SLIDE 1
BIC/DIMACS/A4Cloud/CSA International Workshop on Trustworthiness, Accountability & Forensics in the Cloud (TAFC2013) Malaga, Spain, Friday 7th June 2013
Andrew Hutchison andrew.hutchison@t-systems.co.za acmhutchison@gmail.com +27 83 303 2387
Building International Co-Operation. Strategy for Coordination of Cross Domain Activities & Multi-Lateral Approach in International Cooperation.
SLIDE 2 Cloud computing as a “game changer”
Challenges :
- standards, certification, data protection, interoperability,
lock-in, legal certainty
How to enhance trustworthiness in the cloud ...
- Technical & policy mechanisms to enable them
Discuss how public, private & research
communities can increase confidence in use of cloud computing
- Ongoing research work; future research challenges –
H2020
SLIDE 3
Privacy, ethics and accountability Trustworthy host platforms for accelerated
research & education
Strategy for co-ordination of cross domain
activities & multi-lateral approach in international cooperation
SLIDE 4 Continually building up our contact base in South Africa. In the first years, working groups focussed on technical aspects of
network information & cyber security and human oriented approaches for trust, privacy and security and continue to work on these (aligning research topics between the countries).
The point of this to give guidance to Commission where they
should have research funding for joint international collaborations in Horizon 2020, the next research programme for 2014 - 2020.
In parallel, now building up a group focussing on a longer term
strategy including logistical aspects, including the necessary models, mechanisms and processes required for the enablement of international cooperation.
SLIDE 5 Focus not only on current field of research but
also dedicate some time on what you feel is the necessary future research challenges and work required
- one of the objectives of the workshop is to highlight
areas where consortia can be formed in Horizon 2020 and other programmes.
- how international cooperation could benefit this
research work in the future, highlighting specific reasons and rationales for it.
SLIDE 6
SLIDE 7
SLIDE 8
SLIDE 9
SLIDE 10
SLIDE 11
SLIDE 12
SLIDE 14
SLIDE 15
SLIDE 16
SLIDE 19
SLIDE 20
T-Systems grew from
500 people in 2000 to 2500 in 2012
Largest full ICT
service outsourcer in South African market
Supporting key SA
enterprises like Eskom, Transnet, SASOL, DWA etc
SLIDE 21
SLIDE 22
SLIDE 23
SLIDE 24
SLIDE 25
SLIDE 26
SLIDE 27 Advanced SIEM Framework
Alert and reaction generation
Scenarios Prototypes Event and Information Collection
Highly-scalable, dependable and multi-level event collection
Event, Process Models and Attack Models
Predictive security analysis Multi-domain parallel-running processes Process and attack simulation Actions and Counter- measures Security analysis and notification Security-aware processes Olympic Games Mobile money transfer service CI Process Control (Dam) Managed Enterprise Service Infrastructures Resilient event processing and integration Languages
EVENTS RELATIONS POLICIES REACTIONS
Multi-level event correlation Multi-level security event modeling Trustworthy event collection Resilient framework architecture
SLIDE 28 28
T-Systems MPLS Cloud
Firewall & IPS Firewall & IPS
Internet Cloud
Firewall & IPS Internet Gateway Router Campus/Remote Site Internet Gateway Remote Authentication Server Site Router Local Novell IDS Server Firewall & IPS HIPS Anti-Virus Anti-Spyware (PKI Infrastructure) (Strong Authentication) Software Update Server Firewall & IPS Data Centre Data Centre Router Software Update Server IDM Mail Server Anti-Virus Anti-Spam URL Filtering Anti-Virus Anti-Virus Anti-Spam SOC Router Security Operations Centre Monitoring Event Correlator Vulnerability Analysis Firewall & IPS Servers HIPS Anti-Virus Anti-Spyware Email Spooler Proxy Server
SLIDE 29
T-Labs „Anomaly Detection and Early Warning System“ (ADEWaS) Project. T-Labs „Model Driven Security Development “ (MDSD) Project. T-Labs „Purenet“ Project. T-Labs „Enhanced Database Security & Services (EDSS) “ Project.
SLIDE 30
Sometimes viewed as a “field trial” ! Smaller market Close(r) to clients Open-ness to change Like to be early adopters (e.g. pre-paid
electricity & mobile, ATMs, Internet banking etc)
Willingness to take calculated risks (less
punitive regime?)
SLIDE 31
SLIDE 32
SLIDE 33
SLIDE 34
SLIDE 35 http://internationalaffairs.unibas.ch/joint-programmes/swiss-south-africa-joint-research-programme-ssajrp/
SLIDE 36
SLIDE 37
SLIDE 38
SLIDE 39
CHF600 000 in 2011 for 9 joint projects
SLIDE 40
Strong leader / “champion” in Uni Basel Multi-disciplinary focus dilutes Modes of funding are typical (joint projects,
exchange, student support, etc)
Forums Lack of industry involvement (e.g. IBM ZRL,
Google Zurich, Pharmaceutical companies etc)
“Best kept secret”
SLIDE 41 BIC is advocating a more multi-lateral cooperation model
... needed especially for cyber security
Has a slightly extended model of working groups, including
- ne called an Extended Working Group (EWG ) in country
Recently launched an EWG in India (Mr. Abhishek Sharma
- f the BIC International Advisory Group (IAG) presenting
India progress and launch ... aim to duplicate in South Africa and Brazil.
Goal: to set up an EWG in South Africa in the next months.
SLIDE 42 Industry
R&D entities
Startups? BEE
Academic
Funding: national, international, industry (local / international)
SLIDE 43
Develop expertise in South Africa Increase number of qualified graduates
(especially post-graduate)
Critical infrastructure requires special
consideration and protection
Sophistication (and globalisation) of attacks
continues to grow at rapid pace
Joint European / South African projects can
improve situation at many levels
SLIDE 44
