The Shoulders of Each and Every User……. R. LaRocca 1997 Robert LaRocca - Director Information.
INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.

INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.
Thank you to IT Training at Indiana University Computer Malware.

Thank you to IT Training at Indiana University Computer Malware.
Woodland Hills School District Computer Network Acceptable Use Policy.

Woodland Hills School District Computer Network Acceptable Use Policy.
1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.

1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.
Computer viruses Hardware theft Software Theft Unauthorized access by hackers Information Theft Computer Crimes.

Computer viruses Hardware theft Software Theft Unauthorized access by hackers Information Theft Computer Crimes.
Current Security Threats WMO CBS ET-CTS Toulouse, France 26-30 May 2008 Allan Darling, NOAA’s National Weather Service WMO CBS ET-CTS Toulouse, France.

Current Security Threats WMO CBS ET-CTS Toulouse, France May 2008 Allan Darling, NOAA’s National Weather Service WMO CBS ET-CTS Toulouse, France.
Locking the Backdoor: Computer Security and Medical Office Practice Dr. Maury Pinsk, FRCPC University of Alberta Division of Pediatric Nephrology.

Locking the Backdoor: Computer Security and Medical Office Practice Dr. Maury Pinsk, FRCPC University of Alberta Division of Pediatric Nephrology.
Security+ Guide to Network Security Fundamentals

Security+ Guide to Network Security Fundamentals
Lesson 14-Desktop Protection. Overview Protect against malicious code. Use the Internet. Protect against physical tampering.

Lesson 14-Desktop Protection. Overview Protect against malicious code. Use the Internet. Protect against physical tampering.
INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.

INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.
Network Security. Network security starts from authenticating any user. Once authenticated, firewall enforces access policies such as what services are.

Network Security. Network security starts from authenticating any user. Once authenticated, firewall enforces access policies such as what services are.
Principles of Information Technology

Principles of Information Technology
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.

Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.
Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.

Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.
Incident Response Updated 03/20/2015

Incident Response Updated 03/20/2015
Security and Risk Management. Who Am I Matthew Strahan from Content Security Principal Security Consultant I look young, but I’ve been doing this for.

Security and Risk Management. Who Am I Matthew Strahan from Content Security Principal Security Consultant I look young, but I’ve been doing this for.
Security Measures Using IS to secure data. Security Equipment, Hardware Biometrics –Authentication based on what you are (Biometrics) –Biometrics, human.

Security Measures Using IS to secure data. Security Equipment, Hardware Biometrics –Authentication based on what you are (Biometrics) –Biometrics, human.

Similar presentations

Ads by Google