SlideShare una empresa de Scribd logo

Securing the Hastily Formed Network: Infosec for Disaster Relief and Emergency Response

Descargar como PPTX, PDF
Cisco Crisis Response
Cisco Crisis Response

Effectively responding to modern disasters and humanitarian emergencies requires a substantial amount of connectivity. Whether for cloud, social media, GIS, or other critical access, emergency managers increasingly rely upon Internet access as a key service alongside traditional emergency and humanitarian support, such as search and rescue and medical support. "Hastily Formed Networks" are the networks that are created in the immediate aftermath of a disaster. While they perform vital services, most HFN deployments are significantly lacking in security management and oversight. This talk discussed HFNs, and the evolution of security on these networks using examples from Hurricane Katrina to the ongoing Ebola Virus crisis in West Africa.

Tecnología
1 de 32
Securing the Hastily Formed Network Cisco Tactical Operations www.cisco.com/go/tacops @CiscoTACOPS April 2015 Infosec for Disaster Relief and Emergency Response
Agenda: Introductions The Hastily Formed Network HFN Examples Infosec and HFNs Cyberattacks and Countermeasures Conclusion…
Cisco Public 3© 2013-2014 Cisco and/or its affiliates. All rights reserved. Introductions
Cisco Public 44© 2013-2014 Cisco and/or its affiliates. All rights reserved. Emergency Response – Cisco TACOPS Dedicated crisis response team that establishes emergency networks after a disaster TacOps personnel skills include: Technical Expertise Planning, Logistics and Operations Trained First Responders (Fire, EMS) Military Service
Cisco Public 55© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Tactical Operations: Emergency Responses • 2005 – Hurricane Katrina (LA) • 2007 – Harris Fire (San Diego, CA) * • 2008 – Evans Road Fire (NC) * • 2008 – Cedar Rapids Floods (IA) * • 2008 – Hurricane Gustav (LA) * • 2008 – Hurricane Ike (TX) * • 2009 – Morgan Hill Fiber Cut (CA) * • 2010 – Earthquake (Haiti) • 2010 – Plane Crash (Palo Alto, CA) * • 2010 – Four Mile Canyon Fire (CO) • 2010 – Operation Verdict (Oakland, CA) * • 2010 – Earthquake (Christchurch, NZ) • 2010 – Gas Pipeline Explosion (San Bruno, CA) * • 2011 – Flooding (Queensland, AU) • 2011 – Tornados (Raleigh, NC) * • 2011 – Tornados (AL) * • 2011 – Tornado (Joplin, MO) • 2011 – Tornado (Goderich, Ontario) • 2011 – Flooding (Brazil) • 2011 – Earthquake and Tsunami (Japan) • 2012 – Dadaab Refugee Camp (Kenya) • 2012 – Waldo Canyon Fire (CO) * • 2012 – Hurricane Sandy (NY / NJ) * • 2013 – Boston Marathon Explosion (MA) • 2013 – Fertilizer Plant Explosion (West, TX) * • 2013 – Tornado (Moore, OK) * • 2013 – St. Mary’s College Fire (Leyland, UK) • 2013 – Navy Yard Shooting (Washington, DC) • 2013 – Typhoon Haiyan / Yolanda (Philippines) • 2014 – Carlton Complex Fire (WA) * • 2014 – King Fire (CA) • 2014 – Ebola virus crisis (West Africa) • 2015 – Cyclone Pam (Vanuatu) * = NERV / ECU Deployed
Cisco Public 6© 2013-2014 Cisco and/or its affiliates. All rights reserved. The Hastily Formed Network
Cisco Public 77© 2013-2014 Cisco and/or its affiliates. All rights reserved. All Crisis Responders Share the Same Problem Public Safety 7 How to deliver the right information in the right format to the right person at the right time on the right device? Defense National, State & Local Government HealthcareCritical Infrastructure Transportation NGOs/VOADs/ International Orgs
Cisco Public 88© 2013-2014 Cisco and/or its affiliates. All rights reserved. Radio, phone Radio + Integrated Data Single device Any Device (BYOD) Voice only Voice, Video, Data Closed teams Open collaboration Command centric In the field, social media, everyone Fixed locations Deployable anywhere The Need for Technology in Disaster is Increasing Goal: Mission workflow and productivity benefits to save lives and speed recovery.
Cisco Public 99© 2013-2014 Cisco and/or its affiliates. All rights reserved. Typical ICT Challenges In Disaster  Information and Computing Technologies (ICT) are needed but overwhelmed… – Lack of power – Degraded telephony infrastructure – Degraded Push-to-Talk Radio, Lack of interoperability – Oversubscribed services – Limited Internet access – Few IT resources – Lack of trained staff – Lack of Information security & management
Cisco Public 1010© 2013-2014 Cisco and/or its affiliates. All rights reserved. Solution: Hastily Formed Networks (HFN)  “Instant Emergency Networks”  HFNs are portable, IP-based networks that are deployed in emergencies when normal communications has been disabled or destroyed.  Enable on-scene and remote responders to share situational awareness, coordinate operations, establish command and control.  Communicate within the affected area as well as to the outside world.
Cisco Public 1111© 2013-2014 Cisco and/or its affiliates. All rights reserved. Portable: mobile, rolling kit, easily moved with few personnel Rapidly deployable: pre-configured, set up with minimal training Interim: Once pre-event communications is restored typically decommissioned. Based on: WiFi/VSAT/WiMAX/etc. HFNs: What They Are
Cisco Public 12© 2013-2014 Cisco and/or its affiliates. All rights reserved. HFN Examples
Cisco Public 1313© 2013-2014 Cisco and/or its affiliates. All rights reserved. HFN Example: 2010 Haiti Quake USNS COMFORT Airport VSAT/BGAN Satellite WiMAX Point-to-Point WiFi Mesh NPS HFN TEAM HAITI NETWORK WiFi Access Point
Cisco Public 1414© 2013-2014 Cisco and/or its affiliates. All rights reserved. DMVPN/F W Router 3925 Core Router 3945 Wireless Controller IPICS HF UHF VHF IP Phone 7970/9971 Video Conferencing (C40) Wireless Mesh APs 1550 Inside Wireless AP 3600 Wireless IP Phone Video Surveillance Cameras Internet Cisco San Jose, CA Raleigh, NC Ku- band VSAT Satellite Modem Access Switch Cisco NERV Architecture Ironport WSA
Cisco Public 1515© 2013-2014 Cisco and/or its affiliates. All rights reserved. HFN Example: 2014-2015 Ebola Crisis Deploying cloud-managed security at the satellite hub in Europe created effective security without having local infosec in remote areas! Hundreds of unmanaged, poorly patched hosts, risks mitigated (BYODD) 20x Remote locations… Sierra Leone Liberia (ETUs, clinics, etc) Primary Secondary Meraki MX80 Internet Upstream HSRP Juniper FW
