Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Integrated Site Security Project Denise Heagerty CERN 22 May 2007.

Published byMaryann Rodgers Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Integrated Site Security Project Denise Heagerty CERN 22 May 2007."— Presentation transcript:

1 1 Integrated Site Security Project Denise Heagerty CERN 22 May 2007

2 2 Overview Evolution of incidents at CERN Security goals for CERN Causes of security break-ins Integrated site security project ISSeG: Integrated Site Security for Grids

3 3 Evolution of incidents since May 2000

4 4 Security Goals for CERN Keep the site working effectively and able to assure the organisation's mandate Prevent/Limit the impact of incidents based on their risks. Specifically: Pro-actively alert/protect against common and likely attacks Rapidly isolate systems placing the site at risk For services, ensure that security incidents do not adversely affect the service definition levels (availability, privacy,...) Balance the cost of an incident against the cost of the ability to prevent it Ensure the ability to record, measure and control risks (human, financial, image,...)

5 5 Causes of break-ins (1) Known security holes Unpatched systems and applications are a constant target Additional code often lacks automated updates (e.g. web plug-ins) 0 Day exploits: security holes without patches Firewall, application and account access controls give some protection Users are key targets for exploits (social engineering) Weak/missing/default passwords Care is needed when installing additional (commercial) applications which may have known default passwords Insufficient file protections Popular for transiting illegal data or as a stepping stone for further break-ins Insufficiently protected web pages can be abused for unwanted advertising Web based mail archives need sufficient protections

6 6 Causes of break-ins (2) Files on the Internet hiding trojan code Popular files are targets, e.g. music, video, games, software Hiding trojans in ‘free’ security tools is a known devious trick Capturing passwords Compromised systems at remote sites are used to capture passwords Keyboard loggers are popular in new viruses Tricking users is (too) often successful To visit rogue web sites, open attachments, execute code … Web based forums and Instant Messaging are growing targets Often combined with 0day exploits Phishing attacks to steal passwords, identity, bank and credit card details

7 7 Additional Concerns… 0day exploits are increasing Little/no time for preventative action Botnets are evolving Will become harder to detect Social engineering is getting harder to detect Tricks are sophisticated and targeted Databases are a key target Identity and information theft is profitable Web applications are a key target http://www.honeynet.org/papers/webapp/ P2P technologies are hard to control Used for voice, video, software updates…. Difficult to distinguish P2P traffic from suspicious network activity

8 8 Integrated Site Security Project: Motivation Incidents were increasing Recovery is expensive: loss of service, diverted resources, … Major incidents had impacted normal working Network and other services had been unavailable Control systems needed additional protection Moving to ‘commodity’ solutions but security is lacking Grid computing extends security implications Sites are interconnected and incidents can easily spread Technical solutions provide only partial protection Policies and procedures need to defined/updated/enforced People need training and clear responsibilities This led to the Integrated Site Security concept Combining technical, administrative and educational security solutions

9 9 Strategic Directions Identified Centralise management of resources adapt security levels based on groups of devices or users must be flexible enough to meet needs and avoid exceptions Integrate identity and resource management link formal registrations with account controls Enhance network connectivity management database-driven with links to devices and people Integrate and evolve security mechanisms and tools adapt to new threats and technologies (e.g. 10Gbps links) Integrate security training, best practices and administrative procedures ensure security training and clear responsibilities balance academic freedom with its risks and costs

10 10 : Integrated Site Security for Grids Managers  Project co-funded by the European Commission http://www.isseg.eu http://www.isseg.eu  Extends and disseminates ISS expertise:  Recommendations  Methodologies  Training Material  Targets Grid sites ISS: Integrated Site Security

Download ppt "1 Integrated Site Security Project Denise Heagerty CERN 22 May 2007."

Similar presentations

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.
How to protect yourself, your computer, and others on the internet

How to protect yourself, your computer, and others on the internet
Thank you to IT Training at Indiana University Computer Malware.

Thank you to IT Training at Indiana University Computer Malware.
Internet Safety Topic 2 Malware This presentation by Tim Fraser Malware is short for malicious software VirusesViruses SpywareSpyware AdwareAdware other.

Internet Safety Topic 2 Malware This presentation by Tim Fraser Malware is short for malicious software VirusesViruses SpywareSpyware AdwareAdware other.
A Software Keylogger Attack By Daniel Shapiro. Social Engineering Users follow “spoofed” emails to counterfeit sites Users “give up” personal financial.

A Software Keylogger Attack By Daniel Shapiro. Social Engineering Users follow “spoofed” s to counterfeit sites Users “give up” personal financial.
Computer viruses Hardware theft Software Theft Unauthorized access by hackers Information Theft Computer Crimes.

Computer viruses Hardware theft Software Theft Unauthorized access by hackers Information Theft Computer Crimes.
NCS welcome all participants on behalf of Quick Heal Anti Virus and Fortinet Firewall solution.

NCS welcome all participants on behalf of Quick Heal Anti Virus and Fortinet Firewall solution.
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
Software Security Threats Threats have been an issue since computers began to be used widely by the general public.

Software Security Threats Threats have been an issue since computers began to be used widely by the general public.
Lesson 14-Desktop Protection. Overview Protect against malicious code. Use the Internet. Protect against physical tampering.

Lesson 14-Desktop Protection. Overview Protect against malicious code. Use the Internet. Protect against physical tampering.
Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services

Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services
LittleOrange Internet Security an Endpoint Security Appliance.

LittleOrange Internet Security an Endpoint Security Appliance.
Wonga example Register Question- What risks do you think businesses face due to IT developments?

Wonga example Register Question- What risks do you think businesses face due to IT developments?
Computer Security 1 Keeping your computer safe. Computer Security 1 Computer Security 1 includes two lessons:  Lesson 1: An overview of computer security.

Computer Security 1 Keeping your computer safe. Computer Security 1 Computer Security 1 includes two lessons:  Lesson 1: An overview of computer security.
Security Awareness Challenges of Security No single simple solution to protecting computers and securing information Different types of attacks Difficulties.

Security Awareness Challenges of Security No single simple solution to protecting computers and securing information Different types of attacks Difficulties.
The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions 631-692-5175 Steve Katz, CISSP Security.

The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions Steve Katz, CISSP Security.
Threats and ways you can protect your computer. There are a number of security risks that computer users face, some include; Trojans Conficker worms Key.

Threats and ways you can protect your computer. There are a number of security risks that computer users face, some include; Trojans Conficker worms Key.
Information Security Information Technology and Computing Services Information Technology and Computing Services

Information Security Information Technology and Computing Services Information Technology and Computing Services
Internet Safety By Megan Wilkinson. Viruses If your computer haves a viruses on it, it will show one of them or a different one. All commuters have different.

Internet Safety By Megan Wilkinson. Viruses If your computer haves a viruses on it, it will show one of them or a different one. All commuters have different.
Internet safety By Lydia Snowden.

Internet safety By Lydia Snowden.

Similar presentations

Ads by Google