Presentation is loading. Please wait.

Presentation is loading. Please wait.

UTSA Amy(Yun) Zhang, Ram Krishnan, Ravi Sandhu Institute for Cyber Security University of Texas at San Antonio San Antonio, TX 78249 Nov 03, 2014 Presented.

Published byBernard Hodge Modified over 8 years ago

Similar presentations

Presentation on theme: "UTSA Amy(Yun) Zhang, Ram Krishnan, Ravi Sandhu Institute for Cyber Security University of Texas at San Antonio San Antonio, TX 78249 Nov 03, 2014 Presented."— Presentation transcript:

1 UTSA Amy(Yun) Zhang, Ram Krishnan, Ravi Sandhu Institute for Cyber Security University of Texas at San Antonio San Antonio, TX 78249 Nov 03, 2014 Presented by: Amy(Yun) Zhang Secure Information and Resource Sharing in Cloud Infrastructure as a Service Cyber Incident Response Models for Information and Resource Sharing

2 2 Ref: http://www.whitehouse.gov/issues/foreign-policy/cybersecurity/national-initiativehttp://www.whitehouse.gov/issues/foreign-policy/cybersecurity/national-initiative Information Sharing and Coordination Initiatives collaboration and coordination to enhance situational awareness – Share malicious activities on federal systems – Technologies, tools, procedures, analytics UTSA

3 Electric Grid Scenario Cyber incidents in electricity providers – Local utilities, regional, state, national operators Need a standing platform that facilitates sharing – Controlled access 3 UTSA

4 Scope Focus on technical challenges Sharing amongst a set of organizations – Information, infrastructure, tools, analytics, etc. – May want to share malicious or infected code/systems (e.g. virus, worms, etc.) – Sensitive – Often ad hoc What are the effective ways to facilitate sharing in such circumstances? – Information sharing models – Infrastructure, technologies, platforms 4

5 UTSA Key Requirements for Information Sharing Cyber infrastructure Light-weight and agile Rapid deployment and configuration Secure isolated environment 5

6 UTSA Cyber Infrastructure for Sharing Traditional platforms – Shared storage SharePoint, Dropbox, Google Drive, etc. – Shared infrastructure Grid computing Modern platform – Cloud 6

7 UTSA Cloud IaaS Advantages for Cyber Incident Sharing Virtualized resources – Theoretically, one can take a snapshot and mobilize Operational efficiency – Light-weight and agile – Rapid deployment and configuration – Dynamic scaling – Self-service 7

8 UTSA Cloud IaaS Challenges for Cyber Incident Sharing IaaS clouds lack secure sharing models – Storage – Compute – Networks Need ability to snapshot tenant infrastructure, share, and control who can access – Share by copy 8

9 UTSA Sharing Model in Cloud IaaS Participant B Secure Isolated Domain (SID) Add/Remove Data Join/Leave Users Add/Remove Data Join/Leave Users Add/Remove Data Join/Leave Users View #1: Org C View #1: Org B View #1: Org AParticipant C Participant A 9 View #2: SID Can create multiple secure isolated projects (SIPs) within SID with different controls

10 UTSA OpenStack – Dominant open-source cloud IaaS software > 200 companies ~14000 developers >130 countries 10 Ref: http://www.openstack.orghttp://www.openstack.org

11 UTSA OpenStack Access Control (OSAC) 11

12 UTSA OSAC-SID 12

13 UTSA Conceptual Model 13 ORG AORG B Establish/Disband Join User Leave User Remove Version Merge Version Substitute User Add Version Remove Version Merge Version Substitute User Create RO/RW Subject Kill Subject Create Object Read/Update Version Suspend/Resume Version Collaboration Group Create RO/RW Subject Kill Subject Create Object Read/Update Version Suspend/Resume Version Administrative Model Operational Model Add Version Import Version

14 UTSA OSAC-SID Administrative Model 14

15 UTSA OSAC-SID Operational Model 15

16 UTSA SID and SIP in OpenStack 16 SAWS Admin : SAWSadmin Users: Harry@SAWS IT-SAWS member SAPD Admin : SAPDadmin Users: Martin@SAPD IT-SAPD member Create Join Share objects, VMs, etc. CPS Admin : CPSadmin Users: Alice@CPS, Bob@CPS IT-CPS member SID-Critical-Infrastructure SIP- PortScanning SIP-DOS Users: Alice@CPS, Harry@SAWS Admins : CPSadmin, SAWSadmin

17 UTSA Conclusion and future work Developed sharing models – Formal specification Enhanced OpenStack with SID/SIP capabilities – Cyber incident response capabilities Self-service SID/SIP specific security Share data, tools, etc. in an isolated environment Ability to execute and analyze malicious code in an isolated environment – Practitioners can deploy a “cyber incident response” cloud – Potential blueprint for official OpenStack adoption Future work – more fine grained access control within a SIP – harden the implementation to prevent overt information flow 17

18 UTSA Thanks Q&A 18

Download ppt "UTSA Amy(Yun) Zhang, Ram Krishnan, Ravi Sandhu Institute for Cyber Security University of Texas at San Antonio San Antonio, TX 78249 Nov 03, 2014 Presented."