Cisco Public 16© 2013-2014 Cisco and/or its affiliates. All rights reserved. Infosec and HFNs
Cisco Public 1717© 2013-2014 Cisco and/or its affiliates. All rights reserved. Protect the mission Keep bad things out. Keep critical services running Know what’s happening on the network and devices Balance security and access Get it right every time. Security: What are We Really Trying to Do? Inside Outside
Cisco Public 1818© 2013-2014 Cisco and/or its affiliates. All rights reserved. Assumption: “In a crisis network, I need to get deployed quickly. I don’t have time or the resources to secure the network!” Reality: All HFN networks should be pre-planned – plan and build your security into your infrastructure! Myth Busting: Information Security in a Disaster
Cisco Public 1919© 2013-2014 Cisco and/or its affiliates. All rights reserved. Least-privilege access: Users, devices, systems are given minimal access given the crisis environment (advanced AAA solutions, etc. may not be available!) Threats may come from anywhere in the network. Simplicity: Once initially configured, the security architecture should establish itself without requiring any additional work from personnel who already have too much to do. Defense-in-Depth: No single security feature or technology can mitigate the range of possible threats. On-scene staff may have little/no security background. Acceptable Use Policies, Incident Response may be undefined. HFNs Use the Same Basic Infosec Assumptions
Cisco Public 2020© 2013-2014 Cisco and/or its affiliates. All rights reserved. Hastily formed networks (HFN) often overlook security – no such thing as a CSO in a disaster. A huge risk for first responders. TACOPS capabilities have integrated security at multiple levels to protect supported orgs: firewall, VPN, IDS/IPS, etc. Important to have buy in from COML/agency support! Managing Infosec In Emergencies
Cisco Public 2121© 2013-2014 Cisco and/or its affiliates. All rights reserved. You’re going into a disaster zone! “Force Protection” Physical security of equipment Logistics Intelligence Health and Safety HFN Security Starts With the Physical
Cisco Public 2222© 2013-2014 Cisco and/or its affiliates. All rights reserved. Ironport or Meraki for Layer 7 inspection, blacklisting/whitelisting, QoS, b/w management Enhances BYODD security, preserves satellite bandwidth. “Enable Facebook (because social media is important in a disaster!) but not P2P.” Throttle software updates! Layer 7 Inspection / Deep Packet Inspection For Granular Control
Cisco Public 2323© 2013-2014 Cisco and/or its affiliates. All rights reserved. Satellite is often the only way to get broadband data in a disaster. The “thin sippy straw” – b/w from 128kbps – 5mbps (typical Ku VSAT system) Protect your satellite bandwidth at all costs! Malicious traffic • Botnets, Zombies, proxies, DDoS flooding traffic. Inappropriate use …? • YouTube • BitTorrent / P2P • Adult content DoS is the Primary Security Concern with Satellite
Cisco Public 2424© 2013-2014 Cisco and/or its affiliates. All rights reserved. Example: NetHope Ebola Response Network
Cisco Public 2525© 2013-2014 Cisco and/or its affiliates. All rights reserved. Once upon a time… the NERV had a flat, open network. Evans Road Fire in North Carolina. Firefighter’s laptop came onto the NERV pre-infected – DDoS zombie w/spoofed SRC IP. Created DoS condition on the satellite uplink. A Real World Security Incident…
Cisco Public 2626© 2013-2014 Cisco and/or its affiliates. All rights reserved. Designed for differentiated access in a easy-to-deploy fashion. “Untrusted” VLANs: open WiFi, certain networks such as those external to the NERV or kits (patch panel) – access to the Internet only. “Trusted” VLANs have open access to servers, vehicle-based resources, etc. Requires you to have physical access to vehicle/kit …Had Us Reevaluate Access. Optical & Copper patch panel allow only limited access
Cisco Public 2727© 2013-2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public 2828© 2013-2014 Cisco and/or its affiliates. All rights reserved. Each “unit” is responsible for its own firewall Each policy is the same Inbound IOS firewall, BOGON filters Egress Internet-only from “untrusted” networks Egress “sanity checking” filters for spoofed outbound traffic Layer 7 inspection + Layer 3 Our HFN Firewall Strategy – One Policy, Everywhere Internet ASA Firewall ASA Firewall Field Units San Jose, CA Raleigh, NC
Cisco Public 2929© 2013-2014 Cisco and/or its affiliates. All rights reserved. FEMA: “This was the first documented cyberattack against a first responder attack surface” Real-time reporting enables real-time response Carlton Complex Fire, WA 2014 Supported 673 devices on a mesh network supporting fire operations.
Cisco Public 30© 2013-2014 Cisco and/or its affiliates. All rights reserved. Wrapping up…
Cisco Public 3131© 2013-2014 Cisco and/or its affiliates. All rights reserved. You will be (or already have been!) attacked. (Not a surprise to security people, but responders) We’ve not yet seen targeted attacks, but certainly possible (see Missouri State Hwy Patrol Command truck incident, Ferguson MO, 2014, Syrian Electronic Army etc.) Infosec in disaster relief and humanitarian operations is underappreciated. If you use data, you must consider security. Best practice recommendations submitted to FEMA and United Nations Who establishes infosec policies, investigates incidents, etc? What about mutual aid scenarios where you have multiple agencies sharing the same network? It can be done. This is a responder safety issue. Failing to secure HFNs leaves already vulnerable people exposed. Security and HFNs Aren’t Mutually Exclusive
Cisco Public 3232© 2013-2014 Cisco and/or its affiliates. All rights reserved. On Cisco.com – www.cisco.com/go/tacops Cisco CSR Reporting: csr.cisco.com -> “Critical human needs” Facebook: facebook.com/cisco.tacops Slideshare: slideshare.net/CiscoTACOPS Twitter: @CiscoTACOPS Connect With Us!

