etiquette to improve
play

Etiquette to Improve Internet Security Niklas Carlsson Martin - PowerPoint PPT Presentation

Feb 19, 2023 •145 likes •341 views

Leveraging Organizational Etiquette to Improve Internet Security Niklas Carlsson Martin Arlitt University of Calgary, Canada HP Labs, USA Presentation at IEEE ICCCN , Zurich, Switzerland, August 4, 2010 Motivation Organizations

  1. Leveraging Organizational Etiquette to Improve Internet Security Niklas Carlsson Martin Arlitt University of Calgary, Canada HP Labs, USA Presentation at IEEE ICCCN , Zurich, Switzerland, August 4, 2010

  2. Motivation  Organizations increasingly rely on the Internet  Enterprises  ISPs  Universities  etc.  Continuous battle for control of IT assets Good vs. bad ???  Internet crime more prevalent and better organized  Follow the money  Increasingly sophisticated techniques  Leverage geographical and legal boundaries

  3. A shift in security practices  Current Internet security practices primary focus on what others are doing to our resources, rather than giving equal consideration to what our resources are doing to others  We argue that responsible organizations also must strive to improve their organizational etiquette;  i.e., must reduce the negative impact the machines (and users) on our domain(s) have on other organizations  Organizations should also help other (trusted) organizations achieve the same goal  Primarily through systematic sharing of useful information

  4. The OE system  The OE system (after “Organizational Etiquette”)  Organizations need to take greater responsibility for the traffic that leaves their edge network(s)  Reducing the negative impact an organization and its machines may have on others  Help organizations become better Internet citizens  OE can systematically  identify and eliminate malicious activity on edge networks  exchange non-sensitive information (to enable other organizations achieve the same goal)

  5. Host accountability  Improving organizational etiquette will make the Internet more secure  Design is based on the premise that “security rests on host accountability” [Xie et al. 2009]  Non-negligible improvements could be obtained by following five simple rules:  don't attack  don't scan  don't intrude  don't infect  don't spam

  6. Please weed your lawn ...  Benefits of improving local security and information sharing are intuitive  Little progress has been made on designing a solution  We quantify the benefits of our proposed solution of a (single) large organization  Metcalfe's Law suggests that  Improved etiquette and sharing of information across a set of organizations would have a much greater positive effect on overall Internet security  So, please weed your lawn ...

  7. Our proposed method  There is an adage that you cannot manage what you cannot measure  Unfortunately, this reflects the state of many edge networks today …  Management of edge networks has transformed very slowly and conservatively  Many tasks are still done manually, which limits the number of events that can be acted upon  In contrast, miscreants effectively leverage automation to achieve their goals ...

  8. System design  Overarching goal of our design is to automate as much of the system operation as possible, including data gathering, processing, and system management  Our system consists of three primary components:  Information management  Security planes  OE manager

  9. The OE system Security planes Internet (external organizations) Local OE machines Manager Information Primary foundation Management that our system design builds upon

  10. Information management  Actionable information is critical for improving Organizations Internet “outer edge” “inner edge” security!! ingress/egress point(s) Internet ( external organizations) Local machines Automation Systematic Sharing with Info. Mgmt. monitoring trusted friends Primary foundation that our system design builds upon Candidate events Transaction records Sharable records (suspicious activity) (evidence) (less sensitive)

  11. Security planes Resources Security planes (IP addr., ports, etc.) Quarantine plane(s) Organizations Internet “outer edge” “inner edge” ingress/egress point(s) Honey plane(s) Internet Transit plane(s) (external organizations) Local machines  Machines easily being moved between different security planes, potentially with different Internet accessibility and/or security restrictions  Implemented as isolated virtual networks

  12. OE manager  Threshold-based policies  Determine which plane (or security restrictions) each machine on the network should be assigned  Self-help service  Help individual clients improve their security so that they can be moved to planes with greater accessibility without requiring increased manual efforts  Host accountability  Management of essential resources  Static policies can be worked around or even make things easier for miscreants  Manage essential resources more closely

  13. The OE system

  14. E.g., Sharing with friends  A friend (organization) may “hint” that one of our machines A attacked one of their machines at time T  Using our logs we can corroborate that information to see if we have evidence that support such event and machine A should be moved to a different layer