Similar presentations

INSTITUTE FOR CYBER SECURITY 1 Trusted Computing Models Prof. Ravi Sandhu Executive Director and Endowed Chair Institute for Cyber Security University.

INSTITUTE FOR CYBER SECURITY 1 Trusted Computing Models Prof. Ravi Sandhu Executive Director and Endowed Chair Institute for Cyber Security University.
Towards Secure Information Sharing Models for Community Cyber Security Ravi Sandhu, Ram Krishnan and Gregory B. White Institute for Cyber Security University.

Towards Secure Information Sharing Models for Community Cyber Security Ravi Sandhu, Ram Krishnan and Gregory B. White Institute for Cyber Security University.
1 Towards a Discipline of Mission-Aware Cloud Computing (A Position Paper) Ravi Sandhu Executive Director and Endowed Professor October 2010

1 Towards a Discipline of Mission-Aware Cloud Computing (A Position Paper) Ravi Sandhu Executive Director and Endowed Professor October 2010
Institute for Cyber Security

Institute for Cyber Security
1 New Trends and Challenges in Computer Network Security Ravi Sandhu Executive Director and Endowed Professor September 2010

1 New Trends and Challenges in Computer Network Security Ravi Sandhu Executive Director and Endowed Professor September 2010
1 Cloud Computing Prof. Ravi Sandhu Executive Director and Endowed Chair April 12, 2013 © Ravi Sandhu World-Leading.

1 Cloud Computing Prof. Ravi Sandhu Executive Director and Endowed Chair April 12, © Ravi Sandhu World-Leading.
If you knew what I know or CloudWave - Improving services in the Cloud through collaborative adaptation Eliot Salant IBM Haifa Research.

If you knew what I know or CloudWave - Improving services in the Cloud through collaborative adaptation Eliot Salant IBM Haifa Research.
Adopting Provenance-based Access Control in OpenStack Cloud IaaS October, 2014 NSS Presentation Institute for Cyber Security University of Texas at San.

Adopting Provenance-based Access Control in OpenStack Cloud IaaS October, 2014 NSS Presentation Institute for Cyber Security University of Texas at San.
Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.

Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.
Security, Privacy and the Cloud Connecticut Community Providers’ Association June 20, 2014 Steven R Bulmer, VP of Professional Services.

Security, Privacy and the Cloud Connecticut Community Providers’ Association June 20, 2014 Steven R Bulmer, VP of Professional Services.
Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –

Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –
Secure Cyber Incident Information Sharing UTSA Team Leads Dr. Ram Krishnan, Assistant Professor, ECE Dr. Ravi Sandhu, Executive Director, ICS April 30,

Secure Cyber Incident Information Sharing UTSA Team Leads Dr. Ram Krishnan, Assistant Professor, ECE Dr. Ravi Sandhu, Executive Director, ICS April 30,
Institute for Cyber Security Extending OpenStack Access Control with Domain Trust World-Leading Research with Real-World Impact! 1 Bo Tang and Ravi Sandhu.

Institute for Cyber Security Extending OpenStack Access Control with Domain Trust World-Leading Research with Real-World Impact! 1 Bo Tang and Ravi Sandhu.
BETA!BETA! Building a secure private cloud on Microsoft technologies Private cloud security concerns Security & compliance in a Microsoft private cloud.

BETA!BETA! Building a secure private cloud on Microsoft technologies Private cloud security concerns Security & compliance in a Microsoft private cloud.
Cloud Usability Framework

Cloud Usability Framework
11 World-Leading Research with Real-World Impact! Role and Attribute Based Collaborative Administration of Intra-Tenant Cloud IaaS (Invited Paper) Xin.

11 World-Leading Research with Real-World Impact! Role and Attribute Based Collaborative Administration of Intra-Tenant Cloud IaaS (Invited Paper) Xin.
Secure Information and Resource Sharing in CloudSecure Information and Resource Sharing in Cloud References OSAC-SID Model [1]K. Harrison and G. White.

Secure Information and Resource Sharing in CloudSecure Information and Resource Sharing in Cloud References OSAC-SID Model [1]K. Harrison and G. White.
11 World-Leading Research with Real-World Impact! A Formal Model for Isolation Management in Cloud Infrastructure-as-a-Service Khalid Zaman Bijon, Ram.

11 World-Leading Research with Real-World Impact! A Formal Model for Isolation Management in Cloud Infrastructure-as-a-Service Khalid Zaman Bijon, Ram.
Introduction to Cloud Computing

Introduction to Cloud Computing
TECHNOLOGY GUIDE THREE Emerging Types of Enterprise Computing.

TECHNOLOGY GUIDE THREE Emerging Types of Enterprise Computing.

Similar presentations

Ads by Google