Recomendados

Securing Humanitarian Connectivity
Securing Humanitarian ConnectivitySecuring Humanitarian Connectivity
Securing Humanitarian ConnectivityCisco Crisis Response
 
Emerging Communications Tech: Lessons from Hurricane Sandy and Super Typhoon ...
Emerging Communications Tech: Lessons from Hurricane Sandy and Super Typhoon ...Emerging Communications Tech: Lessons from Hurricane Sandy and Super Typhoon ...
Emerging Communications Tech: Lessons from Hurricane Sandy and Super Typhoon ...Cisco Crisis Response
 
The Evolution of Hastily Formed Networks For Disaster Relief
The Evolution of Hastily Formed Networks For Disaster ReliefThe Evolution of Hastily Formed Networks For Disaster Relief
The Evolution of Hastily Formed Networks For Disaster ReliefCisco Crisis Response
 
Hastily Formed Networks (HFN) at the Waldo Canyon Fire
Hastily Formed Networks (HFN) at the Waldo Canyon FireHastily Formed Networks (HFN) at the Waldo Canyon Fire
Hastily Formed Networks (HFN) at the Waldo Canyon FireRakesh Bharania
 
Connecting Syria's Refugees
Connecting Syria's RefugeesConnecting Syria's Refugees
Connecting Syria's RefugeesCisco Crisis Response
 
The Network Enabled EOC
The Network Enabled EOCThe Network Enabled EOC
The Network Enabled EOCCisco Crisis Response
 
Lessons Learned: What We Learned in 2012
Lessons Learned: What We Learned in 2012Lessons Learned: What We Learned in 2012
Lessons Learned: What We Learned in 2012Cisco Crisis Response
 
Deployment Review: Carlton Complex Wildfire
Deployment Review: Carlton Complex WildfireDeployment Review: Carlton Complex Wildfire
Deployment Review: Carlton Complex WildfireCisco Crisis Response
 

Recomendados

Securing Humanitarian Connectivity
Securing Humanitarian ConnectivitySecuring Humanitarian Connectivity
Securing Humanitarian ConnectivityCisco Crisis Response
 
Emerging Communications Tech: Lessons from Hurricane Sandy and Super Typhoon ...
Emerging Communications Tech: Lessons from Hurricane Sandy and Super Typhoon ...Emerging Communications Tech: Lessons from Hurricane Sandy and Super Typhoon ...
Emerging Communications Tech: Lessons from Hurricane Sandy and Super Typhoon ...Cisco Crisis Response
 
The Evolution of Hastily Formed Networks For Disaster Relief
The Evolution of Hastily Formed Networks For Disaster ReliefThe Evolution of Hastily Formed Networks For Disaster Relief
The Evolution of Hastily Formed Networks For Disaster ReliefCisco Crisis Response
 
Hastily Formed Networks (HFN) at the Waldo Canyon Fire
Hastily Formed Networks (HFN) at the Waldo Canyon FireHastily Formed Networks (HFN) at the Waldo Canyon Fire
Hastily Formed Networks (HFN) at the Waldo Canyon FireRakesh Bharania
 
Connecting Syria's Refugees
Connecting Syria's RefugeesConnecting Syria's Refugees
Connecting Syria's RefugeesCisco Crisis Response
 
The Network Enabled EOC
The Network Enabled EOCThe Network Enabled EOC
The Network Enabled EOCCisco Crisis Response
 
Lessons Learned: What We Learned in 2012
Lessons Learned: What We Learned in 2012Lessons Learned: What We Learned in 2012
Lessons Learned: What We Learned in 2012Cisco Crisis Response
 
Deployment Review: Carlton Complex Wildfire
Deployment Review: Carlton Complex WildfireDeployment Review: Carlton Complex Wildfire
Deployment Review: Carlton Complex WildfireCisco Crisis Response
 
Cisco Crisis Response Executive Overview 2.22.21
Cisco Crisis Response Executive Overview 2.22.21Cisco Crisis Response Executive Overview 2.22.21
Cisco Crisis Response Executive Overview 2.22.21Cisco Crisis Response
 
After the Catastrophe: IP Resiliency In the Post-Disaster Environment
After the Catastrophe: IP Resiliency In the Post-Disaster Environment After the Catastrophe: IP Resiliency In the Post-Disaster Environment
After the Catastrophe: IP Resiliency In the Post-Disaster Environment Cisco Crisis Response
 
The Network Enabled Emergency Operations Center (EOC)
The Network Enabled Emergency Operations Center (EOC)The Network Enabled Emergency Operations Center (EOC)
The Network Enabled Emergency Operations Center (EOC)Cisco Crisis Response
 
Working Together: The Private Sector in Humanitarian Response
Working Together: The Private Sector in Humanitarian ResponseWorking Together: The Private Sector in Humanitarian Response
Working Together: The Private Sector in Humanitarian ResponseCisco Crisis Response
 
Noah Maina: Computer Emergency Response Team (CERT)
Noah Maina: Computer Emergency Response Team (CERT)Noah Maina: Computer Emergency Response Team (CERT)
Noah Maina: Computer Emergency Response Team (CERT)Hamisi Kibonde
 
Cert adli wahid_iisf2011
Cert adli wahid_iisf2011Cert adli wahid_iisf2011
Cert adli wahid_iisf2011Directorate of Information Security | Ditjen Aptika
 
2-25-2014 Part 1 - NRECA Kickoff Meeting v2
2-25-2014 Part 1 - NRECA Kickoff Meeting v22-25-2014 Part 1 - NRECA Kickoff Meeting v2
2-25-2014 Part 1 - NRECA Kickoff Meeting v2Charles "Chuck" Speicher Jr.
 
UN/ITU - Organisational Structures and Incident Management - Cybersecurity
UN/ITU - Organisational Structures and Incident Management - CybersecurityUN/ITU - Organisational Structures and Incident Management - Cybersecurity
UN/ITU - Organisational Structures and Incident Management - CybersecurityDr David Probert
 
Social Media Webinar For Fox September 2010
Social Media Webinar For Fox September 2010Social Media Webinar For Fox September 2010
Social Media Webinar For Fox September 2010James Kane
 
Cybersecurity for Critical National Information Infrastructure
Cybersecurity for Critical National Information InfrastructureCybersecurity for Critical National Information Infrastructure
Cybersecurity for Critical National Information InfrastructureDr David Probert
 
Day 1 Enisa Setting Up A Csirt
Day 1 Enisa Setting Up A CsirtDay 1 Enisa Setting Up A Csirt
Day 1 Enisa Setting Up A Csirtvngundi
 
CyberTerrorism - Security in Cyberspace
CyberTerrorism - Security in CyberspaceCyberTerrorism - Security in Cyberspace
CyberTerrorism - Security in CyberspaceDr David Probert
 
2015 Conference Brochure - Trust Security Agility - Businesses Better Prepare...
2015 Conference Brochure - Trust Security Agility - Businesses Better Prepare...2015 Conference Brochure - Trust Security Agility - Businesses Better Prepare...
2015 Conference Brochure - Trust Security Agility - Businesses Better Prepare...Neil Curran MSc CISSP CRISC CGEIT CISM CISA
 
Industrial IOT Data Connectivity Standard
Industrial IOT Data Connectivity StandardIndustrial IOT Data Connectivity Standard
Industrial IOT Data Connectivity StandardGerardo Pardo-Castellote
 
What is exactly anti fragile in dev ops - v3
What is exactly anti fragile in dev ops - v3What is exactly anti fragile in dev ops - v3
What is exactly anti fragile in dev ops - v3Asher Sterkin
 
