joint security project
play

Joint Security Project Information Webinar | August 19/20, 2019 - PowerPoint PPT Presentation

Feb 29, 2024 •9 likes •209 views

Joint Security Project Information Webinar | August 19/20, 2019 canarie.ca | @ canarie_inc Download WebinarSlides >English: canarie.ca/network/security/JSPwebinar >French: canarie.ca/reseau/securite/webinairePCS canarie.ca | @canarie_inc

  1. Joint Security Project Information Webinar | August 19/20, 2019 canarie.ca | @ canarie_inc

  2. Download WebinarSlides >English: canarie.ca/network/security/JSPwebinar >French: canarie.ca/reseau/securite/webinairePCS canarie.ca | @canarie_inc 2

  3. Webinar Recording Policy / Politique concernant l’enregistrement des webinaires This webinar will be recorded and Ce webinaire sera enregistré puis archived, including all audio. The archivé, son compris. La vidéo sera video will be archived on the conservée sur le canal YouTube de CANARIE YouTube channel and may CANARIE et pourra être promue au be promoted through CANARIE moyen des filières de communication de communication channels. CANARIE. Any text questions or comments, Si on y répond, les questions écrites et if responded to, will remain orales demeureront anonymes et ne anonymous and not be part of the feront pas partie de l’enregistrement . recording. Toutefois, si la fonction The recorded video will include « participation audio » a été activée, your voice, if audio participation is le fichier vidéo inclura votre voix. enabled. 3 canarie.ca | @canarie_inc 3

  4. Webinar Information / Questions Questions will be answered at the end of the webinar. Please use the question tool to type your questions. canarie.ca | @canarie_inc 4

  5. Joint Security Project Initially piloted by 39 institutions in 2017, the JSP provides both technical tools and opportunities to develop cybersecurity skills across the research and education community. > Purpose: to continue the development of a community of security specialists to strengthen the overall security of Canada’s universities, colleges, and research institutions. > This phase of the JSP operates from September 2019 through August 2020. > Details of the next phase of the JSP will be announced in 2020. canarie.ca | @canarie_inc 5

  6. Benefits to Participants Institutional security specialists will have access to cybersecurity network traffic analysis tools, cybersecurity training with other JSP participants, and collaboration opportunities with peers and cybersecurity experts. canarie.ca | @canarie_inc 6

  7. Project Elements 1. CANARIE will provide participants an intrusion detection system (IDS) for threat and vulnerability detection. • The IDS uses Zeek (BRO) technology 2. Institutions may request $15,000 in funding to support project participation costs. 3. Participants will benefit from regular sessions with peers and cybersecurity experts, and a 1-day live training event. canarie.ca | @canarie_inc 7

  8. Project Elements 4. Participants will centrally share network data from their IDS, allowing cybersecurity analysis at both the institution- level, and in aggregate (JSP-wide). • Your data is only visible by your security specialists. • Aggregated data provides a national comparison view. 5. Cybersecurity analysis tools from Canadian university cybersecurity centres will aggregate the data and provide individual institution and aggregate cybersecurity analysis. 6. Participants will jointly develop an incident response process to improve the identification of security incidents. canarie.ca | @canarie_inc 8

  9. EngagementTimeline >Submission Deadline: September 9th, 2019 – 4 pm ET >Participation Announcements: September 30th, 2019 >Training Workshop: Late 2019 >Project Completion: August 31, 2020 Let’s get started! canarie.ca | @canarie_inc 9

  10. Who is eligible to participate? >Canadian research and higher education institutions that are connected to the NREN are eligible to participate. • Check if your university, college or research institution is connected: > Is My Institution Connected? > Federal Government research facilities are not eligible at this time. canarie.ca | @canarie_inc 10