  15. Proof of concept analysis  A year-long trace of an edge network's traffic  Characterize different types of undesirable activity  Introduce specific solutions to these activities  Quantify effectiveness of our proposed solution  Reduce the volume of malicious or non-productive traffic  Improve the security of the edge network itself  Considers how miscreants have achieved their current levels of success  Use those insights to make it more difficult for miscreants to achieve their various goals in the future  More advanced/better policies applicable

  16. Measurement data set External Host Connection data: Detailed = Source IP summaries of all inbound and External Host outbound connections (e.g., = Destination IP source and destination IP and Inbound port numbers, connection state). Connection Internet Outbound Description Value Connection Duration 1 year (Apr/08 – Mar/09) Campus Host Connections 39.3 billion = Destination IP Campus Host = Source IP 16

  17. Example results: DDoS  Is egress filtering doing the job??  No!  Static threshold-based policy  Based on unused address space  Better yet ... Management of essential resources  Keep track of which IP addresses should be in use  Solutions at the “inner edge” ...

  18. Conclusions  Promoting a shift in security practices  Current primary focus is on what others are doing to you  We argue that responsible organizations must strive to improve their organizational etiquette and to become better Internet citizens  Organizations should also help other (trusted) organizations achieve the same goal  Organizations need to take greater responsibility for the traffic that leaves their edge network(s)  The OE system (after “Organizational Etiquette”)  Reduce the negative impact an organization have on others  Quantify effectiveness of our proposed solution

  19. Questions? Email: niklas.carlsson@ucalgary.ca

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Business Etiquette 101 The written and unwritten rules of etiquette as it relates to your career

Business Etiquette 101 The written and unwritten rules of etiquette as it relates to your career

Business Etiquette 101 The written and unwritten rules of etiquette as it relates to your career and professional image. LEAP into Etiquette Career Limiting Behaviors Breaking Habits Office Gossip Generational Gap Dress for

244 views • 12 slides
DINING ETIQUETTE UCR Career Center WHAT DOES DINING ETIQUETTE MEAN TO YOU? WHY LEARN PROPER

DINING ETIQUETTE UCR Career Center WHAT DOES DINING ETIQUETTE MEAN TO YOU? WHY LEARN PROPER

DINING ETIQUETTE UCR Career Center WHAT DOES DINING ETIQUETTE MEAN TO YOU? WHY LEARN PROPER DINING ETIQUETTE A set of rules that govern the expectations of social and dining behavior in a workplace, group or society. Table manners are

288 views • 24 slides
Welcome! I Can... Explain what concert etiquette is and how it evolves Describe

Welcome! I Can... Explain what concert etiquette is and how it evolves Describe

Welcome! I Can... Explain what concert etiquette is and how it evolves Describe what my student is being taught about concert etiquette Support my students learning as an audience member What IS Concert Etiquette?!

331 views • 7 slides
No..! Good Etiquette? Yes..? Good Etiquette? Legal? Legal? Moral? Moral? Ethical? Ethical?

No..! Good Etiquette? Yes..? Good Etiquette? Legal? Legal? Moral? Moral? Ethical? Ethical?

Presentation Overview Definitions Engineering Ethics History UTA College of Engineering Case Study Fall 2003 Code of Ethics Discussions Vocabulary Words Etiquette: Rules of personal behavior and courtesy (e.g. proper dress, interaction)

466 views • 7 slides
FLAG ETIQUETTE Marshal all High School Civics Civics Mr. Cline Unit Two FLAG ETIQUETTE THIS

FLAG ETIQUETTE Marshal all High School Civics Civics Mr. Cline Unit Two FLAG ETIQUETTE THIS

FLAG ETIQUETTE Marshal all High School Civics Civics Mr. Cline Unit Two FLAG ETIQUETTE THIS IS DISPLAYED INCORRECTLY BECAUSE THE UNION IS TO THE RIGHT OF THE VIEWER, OR THE FLAGS OWN LEFT THESE ARE DISPLAYED CORRECTLY YOU CAN FLY

702 views • 43 slides
MASONIC ETIQUETTE by Bro. Harvey L. Sokoloff, P.M. St. Johns Lodge, No. 115, F.&A.M. of

MASONIC ETIQUETTE by Bro. Harvey L. Sokoloff, P.M. St. Johns Lodge, No. 115, F.&A.M. of