Upgrading Industrial CyberSecurity & Security Critical National Infrastructure
Upgrading Industrial CyberSecurity & Security Critical National InfrastructureUpgrading Industrial CyberSecurity & Security Critical National Infrastructure
Upgrading Industrial CyberSecurity & Security Critical National InfrastructureDr David Probert
 
CSO Magazine Confab 2013 Atlanta - Cyber Security
CSO Magazine Confab 2013 Atlanta - Cyber SecurityCSO Magazine Confab 2013 Atlanta - Cyber Security
CSO Magazine Confab 2013 Atlanta - Cyber SecurityPhil Agcaoili
 
How secure are chat and webconf tools
How secure are chat and webconf toolsHow secure are chat and webconf tools
How secure are chat and webconf toolsMarc Vael
 
Cloud security lessons learned and audit
Cloud security lessons learned and auditCloud security lessons learned and audit
Cloud security lessons learned and auditMarc Vael
 
21stC Trends in FinTech Security - AI, Deep Learning & Blockchain
21stC Trends in FinTech Security - AI, Deep Learning & Blockchain21stC Trends in FinTech Security - AI, Deep Learning & Blockchain
21stC Trends in FinTech Security - AI, Deep Learning & BlockchainDr David Probert
 
apl5iy2ftxiwofbhsmxj-signature-584e2459f99b5370bda435f09b42cc84cc8c063b8cd454...
apl5iy2ftxiwofbhsmxj-signature-584e2459f99b5370bda435f09b42cc84cc8c063b8cd454...apl5iy2ftxiwofbhsmxj-signature-584e2459f99b5370bda435f09b42cc84cc8c063b8cd454...
apl5iy2ftxiwofbhsmxj-signature-584e2459f99b5370bda435f09b42cc84cc8c063b8cd454...Chrysostomos Christofi
 
During the Next Generation Network and Data Centre – Now and into the Future ...
During the Next Generation Network and Data Centre – Now and into the Future ...During the Next Generation Network and Data Centre – Now and into the Future ...
During the Next Generation Network and Data Centre – Now and into the Future ...Cisco Canada
 

Más contenido relacionado

La actualidad más candente

Cisco Crisis Response Executive Overview 2.22.21
Cisco Crisis Response Executive Overview 2.22.21Cisco Crisis Response Executive Overview 2.22.21
Cisco Crisis Response Executive Overview 2.22.21Cisco Crisis Response
 
After the Catastrophe: IP Resiliency In the Post-Disaster Environment
After the Catastrophe: IP Resiliency In the Post-Disaster Environment After the Catastrophe: IP Resiliency In the Post-Disaster Environment
After the Catastrophe: IP Resiliency In the Post-Disaster Environment Cisco Crisis Response
 
The Network Enabled Emergency Operations Center (EOC)
The Network Enabled Emergency Operations Center (EOC)The Network Enabled Emergency Operations Center (EOC)
The Network Enabled Emergency Operations Center (EOC)Cisco Crisis Response
 
Working Together: The Private Sector in Humanitarian Response
Working Together: The Private Sector in Humanitarian ResponseWorking Together: The Private Sector in Humanitarian Response
Working Together: The Private Sector in Humanitarian ResponseCisco Crisis Response
 
Noah Maina: Computer Emergency Response Team (CERT)
Noah Maina: Computer Emergency Response Team (CERT)Noah Maina: Computer Emergency Response Team (CERT)
Noah Maina: Computer Emergency Response Team (CERT)Hamisi Kibonde
 
UN/ITU - Organisational Structures and Incident Management - Cybersecurity
UN/ITU - Organisational Structures and Incident Management - CybersecurityUN/ITU - Organisational Structures and Incident Management - Cybersecurity
UN/ITU - Organisational Structures and Incident Management - CybersecurityDr David Probert
 
Social Media Webinar For Fox September 2010
Social Media Webinar For Fox September 2010Social Media Webinar For Fox September 2010
Social Media Webinar For Fox September 2010James Kane
 
Cybersecurity for Critical National Information Infrastructure
Cybersecurity for Critical National Information InfrastructureCybersecurity for Critical National Information Infrastructure
Cybersecurity for Critical National Information InfrastructureDr David Probert
 
Day 1 Enisa Setting Up A Csirt
Day 1 Enisa Setting Up A CsirtDay 1 Enisa Setting Up A Csirt
Day 1 Enisa Setting Up A Csirtvngundi
 
CyberTerrorism - Security in Cyberspace
CyberTerrorism - Security in CyberspaceCyberTerrorism - Security in Cyberspace
CyberTerrorism - Security in CyberspaceDr David Probert
 
2015 Conference Brochure - Trust Security Agility - Businesses Better Prepare...
2015 Conference Brochure - Trust Security Agility - Businesses Better Prepare...2015 Conference Brochure - Trust Security Agility - Businesses Better Prepare...
2015 Conference Brochure - Trust Security Agility - Businesses Better Prepare...Neil Curran MSc CISSP CRISC CGEIT CISM CISA
 
What is exactly anti fragile in dev ops - v3
What is exactly anti fragile in dev ops - v3What is exactly anti fragile in dev ops - v3
What is exactly anti fragile in dev ops - v3Asher Sterkin
 
Upgrading Industrial CyberSecurity & Security Critical National Infrastructure
Upgrading Industrial CyberSecurity & Security Critical National InfrastructureUpgrading Industrial CyberSecurity & Security Critical National Infrastructure
Upgrading Industrial CyberSecurity & Security Critical National InfrastructureDr David Probert
 
CSO Magazine Confab 2013 Atlanta - Cyber Security
CSO Magazine Confab 2013 Atlanta - Cyber SecurityCSO Magazine Confab 2013 Atlanta - Cyber Security
CSO Magazine Confab 2013 Atlanta - Cyber SecurityPhil Agcaoili
 
How secure are chat and webconf tools
How secure are chat and webconf toolsHow secure are chat and webconf tools
How secure are chat and webconf toolsMarc Vael
 
Cloud security lessons learned and audit
Cloud security lessons learned and auditCloud security lessons learned and audit
Cloud security lessons learned and auditMarc Vael
 
21stC Trends in FinTech Security - AI, Deep Learning & Blockchain
21stC Trends in FinTech Security - AI, Deep Learning & Blockchain21stC Trends in FinTech Security - AI, Deep Learning & Blockchain
21stC Trends in FinTech Security - AI, Deep Learning & BlockchainDr David Probert
 

La actualidad más candente (20)

Cisco Crisis Response Executive Overview 2.22.21
Cisco Crisis Response Executive Overview 2.22.21Cisco Crisis Response Executive Overview 2.22.21
Cisco Crisis Response Executive Overview 2.22.21
 
