Presentation is loading. Please wait.

Presentation is loading. Please wait.

Scenario 2: Safety Critical Instruments. Threats/Risk Analysis o All the usual grid problems o Greater risk of overlapping resource usage o Risk of confidentiality.

Published bySarah Pugh Modified over 10 years ago

Similar presentations

Presentation on theme: "Scenario 2: Safety Critical Instruments. Threats/Risk Analysis o All the usual grid problems o Greater risk of overlapping resource usage o Risk of confidentiality."— Presentation transcript:

1 Scenario 2: Safety Critical Instruments

2 Threats/Risk Analysis o All the usual grid problems o Greater risk of overlapping resource usage o Risk of confidentiality leaks (accidental?) o Grid ethos conflicts with safety-critical ops o Impact severity of information leaks (eg pharma paranoia)

3 Major Issues o Requirements to make results publicly available (at some time) o How does remote user verify actual derivation of results for review/publication

4 Policy Requirements o Document user-interaction with service/resource (like extended lab manual) o Decouple low-level execution language o From high-level service use language o Encode these requirements into interface/translation constraints to eqip controlling software

5 Trust Relationships o Not based solely on technical (electronic) assertions (eg PKI) o Trust based on signing chain expressed a credibility (authority of institution (RA)) o Trust to use resource mediated by research council o Trust to use resource ultimately based on local authorisation

6 Roles o Physical operation o Service access o Service provision (local RA/grid) o Training provider (in house for project kit; outside fore remote safety training) o Roles not static o Security officer

7 Technical Gaps o Graceful failure – grid mediated authorisation o Last resort – console access to perform shutdown recover o Local+remote authentication and authorisation for local equipment for example grid firewalls, changing over time o Firewall to protect campus nets from outdoing grid traffic o Vendor eqpt not designed with security of interoperability in mind o Requires common language to express services constraints on use (esp safety criticality)

8 Training Requirements o Generic – for end users (safe key storage etc) o Safety – ring fenced security layers to stop users doing undesirable things o Resources – classify and identify resources according to safety criticality and authorise accordingly.

9 Recommendations oDistinguish infrastructure issues from project resource specific –specific ones oIdentify other safety concerned grid projects (as well as safety crucial resources or operations)

10 Recommendations o Distinguish infrastructure issues from project resource specific –specific ones o Identify other safety concerned grid projects (as well as safety crucial resources or operations)

Download ppt "Scenario 2: Safety Critical Instruments. Threats/Risk Analysis o All the usual grid problems o Greater risk of overlapping resource usage o Risk of confidentiality."

Similar presentations

Cybersecurity and UAV Issues John Rose, Deputy-Director, Public Policy, Region VI.

Cybersecurity and UAV Issues John Rose, Deputy-Director, Public Policy, Region VI.
Practical Digital Signature Issues. Paving the way and new opportunities. www.oasis-open.org Juan Carlos Cruellas – DSS-X co-chair Stefan Drees - DSS-X.

Practical Digital Signature Issues. Paving the way and new opportunities. Juan Carlos Cruellas – DSS-X co-chair Stefan Drees - DSS-X.
Federated Digital Rights Management Mairéad Martin The University of Tennessee TERENA General Assembly Meeting Prague, CZ October 24, 2002.

Federated Digital Rights Management Mairéad Martin The University of Tennessee TERENA General Assembly Meeting Prague, CZ October 24, 2002.
Auditing Computer Systems

Auditing Computer Systems
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.

Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.

6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.
6/4/2015Page 1 Enterprise Service Bus (ESB) B. Ramamurthy.

6/4/2015Page 1 Enterprise Service Bus (ESB) B. Ramamurthy.
Requirements Capture and Specification IACT424/924 Corporate Network Design and Implementation.

Requirements Capture and Specification IACT424/924 Corporate Network Design and Implementation.
ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.

ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.
Brooks Evans – CISSP-ISSEP, Security+ IT Security Officer Arkansas Department of Human Services.

Brooks Evans – CISSP-ISSEP, Security+ IT Security Officer Arkansas Department of Human Services.
CSE 4482, 2009 Session 21 Personal Information Protection and Electronic Documents Act Payment Card Industry standard Web Trust Sys Trust.

CSE 4482, 2009 Session 21 Personal Information Protection and Electronic Documents Act Payment Card Industry standard Web Trust Sys Trust.
Comb-e-Chem PKI Mike Surridge, Steve Taylor IT Innovation.

Comb-e-Chem PKI Mike Surridge, Steve Taylor IT Innovation.
Alter – Information Systems 4th ed. © 2002 Prentice Hall 1 E-Business Security.

Alter – Information Systems 4th ed. © 2002 Prentice Hall 1 E-Business Security.
Business Intelligence: Data and Text Management Instructor: Bajuna Salehe Web:

Business Intelligence: Data and Text Management Instructor: Bajuna Salehe Web:
Introduction to Network Defense

Introduction to Network Defense
Deploying a Certification Authority for Networks Security Prof. Dr. VICTOR-VALERIU PATRICIU Cdor.Prof. Dr. AUREL SERB Computer Engineering Department Military.

Deploying a Certification Authority for Networks Security Prof. Dr. VICTOR-VALERIU PATRICIU Cdor.Prof. Dr. AUREL SERB Computer Engineering Department Military.
Vilnius, October 21st, 2002 © eEurope SmartCards Securing a Telework Infrastructure: Smart.IS - Objectives and Deliverables Dr. Lutz Martiny Co-Chairman,

Vilnius, October 21st, 2002 © eEurope SmartCards Securing a Telework Infrastructure: Smart.IS - Objectives and Deliverables Dr. Lutz Martiny Co-Chairman,
8 Nob 06 / CEN/ISSS www.thalesgroup.com/esecurity ETSI STF 305: Procedures for Handling Advanced Electronic Signatures on Digital Accounting CEN/ISSS Workshop.

8 Nob 06 / CEN/ISSS ETSI STF 305: Procedures for Handling Advanced Electronic Signatures on Digital Accounting CEN/ISSS Workshop.
LEVERAGING UICC WITH OPEN MOBILE API FOR SECURE APPLICATIONS AND SERVICES Ran Zhou 1 9/3/2015.

LEVERAGING UICC WITH OPEN MOBILE API FOR SECURE APPLICATIONS AND SERVICES Ran Zhou 1 9/3/2015.

Similar presentations

Ads by Google