Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Approach to Security in CLRC Gareth Smith With acknowledgements to all the members of the CLRC Computer Network and Security Group, especially Trevor.

Published byAlexa Grant Modified over 10 years ago

Similar presentations

Presentation on theme: "The Approach to Security in CLRC Gareth Smith With acknowledgements to all the members of the CLRC Computer Network and Security Group, especially Trevor."— Presentation transcript:

1 The Approach to Security in CLRC Gareth Smith With acknowledgements to all the members of the CLRC Computer Network and Security Group, especially Trevor Daniels and Chris Seelig.

2 Organisational Structure CLRC IS Security Officer Departmental IS Security Officers Computer & Network Security Group. Central Networking and Computer Support Teams

3 History CNSG created in 1998 – result of audit recommendations. –Before security matters handled in separate interest groups (e.g Windows NT). –Manual checking of logs for scans and application of network blocks in router. –Creation of e-mail list for security matters.

4 1999 – Firewall Set-up Early: –Drafting security policy. –Some protocols filtered. Mid: –Move server systems into given range of IP addresses and block incoming TCP connections to all others. Implemented in routers –Tighten (and check) NT passwords. End: –Start to put protocol filtering in for servers. –Draft incident recovery procedures

5 2000 As result of audit: –Define systems of High Business Impact –Modem registry Lovebug Virus – Approx 100 systems infected. –Filters put in Exchange and use of Outlook Security Patch.

6 2001 Concerns over security of home PCs with always on connections. –Guidelines requiring anti-virus and personal firewall on laptops & systems dialling in. Start internal audits of departments. Define rules for use of wireless LANs Concerns over IIS security – aim to reduce numbers of web servers. Use e-mail blacklist to filter spam mail. Nimda worm/virus. About 6 systems infected. –Force use of web cache.

7 2001 – Firewall Upgrade Upgrades to networking (within and off-site) Gnatbox – http://www.gnatbox.com/http://www.gnatbox.com/ –PC based system. Some 300 – 400 rules.

8 2002 Bad start to year with rise in number of incidents. Roll out of latest Internet Explorer Security Patch within a week. Who knows what is next ……

9 Nimda Virus / Worm 4 methods of infection: –E-mail –Web browsing –Network shares –Code Red worm.

10 E-mail protection Exchange Server Mail staging Anti Virus Scan (1) Anti Virus Scan (2) Some attachments removed. Outlook Client Anti-Virus Scan (3) Some attachments removed.

11 Lack of e-mail protection LINUX Client IMAP POP RAL Network RAL Institute for fusion in cold beer bubbles Disk server Internet

12 How have we been hacked (1) Anonymous ftp left open on web server. –Found by anti-virus software. –System being used as a repository. –Analysis of logs was confusing –Server had to be completely re-installed.

13 How have we been hacked (2) RAL Boulby Mine CISCO Router Firewall Router Internet ISDN 400km End System

14 Concerns / Aims Concerns –Rapidly spreading virus/worm. Need to subdivide network to contain any infection. –Risks of web browsing Need to keep patching. Aims –More than one line of defence in all cases.

Download ppt "The Approach to Security in CLRC Gareth Smith With acknowledgements to all the members of the CLRC Computer Network and Security Group, especially Trevor."

Similar presentations

Keep Your PC Safe (Windows 7, Vista or XP) Nora Lucke 02/05/2012 Documents - security.

Keep Your PC Safe (Windows 7, Vista or XP) Nora Lucke 02/05/2012 Documents - security.
How Does the Internet Work? A Basic Introduction to the Worlds Biggest Computer Network.

How Does the Internet Work? A Basic Introduction to the Worlds Biggest Computer Network.
Physics Network Integration Chris Hunter. Physics network team Chris Hunter : Network Manager David Newton : Network Support Technician Room DWB 663 Phone.

Physics Network Integration Chris Hunter. Physics network team Chris Hunter : Network Manager David Newton : Network Support Technician Room DWB 663 Phone.
ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.

ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.
HIPAA Security Standards What’s happening in your office?

HIPAA Security Standards What’s happening in your office?
Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia

Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia
Computer Networks An Overview. A Computer Network!

Computer Networks An Overview. A Computer Network!
Wi-Fi Structures.

Wi-Fi Structures.
Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.

Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.
Network and Systems Security Security Awareness, Risk Management, Policies and Network Architecture.

Network and Systems Security Security Awareness, Risk Management, Policies and Network Architecture.
Firewall and Proxy Server Director: Dr. Mort Anvari Name: Anan Chen Date: Summer 2000.

Firewall and Proxy Server Director: Dr. Mort Anvari Name: Anan Chen Date: Summer 2000.
 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.

 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.
Installing and Maintaining ISA Server. Planning an ISA Server Deployment Understand the current network infrastructure Review company security policies.

Installing and Maintaining ISA Server. Planning an ISA Server Deployment Understand the current network infrastructure Review company security policies.
Developing a Security Policy Chapter 2. Learning Objectives Understand why a security policy is an important part of a firewall implementation Determine.

Developing a Security Policy Chapter 2. Learning Objectives Understand why a security policy is an important part of a firewall implementation Determine.
Internet Safety By Megan Wilkinson. Viruses If your computer haves a viruses on it, it will show one of them or a different one. All commuters have different.

Internet Safety By Megan Wilkinson. Viruses If your computer haves a viruses on it, it will show one of them or a different one. All commuters have different.
Computer security virus, hacking and backups. Computer viruses are small software programs that are designed to spread from one computer to another.

Computer security virus, hacking and backups. Computer viruses are small software programs that are designed to spread from one computer to another.
First Community Bank www.fcbnm.com Prevx Safe Online Rollout & Best Practice Presentation.

First Community Bank Prevx Safe Online Rollout & Best Practice Presentation.
CS426Fall 2010/Lecture 361 Computer Security CS 426 Lecture 36 Perimeter Defense and Firewalls.

CS426Fall 2010/Lecture 361 Computer Security CS 426 Lecture 36 Perimeter Defense and Firewalls.
Virtual Company Group 8 Presentation Date: June /04/2017

Virtual Company Group 8 Presentation Date: June /04/2017
Leaders’ Forum, March 16, 2006 The Invisible Risk: Leaders’ Role in Protecting Western’s Electronic Information.

Leaders’ Forum, March 16, 2006 The Invisible Risk: Leaders’ Role in Protecting Western’s Electronic Information.

Similar presentations

Ads by Google