Dataplane and Content Security on Optical Networks panel.

Slides:

Advertisements

Similar presentations

Caltech Proprietary Videoconferencing Security in VRVS 3.0 and Future Videoconferencing Security in VRVS 3.0 and Future Kun Wei California Institute of.

Advertisements

© 2006 Open Grid Forum Firewall Models Firewall Issues Research Group - OGF 19 Chapel Hill - Januari 30th 2007 Inder Monga, Leon Gommans.

Oct, 26 th, 2010 OGF 29, FVGA-WG: Firewall Virtualization for Grid Applications Firewall Virtualization for Grid Applications - Status update

Fujitsu Laboratories of Europe © 2004 What is a (Grid) Resource? Dr. David Snelling Fujitsu Laboratories of Europe W3C TAG - Edinburgh September 20, 2005.

New Solutions to New Threats. The Threats, They Are A Changing Page 2 | © 2008 Palo Alto Networks. Proprietary and Confidential.

NAT, firewalls and IPv6 Christian Huitema Architect, Windows Networking Microsoft Corporation.

Security in VoIP Networks Juan C Pelaez Florida Atlantic University Security in VoIP Networks Juan C Pelaez Florida Atlantic University.

Security Daniel Mallmann MWSG meeting Amsterdam December 2005.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

Local Wireless Network - An wireless Access Point (AP) which is the bridge the ethernet network and the wireless network -The AP protect its wireless network.

H. 323 and firewalls: Problem Statement and Solution Framework Author: Melinda Shore, Nokia Presenter: Shannon McCracken.

Generic AAA model in Grids IRTF - AAAARCH meeting IETF 52 – Dec 14 th Salt Lake City Leon Gommans Advanced Internet Research Group.

Page: October 2006 © 2006 VIVACE Consortium Members. All rights reserved VIVACE FORUM (0) {mkamel, benzekri, barrere, nasser}

Chapter 12 Network Security.

1 CS 502: Computing Methods for Digital Libraries Lecture 22 Web browsers.

K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.

Circuit & Application Level Gateways CS-431 Dick Steflik.

Firewalls Presented By Hareesh Pattipati. Outline Introduction Firewall Environments Type of Firewalls Future of Firewalls Conclusion.

1 © J. Liebeherr, All rights reserved Virtual Private Networks.

1 Enabling Secure Internet Access with ISA Server.

Course 201 – Administration, Content Inspection and SSL VPN

Virtual Private Networks Alberto Pace. IT/IS Technical Meeting – January 2002 What is a VPN ? u A technology that allows to send confidential data securely.

Virtual Company Group 8 Presentation Date: June /04/2017

CHAPTER 2 PCs on the Internet Suraya Alias. The TCP/IP Suite of Protocols Internet applications – client/server applications The client requested data.

Remote Access Chapter 4. Learning Objectives Understand implications of IEEE 802.1x and how it is used Understand VPN technology and its uses for securing.

Dynamic Firewalls and Service Deployment Models for Grid Environments Gian Luca Volpato, Christian Grimm RRZN – Leibniz Universität Hannover Cracow Grid.

Presented by Xiaoyu Qin Virtualized Access Control & Firewall Virtualization.

9/20/04 GGF12 - Firewall Panel: Globus Perspective on Network Hurdles1 Globus Perspective on “Network Hurdles” Panel: Firewall and high-performance.

Chapter 18: Doing Business on the Internet Business Data Communications, 4e.

Firewall Technologies Prepared by: Dalia Al Dabbagh Manar Abd Al- Rhman University of Palestine

Grid Chemistry System Architecture Overview Akylbek Zhumabayev.

Sudarshan Yadav Sr. Program Manager, Microsoft

Communicating Security Assertions over the GridFTP Control Channel Rajkumar Kettimuthu 1,2, Liu Wantao 3,4, Frank Siebenlist 1,2 and Ian Foster 1,2,3 1.

1 Firewalls Types of Firewalls Inspection Methods  Static Packet Inspection  Stateful Packet Inspection  NAT  Application Firewalls Firewall Architecture.

An analysis of Skype protocol Presented by: Abdul Haleem.

FTP File Transfer Protocol Graeme Strachan. Agenda  An Overview  A Demonstration  An Activity.

Internet2 AdvCollab Apps 1 Access Grid Vision To create virtual spaces where distributed people can work together. Challenges:

Implications of Trust Relationships for NSIS Signaling (draft-tschofenig-nsis-casp-midcom.txt) Authors: Hannes Tschofenig Henning Schulzrinne.

ALCF Argonne Leadership Computing Facility GridFTP Roadmap Bill Allcock (on behalf of the GridFTP team) Argonne National Laboratory.

Firewall Technology and InterCell Communication Peter T. Dinsmore Trusted Information Systems Network Associates Inc 3060 Washington Rd (Rt. 97) Glenwood,

Lect 8 Tahani al jehain. Types of attack Remote code execution: occurs when an attacker exploits a software and runs a program that the user does not.