After the Catastrophe: IP Resiliency In the Post-Disaster Environment
After the Catastrophe: IP Resiliency In the Post-Disaster Environment After the Catastrophe: IP Resiliency In the Post-Disaster Environment
After the Catastrophe: IP Resiliency In the Post-Disaster Environment
 
The Network Enabled Emergency Operations Center (EOC)
The Network Enabled Emergency Operations Center (EOC)The Network Enabled Emergency Operations Center (EOC)
The Network Enabled Emergency Operations Center (EOC)
 
Working Together: The Private Sector in Humanitarian Response
Working Together: The Private Sector in Humanitarian ResponseWorking Together: The Private Sector in Humanitarian Response
Working Together: The Private Sector in Humanitarian Response
 
Noah Maina: Computer Emergency Response Team (CERT)
Noah Maina: Computer Emergency Response Team (CERT)Noah Maina: Computer Emergency Response Team (CERT)
Noah Maina: Computer Emergency Response Team (CERT)
 
Cert adli wahid_iisf2011
Cert adli wahid_iisf2011Cert adli wahid_iisf2011
Cert adli wahid_iisf2011
 
2-25-2014 Part 1 - NRECA Kickoff Meeting v2
2-25-2014 Part 1 - NRECA Kickoff Meeting v22-25-2014 Part 1 - NRECA Kickoff Meeting v2
2-25-2014 Part 1 - NRECA Kickoff Meeting v2
 
UN/ITU - Organisational Structures and Incident Management - Cybersecurity
UN/ITU - Organisational Structures and Incident Management - CybersecurityUN/ITU - Organisational Structures and Incident Management - Cybersecurity
UN/ITU - Organisational Structures and Incident Management - Cybersecurity
 
Social Media Webinar For Fox September 2010
Social Media Webinar For Fox September 2010Social Media Webinar For Fox September 2010
Social Media Webinar For Fox September 2010
 
Cybersecurity for Critical National Information Infrastructure
Cybersecurity for Critical National Information InfrastructureCybersecurity for Critical National Information Infrastructure
Cybersecurity for Critical National Information Infrastructure
 
Day 1 Enisa Setting Up A Csirt
Day 1 Enisa Setting Up A CsirtDay 1 Enisa Setting Up A Csirt
Day 1 Enisa Setting Up A Csirt
 
CyberTerrorism - Security in Cyberspace
CyberTerrorism - Security in CyberspaceCyberTerrorism - Security in Cyberspace
CyberTerrorism - Security in Cyberspace
 
2015 Conference Brochure - Trust Security Agility - Businesses Better Prepare...
2015 Conference Brochure - Trust Security Agility - Businesses Better Prepare...2015 Conference Brochure - Trust Security Agility - Businesses Better Prepare...
2015 Conference Brochure - Trust Security Agility - Businesses Better Prepare...
 
Industrial IOT Data Connectivity Standard
Industrial IOT Data Connectivity StandardIndustrial IOT Data Connectivity Standard
Industrial IOT Data Connectivity Standard
 
What is exactly anti fragile in dev ops - v3
What is exactly anti fragile in dev ops - v3What is exactly anti fragile in dev ops - v3
What is exactly anti fragile in dev ops - v3
 
Upgrading Industrial CyberSecurity & Security Critical National Infrastructure
Upgrading Industrial CyberSecurity & Security Critical National InfrastructureUpgrading Industrial CyberSecurity & Security Critical National Infrastructure
Upgrading Industrial CyberSecurity & Security Critical National Infrastructure
 
CSO Magazine Confab 2013 Atlanta - Cyber Security
CSO Magazine Confab 2013 Atlanta - Cyber SecurityCSO Magazine Confab 2013 Atlanta - Cyber Security
CSO Magazine Confab 2013 Atlanta - Cyber Security
 
How secure are chat and webconf tools
How secure are chat and webconf toolsHow secure are chat and webconf tools
How secure are chat and webconf tools
 
Cloud security lessons learned and audit
Cloud security lessons learned and auditCloud security lessons learned and audit
Cloud security lessons learned and audit
 
21stC Trends in FinTech Security - AI, Deep Learning & Blockchain
21stC Trends in FinTech Security - AI, Deep Learning & Blockchain21stC Trends in FinTech Security - AI, Deep Learning & Blockchain
21stC Trends in FinTech Security - AI, Deep Learning & Blockchain
 

Similar a Securing the Hastily Formed Network: Infosec for Disaster Relief and Emergency Response

apl5iy2ftxiwofbhsmxj-signature-584e2459f99b5370bda435f09b42cc84cc8c063b8cd454...
apl5iy2ftxiwofbhsmxj-signature-584e2459f99b5370bda435f09b42cc84cc8c063b8cd454...apl5iy2ftxiwofbhsmxj-signature-584e2459f99b5370bda435f09b42cc84cc8c063b8cd454...
apl5iy2ftxiwofbhsmxj-signature-584e2459f99b5370bda435f09b42cc84cc8c063b8cd454...Chrysostomos Christofi
 
During the Next Generation Network and Data Centre – Now and into the Future ...
During the Next Generation Network and Data Centre – Now and into the Future ...During the Next Generation Network and Data Centre – Now and into the Future ...
During the Next Generation Network and Data Centre – Now and into the Future ...Cisco Canada
 
Internet of Things... Let's Not Forget Security Please!, by Eric Vyncke [APNI...
Internet of Things... Let's Not Forget Security Please!, by Eric Vyncke [APNI...Internet of Things... Let's Not Forget Security Please!, by Eric Vyncke [APNI...
Internet of Things... Let's Not Forget Security Please!, by Eric Vyncke [APNI...APNIC
 
Internet of Things... Let's Not Forget Security Please, by Eric Vyncke [APNI...
Internet of Things... Let's Not Forget Security Please, by Eric Vyncke [APNI...Internet of Things... Let's Not Forget Security Please, by Eric Vyncke [APNI...
Internet of Things... Let's Not Forget Security Please, by Eric Vyncke [APNI...APNIC
 
8 Ocak 2015 SOME Etkinligi - Cisco Next Generation Security
8 Ocak 2015 SOME Etkinligi - Cisco Next Generation Security8 Ocak 2015 SOME Etkinligi - Cisco Next Generation Security
8 Ocak 2015 SOME Etkinligi - Cisco Next Generation SecurityBGA Cyber Security
 
Scalar Security Roadshow - Vancouver Presentation
Scalar Security Roadshow - Vancouver PresentationScalar Security Roadshow - Vancouver Presentation
Scalar Security Roadshow - Vancouver PresentationScalar Decisions
 
Scalar Security Roadshow - Calgary Presentation
Scalar Security Roadshow - Calgary PresentationScalar Security Roadshow - Calgary Presentation
Scalar Security Roadshow - Calgary PresentationScalar Decisions
 
Cisco Security Architecture
Cisco Security ArchitectureCisco Security Architecture
Cisco Security ArchitectureCisco Canada
 
