Presentation is loading. Please wait.

Presentation is loading. Please wait.

Networked Systems Survivability CERT ® Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 © 2002 Carnegie.

Published byAugustus Riley Modified over 8 years ago

Similar presentations

Presentation on theme: "Networked Systems Survivability CERT ® Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 © 2002 Carnegie."— Presentation transcript:

1 Networked Systems Survivability CERT ® Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 © 2002 Carnegie Mellon University ® CERT, CERT Coordination Center and Carnegie Mellon are registered in the U.S. Patent and Trademark Office Information Security for Technical Staff Module 4: Security Knowledge in Practice

2 © 2002 Carnegie Mellon University Module 4: Security Knowledge in Practice - slide 2 Instructional Objectives Define The Security Knowledge in Practice (SKiP) method List the steps in the SKiP method Explain the attributes of each step in the method Describe the benefits of implementing the SKiP method

3 © 2002 Carnegie Mellon University Module 4: Security Knowledge in Practice - slide 3 Overview The SKiP method is: New way to think about system administration Organized and orderly Repeatable Simple Has many applications

4 © 2002 Carnegie Mellon University Module 4: Security Knowledge in Practice - slide 4

5 © 2002 Carnegie Mellon University Module 4: Security Knowledge in Practice - slide 5 Raw materials Some tools for crafting Responsibility lies with SA “One size fits all” mentality

6 © 2002 Carnegie Mellon University Module 4: Security Knowledge in Practice - slide 6 Solves today’s known problems Remove unnecessary functionality Configure remaining parts correctly Add needed additional software

7 © 2002 Carnegie Mellon University Module 4: Security Knowledge in Practice - slide 7 Characterize: Files and directories Kernel Processes The network

8 © 2002 Carnegie Mellon University Module 4: Security Knowledge in Practice - slide 8 Unexpected changes Acceptable - update characterization Unacceptable - intrusion? External stimulus Patches/new versions for OS and applications New versions of tools

9 © 2002 Carnegie Mellon University Module 4: Security Knowledge in Practice - slide 9 Repair Return to production Diagnose/Take Off-line

10 © 2002 Carnegie Mellon University Module 4: Security Knowledge in Practice - slide 10 Post mortem Update policies and procedures Update response tools Support business case

11 © 2002 Carnegie Mellon University Module 4: Security Knowledge in Practice - slide 11 Repeat

12 © 2002 Carnegie Mellon University Module 4: Security Knowledge in Practice - slide 12 Review Questions -1 1.Name the seven steps in the SKiP Method. 2.The Hardening and Securing steps addresses what kind of problems? 3.The Prepare step addresses what kind of problems? 4.In the Detect step, anomalous behavior can have two meanings. What are they? 5.In which step are patches installed? 6.To which step does the repeat of the SKiP Method return?

13 © 2002 Carnegie Mellon University Module 4: Security Knowledge in Practice - slide 13 Review Questions -2 7.How long should the SKiP Method be applied to a system? 8.When you are in the Respond step as the result of an intrusion, when should you eliminate intruder access? 9.When applying the SKiP Method to an organization’s Intranet, name 2 “known” problems that you would address in the Hardening and Securing step. 10.When applying the SKiP Method to an organization’s Intranet, name 2 practices that you would do to characterize that network.

14 © 2002 Carnegie Mellon University Module 4: Security Knowledge in Practice - slide 14 Summary

Download ppt "Networked Systems Survivability CERT ® Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 © 2002 Carnegie."

Similar presentations

The following 10 questions test your knowledge of Internet-based client management in Configuration Manager 2007. Configuration Manager 2007 Internet-Based.

The following 10 questions test your knowledge of Internet-based client management in Configuration Manager Configuration Manager 2007 Internet-Based.
Carnegie Mellon University Software Engineering Institute CERT® Knowledgebase Copyright © 1997 Carnegie Mellon University VU#14202 UNIX rlogin with stack.

Carnegie Mellon University Software Engineering Institute CERT® Knowledgebase Copyright © 1997 Carnegie Mellon University VU#14202 UNIX rlogin with stack.
Ch-11 Project Execution and Termination. System Testing This involves two different phases with two different outputs First phase is system test planning.