SDP & RTP & NAT Christian Huitema. What NAT do Map ports –TCP connection –UDP stream (activity) Firewall variants –One port, any peer –One port, any “authorized”

A Sneak Peak of What’s New in Globus GridFTP John Bresnahan Michael Link Raj Kettimuthu (Presenting) Argonne National Laboratory and The University of.

Illinois Health Network The 14th Global Grid Forum Chicago, Illinois June 27, 2005.

Johan Delimon 26/04/2016 BE-COM E-COMMUNICATIONS EVENT THE INNER WORKINGS OF SKYPE FOR BUSINESS: NETWORKING.

Presented By Hareesh Pattipati.  Introduction  Firewall Environments  Type of Firewalls  Future of Firewalls  Conclusion.

Firewall Issues Research Group First meeting yesterday, GGF 14 Mailing list: Projects page:

FILE TRANSFER SPEEDS OVER HTTP AND FTP Yibiao Li 06/01/2009 Christmas Meeting 2008/09.

Co-Chair(s): Roger Kosak (US) J.P. Martin-Flatin (CERN, CH) Pascale Primet Vicat-Blanc (INRIA, FR) Secretary: Neil Chue Hong (EPCC, UK)

GGF 17 - May, 11th 2006 FI-RG: Firewall Issues Overview Document update and discussion The “Firewall Issues Overview” document.

Firewall Issues BoF 5:00 Agenda bashing, find note-taker, sign-up sheets, IPR. 5:05 Introduction - Leon Gommans UvA 5:20 SOAP Routing Issues - Frank Siebenlist.

Virtual Private Networks

Chapter 1: Explore the Network

Chapter 1: Exploring the Network

Virtual Private Networks

Firewall Issues Research Group GGF-15 Oct Boston, Ma Leon Gommans - University of Amsterdam Inder Monga - Nortel Networks.

OGSA-WG Basic Profile Session #1 Security

Tapeless And Security.

Firewall – Survey Purpose of a Firewall Characteristic of a firewall

Grid Network Services: Lessons from SC04 draft-ggf-bas-sc04demo-0.doc

Study course: “Computing clusters, grids and clouds” Andrey Y. Shevel

Security of a Local Area Network

Status and Future Steps

File Transfer Protocol

Firewalls and GMPLS Networks: A token based approach

Advanced Computer Networks

COMPANY PROFILE. Contents Company Profile  Architectural Design, Plans & Drawings  Construction Management, Costing & Implementation  Process Measurement.

Global One Communications

Presentation transcript:

Dataplane and Content Security on Optical Networks panel

Agenda Digital Media Security - Laurin Herr Data Encryption - Kim Roberts Firewall Issues - Leon Gommans Discussion.

Firewall Issues and the Grid Leon Gommans - University of Amsterdam

Perspective “It would be good if grandma went to a retirement home“

Perspective “It is a good thing that we have firewalls “

Prevent DetectAct Grid Application Issues Network Security Issues Firewall Prevention: both good and bad Network Security Cycle Network safety! My application needs to work!

Firewall Issues Research Group Research Group at the Global Grid Forum ( Scope: Issues with firewall style functions Functional, Control, Performance, Organizational issues Firewalls & NATs, VPN gateways, Application gateways First formal meeting held at june GGF meeting in Chicago. Looking for additional participation from applications

Charter items Collect and document issues from the grid viewpoint. Define the categories of issues. Study existing technologies available Identify gaps and define requirements for standards bodies. Issue document also handy for Network Security People. Research alternative ways to ensure network security.

Contributions received so far German Aerospace Centre Workflow driven firewall control requirements. Forchungs Zentrum Juelich Authorization requirements Argonne National Laboratory Why Gridftp needs a firewall “garage door opener” External clients using WS End Point References behind a firewall University of Amsterdam Integrate firewalls long haul optical (peer) connections. Using EAP as garage door opener Your contribution?

Example: gridftp Firewall administrators don’t want to open 1002 holes in their firewall. Any questions ? Globus recommends to open ports (1001) Gridftp: single control channel port (2811) & multiple data ports in Globus port range. Protocol requires that the sending side do the TCP connect. Information which port(s) will be used is known at last moment. 8 streams per file-transfer has proven to be reasonable. Gridftp needs a “garage-door opener” for individual ports at time of transfer. Door must also automatically close. Thinking about EAP style (like used in 802.1X WLANs) solution where you authenticate an application in stead of a user. Application profiles determine which holes are allowed.

Optical long haul network Multi-domain control and management plane Grid App l Grid FTP Fire Wall A Fire Wall B Fire Wall C Fire Wall D Grid App l Grid FTP I nter net DMZ D InternetBypass Grid VO

Future documents Requirements towards standards bodies IETF: NSIS, MIDCOM, EAP Trusted Computing group: Trusted Computing Architecture EAP extensions for virus checking Research into new directions Token Based networking High speed encryption Workflow system integration etc.