Steve Parker - The Internet of Everything: Cyber-defense in an Age of Ubiquit...
Steve Parker - The Internet of Everything: Cyber-defense in an Age of Ubiquit...Steve Parker - The Internet of Everything: Cyber-defense in an Age of Ubiquit...
Steve Parker - The Internet of Everything: Cyber-defense in an Age of Ubiquit...EnergySec
 
Next Generation Security
Next Generation SecurityNext Generation Security
Next Generation SecurityCisco Canada
 
Network Security v1.0 Network Security v
Network Security v1.0 Network Security vNetwork Security v1.0 Network Security v
Network Security v1.0 Network Security vSYYULIANISKOMMT
 
BGA SOME/SOC Etkinliği - Tehdit Odaklı Güvenlik Mimarisinde Sourcefire Yakla...
BGA SOME/SOC Etkinliği - Tehdit Odaklı Güvenlik Mimarisinde Sourcefire Yakla...BGA SOME/SOC Etkinliği - Tehdit Odaklı Güvenlik Mimarisinde Sourcefire Yakla...
BGA SOME/SOC Etkinliği - Tehdit Odaklı Güvenlik Mimarisinde Sourcefire Yakla...BGA Cyber Security
 
Scalar Security Roadshow - Ottawa Presentation
Scalar Security Roadshow - Ottawa PresentationScalar Security Roadshow - Ottawa Presentation
Scalar Security Roadshow - Ottawa PresentationScalar Decisions
 
6TiSCH + RPL @ Telecom Bretagne 2014
6TiSCH + RPL @ Telecom Bretagne 20146TiSCH + RPL @ Telecom Bretagne 2014
6TiSCH + RPL @ Telecom Bretagne 2014Pascal Thubert
 
Winning Strategy For Hybrid Cloud Environments
Winning Strategy For Hybrid Cloud EnvironmentsWinning Strategy For Hybrid Cloud Environments
Winning Strategy For Hybrid Cloud EnvironmentsCarl De Groote
 
The Next Generation Security
The Next Generation SecurityThe Next Generation Security
The Next Generation SecurityCybera Inc.
 
[CLASS 2014] Palestra Técnica - Michael Firstenberg
[CLASS 2014] Palestra Técnica - Michael Firstenberg[CLASS 2014] Palestra Técnica - Michael Firstenberg
[CLASS 2014] Palestra Técnica - Michael FirstenbergTI Safe
 
Cisco ASA con fire power services
Cisco ASA con fire power services Cisco ASA con fire power services
Cisco ASA con fire power services Felipe Lamus
 

Similar a Securing the Hastily Formed Network: Infosec for Disaster Relief and Emergency Response (20)

apl5iy2ftxiwofbhsmxj-signature-584e2459f99b5370bda435f09b42cc84cc8c063b8cd454...
apl5iy2ftxiwofbhsmxj-signature-584e2459f99b5370bda435f09b42cc84cc8c063b8cd454...apl5iy2ftxiwofbhsmxj-signature-584e2459f99b5370bda435f09b42cc84cc8c063b8cd454...
apl5iy2ftxiwofbhsmxj-signature-584e2459f99b5370bda435f09b42cc84cc8c063b8cd454...
 
During the Next Generation Network and Data Centre – Now and into the Future ...
During the Next Generation Network and Data Centre – Now and into the Future ...During the Next Generation Network and Data Centre – Now and into the Future ...
During the Next Generation Network and Data Centre – Now and into the Future ...
 
Internet of Things... Let's Not Forget Security Please!, by Eric Vyncke [APNI...
Internet of Things... Let's Not Forget Security Please!, by Eric Vyncke [APNI...Internet of Things... Let's Not Forget Security Please!, by Eric Vyncke [APNI...
Internet of Things... Let's Not Forget Security Please!, by Eric Vyncke [APNI...
 
Internet of Things... Let's Not Forget Security Please, by Eric Vyncke [APNI...
Internet of Things... Let's Not Forget Security Please, by Eric Vyncke [APNI...Internet of Things... Let's Not Forget Security Please, by Eric Vyncke [APNI...
Internet of Things... Let's Not Forget Security Please, by Eric Vyncke [APNI...
 
8 Ocak 2015 SOME Etkinligi - Cisco Next Generation Security
8 Ocak 2015 SOME Etkinligi - Cisco Next Generation Security8 Ocak 2015 SOME Etkinligi - Cisco Next Generation Security
8 Ocak 2015 SOME Etkinligi - Cisco Next Generation Security
 
Scalar Security Roadshow - Vancouver Presentation
Scalar Security Roadshow - Vancouver PresentationScalar Security Roadshow - Vancouver Presentation
Scalar Security Roadshow - Vancouver Presentation
 
Scalar Security Roadshow - Calgary Presentation
Scalar Security Roadshow - Calgary PresentationScalar Security Roadshow - Calgary Presentation
Scalar Security Roadshow - Calgary Presentation
 
The Network as a Sensor, Cisco and Lancope
The Network as a Sensor, Cisco and LancopeThe Network as a Sensor, Cisco and Lancope
The Network as a Sensor, Cisco and Lancope
 
Cisco Security Architecture
Cisco Security ArchitectureCisco Security Architecture
Cisco Security Architecture
 
Steve Parker - The Internet of Everything: Cyber-defense in an Age of Ubiquit...
Steve Parker - The Internet of Everything: Cyber-defense in an Age of Ubiquit...Steve Parker - The Internet of Everything: Cyber-defense in an Age of Ubiquit...
Steve Parker - The Internet of Everything: Cyber-defense in an Age of Ubiquit...
 
Next Generation Security
Next Generation SecurityNext Generation Security
Next Generation Security
 
Network Security v1.0 Network Security v
Network Security v1.0 Network Security vNetwork Security v1.0 Network Security v
Network Security v1.0 Network Security v
 
BGA SOME/SOC Etkinliği - Tehdit Odaklı Güvenlik Mimarisinde Sourcefire Yakla...
BGA SOME/SOC Etkinliği - Tehdit Odaklı Güvenlik Mimarisinde Sourcefire Yakla...BGA SOME/SOC Etkinliği - Tehdit Odaklı Güvenlik Mimarisinde Sourcefire Yakla...
BGA SOME/SOC Etkinliği - Tehdit Odaklı Güvenlik Mimarisinde Sourcefire Yakla...
 