Ch-11 Project Execution and Termination. System Testing This involves two different phases with two different outputs First phase is system test planning.
S3-1 © 2001 Carnegie Mellon University OCTAVE SM Process 3 Identify Staff Knowledge Software Engineering Institute Carnegie Mellon University Pittsburgh,

S3-1 © 2001 Carnegie Mellon University OCTAVE SM Process 3 Identify Staff Knowledge Software Engineering Institute Carnegie Mellon University Pittsburgh,
© 2008 Carnegie Mellon University Preventing Insider Threats: Avoiding the Nightmare Scenario of a Good Employee Gone Bad Dawn Cappelli October 31, 2008.

© 2008 Carnegie Mellon University Preventing Insider Threats: Avoiding the Nightmare Scenario of a Good Employee Gone Bad Dawn Cappelli October 31, 2008.
© 2003 Carnegie Mellon University slide 1 Building CSIRT Capabilities and the State of the Practice Georgia Killcrece CSIRT Development Team CERT ® Training.

© 2003 Carnegie Mellon University slide 1 Building CSIRT Capabilities and the State of the Practice Georgia Killcrece CSIRT Development Team CERT ® Training.
What Is My Role in Information Survivability? Why Should I Care? Julia H. Allen Networked Systems Survivability CERT ® Coordination Center Software Engineering.

What Is My Role in Information Survivability? Why Should I Care? Julia H. Allen Networked Systems Survivability CERT ® Coordination Center Software Engineering.
Networked Systems Survivability CERT ® Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 © 2002 Carnegie.

Networked Systems Survivability CERT ® Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA © 2002 Carnegie.
© 2001 by Carnegie Mellon University PPA-1 OCTAVE SM : Participants Briefing Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213.

© 2001 by Carnegie Mellon University PPA-1 OCTAVE SM : Participants Briefing Software Engineering Institute Carnegie Mellon University Pittsburgh, PA
© 2007-2011 Carnegie Mellon University The CERT Insider Threat Center.

© Carnegie Mellon University The CERT Insider Threat Center.
An Introduction to System Administration Chapter 1.

An Introduction to System Administration Chapter 1.
DEPARTMENT OBJECTIVES 1. To Identify and deploy information technology to meet business objective at CKPL. 2.To Provide support to users for systems usage.

DEPARTMENT OBJECTIVES 1. To Identify and deploy information technology to meet business objective at CKPL. 2.To Provide support to users for systems usage.
CERT ® System and Network Security Practices Presented by Julia H. Allen at the NCISSE 2001: 5th National Colloquium for Information Systems Security Education,

CERT ® System and Network Security Practices Presented by Julia H. Allen at the NCISSE 2001: 5th National Colloquium for Information Systems Security Education,
System and Network Security Practices COEN 351 E-Commerce Security.

System and Network Security Practices COEN 351 E-Commerce Security.
ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.

ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.
Version # Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 Sponsored by the U.S. Department of Defense © 1999 by Carnegie.

Version # Software Engineering Institute Carnegie Mellon University Pittsburgh, PA Sponsored by the U.S. Department of Defense © 1999 by Carnegie.
Version # Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 Sponsored by the U.S. Department of Defense © 1999 by Carnegie.

Version # Software Engineering Institute Carnegie Mellon University Pittsburgh, PA Sponsored by the U.S. Department of Defense © 1999 by Carnegie.
1 Carnegie Mellon University CERT Coordination Center Firewalls Institute of Internal Auditors Advanced Technology Conference and InfoExpo September 21,

1 Carnegie Mellon University CERT Coordination Center Firewalls Institute of Internal Auditors Advanced Technology Conference and InfoExpo September 21,
© 2003 by Carnegie Mellon University page 1 Information Security Risk Evaluation for Colleges and Universities Carol Woody Senior Technical Staff Software.

© 2003 by Carnegie Mellon University page 1 Information Security Risk Evaluation for Colleges and Universities Carol Woody Senior Technical Staff Software.
Installing and Configuring a Secure Web Server COEN 351 David Papay.

Installing and Configuring a Secure Web Server COEN 351 David Papay.

Similar presentations

Ads by Google