MASONIC ETIQUETTE by Bro. Harvey L. Sokoloff, P.M. St. Johns Lodge, No. 115, F.&A.M. of Pennsylvania (Updated 8 April, 2014) This presentation is derived from http://www.masonic-Lodge-of-education/masonic-etiquette.html and

595 views • 10 slides
Before, During and After a Meal For more information, or to schedule a dining etiquette session

Before, During and After a Meal For more information, or to schedule a dining etiquette session

Essential Dining Etiquette Tips for Before, During and After a Meal For more information, or to schedule a dining etiquette session for your company, please contact Aimee Symington at aimee@finesseworldwide.com 704.564.6502, or go to

276 views • 8 slides
AD Hoc Flag Etiquette Committee Our Assignment: - Review Our Tradition of Half-Staffing the

AD Hoc Flag Etiquette Committee Our Assignment: - Review Our Tradition of Half-Staffing the

AD Hoc Flag Etiquette Committee Our Assignment: - Review Our Tradition of Half-Staffing the American Flag Upon Death of a Member & Proper Flag Etiquette Our Intent Today (Breakfast W/ Bridge): - Review What We Have Learned - Encourage

105 views • 9 slides
Etiquette and dirty tricks in L A T EX Jephian C.-H. Lin Department of Applied

Etiquette and dirty tricks in L A T EX Jephian C.-H. Lin Department of Applied

Etiquette and dirty tricks in L A T EX Jephian C.-H. Lin Department of Applied Mathematics, National Sun Yat-sen University May 21, 2019 Practice of Applied Mathematics, Kaohsiung, Taiwan Etiquette and dirty tricks in L A T EX

1.08k views • 74 slides
TO MISCO PROJECT Moon Iron & Steel Co .S.A.O.C 1 OMANI Culture & Etiquette 1. Omanis

TO MISCO PROJECT Moon Iron & Steel Co .S.A.O.C 1 OMANI Culture & Etiquette 1. Omanis

OMANI Culture & Etiquette WELCOME TO MISCO PROJECT Moon Iron & Steel Co .S.A.O.C 1 OMANI Culture & Etiquette 1. Omanis are very polite and formal in public. 2. Upon meeting, formulaic greetings must be exchanged before a

565 views • 19 slides
Email Etiquette Facilitated by Chris Friend The John Scott Dailey Florida Institute of Government

Email Etiquette Facilitated by Chris Friend The John Scott Dailey Florida Institute of Government

Email Etiquette Facilitated by Chris Friend The John Scott Dailey Florida Institute of Government at the University of Central Florida Email Etiquette Introductions Name Department & Job Title Years of Service Average Number of Daily

1.03k views • 28 slides
EMAIL ETIQUETTE For young professionals in the workplace TONE: Its not just what you say,

EMAIL ETIQUETTE For young professionals in the workplace TONE: Its not just what you say,

EMAIL ETIQUETTE For young professionals in the workplace TONE: Its not just what you say, its how you say it With so many social media platforms, its easy to blur the lines between professional emails/ netiquette and more

190 views • 7 slides
Internet + Etiquette = Netiquette Are you at risk for not landing (or losing) the job?

Internet + Etiquette = Netiquette Are you at risk for not landing (or losing) the job?

Internet + Etiquette = Netiquette Are you at risk for not landing (or losing) the job? Professional Development: Netiquette ISPE GLC Student Training Conference October 3, 2010, page 1 Housekeeping Fall reports will be due soon, please

665 views • 17 slides
Basic Presentation Etiquette No matter who you are presenting your proposal to, whether it be the

Basic Presentation Etiquette No matter who you are presenting your proposal to, whether it be the

Basic Presentation Etiquette No matter who you are presenting your proposal to, whether it be the Green Team, a NIU department, or even the President of NIU, there are some general guidelines you should follow to assure your presentation is

286 views • 3 slides
ACQUISITION HOUR WEBINAR January 31, 2018 1 WEBINAR ETIQUETTE Please When logging into

ACQUISITION HOUR WEBINAR January 31, 2018 1 WEBINAR ETIQUETTE Please When logging into

A Procurement Technical Assistance Center (PTAC) OVERVIEW OF DIBBS ACQUISITION HOUR WEBINAR January 31, 2018 1 WEBINAR ETIQUETTE Please When logging into go-to-meeting, enter the name that you have registered with Put your phone or

615 views • 59 slides
Principles and Practice of Assistive Technology Lab 01 September 7, 2011 Agenda