Scalar Security Roadshow - Ottawa Presentation
Scalar Security Roadshow - Ottawa PresentationScalar Security Roadshow - Ottawa Presentation
Scalar Security Roadshow - Ottawa Presentation
 
6TiSCH + RPL @ Telecom Bretagne 2014
6TiSCH + RPL @ Telecom Bretagne 20146TiSCH + RPL @ Telecom Bretagne 2014
6TiSCH + RPL @ Telecom Bretagne 2014
 
Winning Strategy For Hybrid Cloud Environments
Winning Strategy For Hybrid Cloud EnvironmentsWinning Strategy For Hybrid Cloud Environments
Winning Strategy For Hybrid Cloud Environments
 
The Next Generation Security
The Next Generation SecurityThe Next Generation Security
The Next Generation Security
 
High Performance Schools
High Performance SchoolsHigh Performance Schools
High Performance Schools
 
[CLASS 2014] Palestra Técnica - Michael Firstenberg
[CLASS 2014] Palestra Técnica - Michael Firstenberg[CLASS 2014] Palestra Técnica - Michael Firstenberg
[CLASS 2014] Palestra Técnica - Michael Firstenberg
 
Cisco ASA con fire power services
Cisco ASA con fire power services Cisco ASA con fire power services
Cisco ASA con fire power services
 

Último

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUK Journal
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Enterprise Knowledge
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...Martijn de Jong
 
Tech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfTech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfhans926745
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsJoaquim Jorge
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)wesley chun
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer
 

Último (20)

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
Tech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfTech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdf
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 

Securing the Hastily Formed Network: Infosec for Disaster Relief and Emergency Response