Principles and Practice of Assistive Technology Lab 01 September 7, 2011 Agenda

Principles and Practice of Assistive Technology Lab 01 September 7, 2011 Agenda Introductions Course Survey Disability Etiquette Preamble Quiz Video: The Ten Commandments Discussion Communication Etiquette

485 views • 29 slides
Giless Game and the Proof Theory of ukasiewicz Logic George Metcalfe Mathematics Institute

Giless Game and the Proof Theory of ukasiewicz Logic George Metcalfe Mathematics Institute

Giless Game and the Proof Theory of ukasiewicz Logic George Metcalfe Mathematics Institute University of Bern Joint work with Christian G. Fermller Proof and Dialogues 27 February 2011, Tbingen George Metcalfe (University of Bern)

1.53k views • 118 slides
Uniform Interpolation Part 1: Intuitionistic Logic George Metcalfe Mathematical Institute

Uniform Interpolation Part 1: Intuitionistic Logic George Metcalfe Mathematical Institute

Uniform Interpolation Part 1: Intuitionistic Logic George Metcalfe Mathematical Institute University of Bern BLAST 2018, University of Denver, 6-10 August 2018 George Metcalfe (University of Bern) Uniform Interpolation August 2018 1 / 30

1.71k views • 138 slides
Behavior in Social Networking Services (SNS) Martin Falck-Ytter Infrastructure Engineer

Behavior in Social Networking Services (SNS) Martin Falck-Ytter Infrastructure Engineer

An Empirical Study of Valuation and User Behavior in Social Networking Services (SNS) Martin Falck-Ytter Infrastructure Engineer marf@steria.no www.steria.com An Empirical Study of Valuation and User Behavior in Social Networking

556 views • 26 slides
SEARCH ENGINE OPTIMIZATION (SEO) John Rearick DrupalCorn Camp 2012 8/3/2012 Why? How

SEARCH ENGINE OPTIMIZATION (SEO) John Rearick DrupalCorn Camp 2012 8/3/2012 Why? How

SEARCH ENGINE OPTIMIZATION (SEO) John Rearick DrupalCorn Camp 2012 8/3/2012 Why? How Does it Work? The Algorithm Appease the Spider Dos Donts Resources WHY? WHY? Facebook Wants to Be Your One True

716 views • 23 slides
802.1 Plenary - 07/2013 Geneva Opening Agenda General information... See:

802.1 Plenary - 07/2013 Geneva Opening Agenda General information... See:

802.1 Plenary - 07/2013 Geneva Opening Agenda General information... See: http://www.ieee802.org/1/files/public/minutes /802-1-general-info-v3.pdf Decorum Press (i.e., anyone reporting publicly on this meeting) are to announce

337 views • 23 slides
Principles of Software Construction: Objects, Design, and Concurrency The Perils of Concurrency

Principles of Software Construction: Objects, Design, and Concurrency The Perils of Concurrency

Principles of Software Construction: Objects, Design, and Concurrency The Perils of Concurrency Can't live with it. Cant live without it. Spring 2014 Charlie Garrod Christian Kstner School of Computer Science Administrivia

831 views • 36 slides
Web Services Web Services Overview Overview Dr. Kanda Runapongsa Dr. Kanda Runapongsa

Web Services Web Services Overview Overview Dr. Kanda Runapongsa Dr. Kanda Runapongsa

Java Web Services, Software Park Thailand, 2004 Web Services Web Services Overview Overview Dr. Kanda Runapongsa Dr. Kanda Runapongsa Department of Computer Engineering Department of Computer Engineering Khon Kaen University Khon Kaen

712 views • 38 slides
A GREAT VIRTUE THE FOUNDATION OF TRUST THE HEART OF RELATIONSHIPS AUTHENTICITY

A GREAT VIRTUE THE FOUNDATION OF TRUST THE HEART OF RELATIONSHIPS AUTHENTICITY

A GREAT VIRTUE THE FOUNDATION OF TRUST THE HEART OF RELATIONSHIPS AUTHENTICITY INTEGRITY SINCERITY SAFETY HELEN.STREET@UWA.EDU.AU POSITIVESCHOOLS.COM.AU WHAT IT MEANS TO BE HONEST TRUTH, SINCERITY, LAW ABIDING,

574 views • 24 slides

More recommend