  • 1. Securing the Hastily Formed Network Cisco Tactical Operations www.cisco.com/go/tacops @CiscoTACOPS April 2015 Infosec for Disaster Relief and Emergency Response
  • 2. Agenda: Introductions The Hastily Formed Network HFN Examples Infosec and HFNs Cyberattacks and Countermeasures Conclusion…
  • 3. Cisco Public 3© 2013-2014 Cisco and/or its affiliates. All rights reserved. Introductions
  • 4. Cisco Public 44© 2013-2014 Cisco and/or its affiliates. All rights reserved. Emergency Response – Cisco TACOPS Dedicated crisis response team that establishes emergency networks after a disaster TacOps personnel skills include: Technical Expertise Planning, Logistics and Operations Trained First Responders (Fire, EMS) Military Service
  • 5. Cisco Public 55© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Tactical Operations: Emergency Responses • 2005 – Hurricane Katrina (LA) • 2007 – Harris Fire (San Diego, CA) * • 2008 – Evans Road Fire (NC) * • 2008 – Cedar Rapids Floods (IA) * • 2008 – Hurricane Gustav (LA) * • 2008 – Hurricane Ike (TX) * • 2009 – Morgan Hill Fiber Cut (CA) * • 2010 – Earthquake (Haiti) • 2010 – Plane Crash (Palo Alto, CA) * • 2010 – Four Mile Canyon Fire (CO) • 2010 – Operation Verdict (Oakland, CA) * • 2010 – Earthquake (Christchurch, NZ) • 2010 – Gas Pipeline Explosion (San Bruno, CA) * • 2011 – Flooding (Queensland, AU) • 2011 – Tornados (Raleigh, NC) * • 2011 – Tornados (AL) * • 2011 – Tornado (Joplin, MO) • 2011 – Tornado (Goderich, Ontario) • 2011 – Flooding (Brazil) • 2011 – Earthquake and Tsunami (Japan) • 2012 – Dadaab Refugee Camp (Kenya) • 2012 – Waldo Canyon Fire (CO) * • 2012 – Hurricane Sandy (NY / NJ) * • 2013 – Boston Marathon Explosion (MA) • 2013 – Fertilizer Plant Explosion (West, TX) * • 2013 – Tornado (Moore, OK) * • 2013 – St. Mary’s College Fire (Leyland, UK) • 2013 – Navy Yard Shooting (Washington, DC) • 2013 – Typhoon Haiyan / Yolanda (Philippines) • 2014 – Carlton Complex Fire (WA) * • 2014 – King Fire (CA) • 2014 – Ebola virus crisis (West Africa) • 2015 – Cyclone Pam (Vanuatu) * = NERV / ECU Deployed
  • 6. Cisco Public 6© 2013-2014 Cisco and/or its affiliates. All rights reserved. The Hastily Formed Network
  • 7. Cisco Public 77© 2013-2014 Cisco and/or its affiliates. All rights reserved. All Crisis Responders Share the Same Problem Public Safety 7 How to deliver the right information in the right format to the right person at the right time on the right device? Defense National, State & Local Government HealthcareCritical Infrastructure Transportation NGOs/VOADs/ International Orgs
  • 8. Cisco Public 88© 2013-2014 Cisco and/or its affiliates. All rights reserved. Radio, phone Radio + Integrated Data Single device Any Device (BYOD) Voice only Voice, Video, Data Closed teams Open collaboration Command centric In the field, social media, everyone Fixed locations Deployable anywhere The Need for Technology in Disaster is Increasing Goal: Mission workflow and productivity benefits to save lives and speed recovery.
  • 9. Cisco Public 99© 2013-2014 Cisco and/or its affiliates. All rights reserved. Typical ICT Challenges In Disaster  Information and Computing Technologies (ICT) are needed but overwhelmed… – Lack of power – Degraded telephony infrastructure – Degraded Push-to-Talk Radio, Lack of interoperability – Oversubscribed services – Limited Internet access – Few IT resources – Lack of trained staff – Lack of Information security & management
  • 10. Cisco Public 1010© 2013-2014 Cisco and/or its affiliates. All rights reserved. Solution: Hastily Formed Networks (HFN)  “Instant Emergency Networks”  HFNs are portable, IP-based networks that are deployed in emergencies when normal communications has been disabled or destroyed.  Enable on-scene and remote responders to share situational awareness, coordinate operations, establish command and control.  Communicate within the affected area as well as to the outside world.
  • 11. Cisco Public 1111© 2013-2014 Cisco and/or its affiliates. All rights reserved. Portable: mobile, rolling kit, easily moved with few personnel Rapidly deployable: pre-configured, set up with minimal training Interim: Once pre-event communications is restored typically decommissioned. Based on: WiFi/VSAT/WiMAX/etc. HFNs: What They Are
  • 12. Cisco Public 12© 2013-2014 Cisco and/or its affiliates. All rights reserved. HFN Examples
  • 13. Cisco Public 1313© 2013-2014 Cisco and/or its affiliates. All rights reserved. HFN Example: 2010 Haiti Quake USNS COMFORT Airport VSAT/BGAN Satellite WiMAX Point-to-Point WiFi Mesh NPS HFN TEAM HAITI NETWORK WiFi Access Point
  • 14. Cisco Public 1414© 2013-2014 Cisco and/or its affiliates. All rights reserved. DMVPN/F W Router 3925 Core Router 3945 Wireless Controller IPICS HF UHF VHF IP Phone 7970/9971 Video Conferencing (C40) Wireless Mesh APs 1550 Inside Wireless AP 3600 Wireless IP Phone Video Surveillance Cameras Internet Cisco San Jose, CA Raleigh, NC Ku- band VSAT Satellite Modem Access Switch Cisco NERV Architecture Ironport WSA
  • 15. Cisco Public 1515© 2013-2014 Cisco and/or its affiliates. All rights reserved. HFN Example: 2014-2015 Ebola Crisis Deploying cloud-managed security at the satellite hub in Europe created effective security without having local infosec in remote areas! Hundreds of unmanaged, poorly patched hosts, risks mitigated (BYODD) 20x Remote locations… Sierra Leone Liberia (ETUs, clinics, etc) Primary Secondary Meraki MX80 Internet Upstream HSRP Juniper FW
  • 16. Cisco Public 16© 2013-2014 Cisco and/or its affiliates. All rights reserved. Infosec and HFNs
  • 17. Cisco Public 1717© 2013-2014 Cisco and/or its affiliates. All rights reserved. Protect the mission Keep bad things out. Keep critical services running Know what’s happening on the network and devices Balance security and access Get it right every time. Security: What are We Really Trying to Do? Inside Outside
  • 18. Cisco Public 1818© 2013-2014 Cisco and/or its affiliates. All rights reserved. Assumption: “In a crisis network, I need to get deployed quickly. I don’t have time or the resources to secure the network!” Reality: All HFN networks should be pre-planned – plan and build your security into your infrastructure! Myth Busting: Information Security in a Disaster
  • 19. Cisco Public 1919© 2013-2014 Cisco and/or its affiliates. All rights reserved. Least-privilege access: Users, devices, systems are given minimal access given the crisis environment (advanced AAA solutions, etc. may not be available!) Threats may come from anywhere in the network. Simplicity: Once initially configured, the security architecture should establish itself without requiring any additional work from personnel who already have too much to do. Defense-in-Depth: No single security feature or technology can mitigate the range of possible threats. On-scene staff may have little/no security background. Acceptable Use Policies, Incident Response may be undefined. HFNs Use the Same Basic Infosec Assumptions
  • 20. Cisco Public 2020© 2013-2014 Cisco and/or its affiliates. All rights reserved. Hastily formed networks (HFN) often overlook security – no such thing as a CSO in a disaster. A huge risk for first responders. TACOPS capabilities have integrated security at multiple levels to protect supported orgs: firewall, VPN, IDS/IPS, etc. Important to have buy in from COML/agency support! Managing Infosec In Emergencies
  • 21. Cisco Public 2121© 2013-2014 Cisco and/or its affiliates. All rights reserved. You’re going into a disaster zone! “Force Protection” Physical security of equipment Logistics Intelligence Health and Safety HFN Security Starts With the Physical
  • 22. Cisco Public 2222© 2013-2014 Cisco and/or its affiliates. All rights reserved. Ironport or Meraki for Layer 7 inspection, blacklisting/whitelisting, QoS, b/w management Enhances BYODD security, preserves satellite bandwidth. “Enable Facebook (because social media is important in a disaster!) but not P2P.” Throttle software updates! Layer 7 Inspection / Deep Packet Inspection For Granular Control
  • 23. Cisco Public 2323© 2013-2014 Cisco and/or its affiliates. All rights reserved. Satellite is often the only way to get broadband data in a disaster. The “thin sippy straw” – b/w from 128kbps – 5mbps (typical Ku VSAT system) Protect your satellite bandwidth at all costs! Malicious traffic • Botnets, Zombies, proxies, DDoS flooding traffic. Inappropriate use …? • YouTube • BitTorrent / P2P • Adult content DoS is the Primary Security Concern with Satellite
  • 24. Cisco Public 2424© 2013-2014 Cisco and/or its affiliates. All rights reserved. Example: NetHope Ebola Response Network
  • 25. Cisco Public 2525© 2013-2014 Cisco and/or its affiliates. All rights reserved. Once upon a time… the NERV had a flat, open network. Evans Road Fire in North Carolina. Firefighter’s laptop came onto the NERV pre-infected – DDoS zombie w/spoofed SRC IP. Created DoS condition on the satellite uplink. A Real World Security Incident…
  • 26. Cisco Public 2626© 2013-2014 Cisco and/or its affiliates. All rights reserved. Designed for differentiated access in a easy-to-deploy fashion. “Untrusted” VLANs: open WiFi, certain networks such as those external to the NERV or kits (patch panel) – access to the Internet only. “Trusted” VLANs have open access to servers, vehicle-based resources, etc. Requires you to have physical access to vehicle/kit …Had Us Reevaluate Access. Optical & Copper patch panel allow only limited access
  • 27. Cisco Public 2727© 2013-2014 Cisco and/or its affiliates. All rights reserved.
  • 28. Cisco Public 2828© 2013-2014 Cisco and/or its affiliates. All rights reserved. Each “unit” is responsible for its own firewall Each policy is the same Inbound IOS firewall, BOGON filters Egress Internet-only from “untrusted” networks Egress “sanity checking” filters for spoofed outbound traffic Layer 7 inspection + Layer 3 Our HFN Firewall Strategy – One Policy, Everywhere Internet ASA Firewall ASA Firewall Field Units San Jose, CA Raleigh, NC
  • 29. Cisco Public 2929© 2013-2014 Cisco and/or its affiliates. All rights reserved. FEMA: “This was the first documented cyberattack against a first responder attack surface” Real-time reporting enables real-time response Carlton Complex Fire, WA 2014 Supported 673 devices on a mesh network supporting fire operations.
  • 30. Cisco Public 30© 2013-2014 Cisco and/or its affiliates. All rights reserved. Wrapping up…
  • 31. Cisco Public 3131© 2013-2014 Cisco and/or its affiliates. All rights reserved. You will be (or already have been!) attacked. (Not a surprise to security people, but responders) We’ve not yet seen targeted attacks, but certainly possible (see Missouri State Hwy Patrol Command truck incident, Ferguson MO, 2014, Syrian Electronic Army etc.) Infosec in disaster relief and humanitarian operations is underappreciated. If you use data, you must consider security. Best practice recommendations submitted to FEMA and United Nations Who establishes infosec policies, investigates incidents, etc? What about mutual aid scenarios where you have multiple agencies sharing the same network? It can be done. This is a responder safety issue. Failing to secure HFNs leaves already vulnerable people exposed. Security and HFNs Aren’t Mutually Exclusive
  • 32. Cisco Public 3232© 2013-2014 Cisco and/or its affiliates. All rights reserved. On Cisco.com – www.cisco.com/go/tacops Cisco CSR Reporting: csr.cisco.com -> “Critical human needs” Facebook: facebook.com/cisco.tacops Slideshare: slideshare.net/CiscoTACOPS Twitter: @CiscoTACOPS Connect With Us!