  11. Questions you might have… The website states: “The institution will install the CANARIE-provided IDS on their network;”. Do you know what vendor has been selected and the specifications of the device being provided? > The device is a Dell 210-ALZE PowerEdge R440 Rack Server. The IDS solution is Zeek (Bro). (https://www.zeek.org/). > 2 network taps are provided, up to 10Gbps optical, or either 1Gbps or 10Gbps electrical. For institutions that already have IDS, is it possible to participate without installing and maintaining another piece of gear, assuming we conform to the proposed data standards? > Absolutely. We prefer you choose to install the supplied IDS to get the most out of the JSP (and it might be easier than converting data). Ultimately, we prefer you participate rather than opt out because you don’t want to maintain another device. canarie.ca | @canarie_inc 11

  12. Questions you might have… What data will I be asked to share? > Data sharing is one of a number of decisions that the JSP participants will work together to determine. JSP Pilot participants agreed to a minimum set of data, with some participants deciding it would be beneficial for them to provide more data. canarie.ca | @canarie_inc 12

  13. Questions you might have… Can you be more specific about what my institution gets if they participate? > If you look at cybersecurity as a combination of people, technology and process: > People: Your cybersecurity specialists will gain valuable experience by working jointly with colleagues across the country to implement the JSP, receive cybersecurity training, and have access to peers and cybersecurity experts. > Technology: The IDS will provide a sensor for monitoring your institution’s network traffic, which often provides value on its own. Further, data that is forwarded to a central aggregation site will be analyzed and a portal to view that analysis provided. In addition to seeing your own institution’s data analysis, you can also examine the aggregated data analysis, allowing comparisons between what the Canadian view is versus what your institution is seeing. > Process: The analysis tools are self-serve, so there is not a team looking at your data on your behalf. However, each institution will be looking at their own portal, and may wish to notify others of threats. Participants will jointly create an Incident Response Process to support this notification. canarie.ca | @canarie_inc 13

  14. Questions you might have… Can you be more specific about what my institution agrees to do when participating? 1. Collect network data on your IDS 2. Operate the equipment in accordance with collaboratively determined standards. 3. Make a member of your technical staff available to: • Participate in scheduled videoconferences to develop stands • Attend a system configuration and skill-building workshop • Upload collaboratively agreed upon institutional network security data to the aggregation and analysis tools. 4. Allow the sharing of aggregated results and analysis with other JSP participants. 5. Submit a final written report on outcomes and impact at the end of this phase of the project on August 31, 2020. canarie.ca | @canarie_inc 14

  15. Finance Questions canarie.ca | @canarie_inc 15

  16. Questions you might have... How are the funded participants going to receive payment? > CANARIE will make a payment with respect to theParticipation obligations described in the Call for Participation. > CANARIE reserves the right to reduce the payment where the Participation obligations have not been fulfilled. > The payment amount will be a maximum of $15,000. > The payment becomes payable at the end of this phase of the Project (after August 31, 2020). > No expenses need to be tracked. canarie.ca | @canarie_inc 16

  17. Questions you might have… Why would I forego the $15k in funding? > We will add eligible participants to the limit of our funding, anticipated to be up to 160. If the funding will not make a major difference to your institution’s ability to participate, not asking for it will allow other institutions who do need the funding to participate. canarie.ca | @canarie_inc 17

  18. Questions you might have… How does the IDS get provided? > CANARIE will provide a vendor contact. There are a number of configurations available to match your network and how to tap it (electrical, optical, optics types ...). You will select the proper configuration and notify the vendor. > The vendor will ship the IDS directly to you. Once you confirm receipt of the equipment, you will notify CANARIE, and CANARIE will reimburse the vendor. > If there are any issues, you can directly work with the vendor to resolve them. > Your institution will own the equipment and the provided warranty is assigned to your institution. canarie.ca | @canarie_inc 18

  19. Questions? canarie.ca | @canarie_inc 19

  20. canarie.ca | @ canarie_inc

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CORE Security and WPI Joint Project Project Goal Take the techniques that make games easy to use

CORE Security and WPI Joint Project Project Goal Take the techniques that make games easy to use

CORE Security and WPI Joint Project Project Goal Take the techniques that make games easy to use and apply them to professional security software. The Team Eric - Code Mike Code AJ - Code - CONFIDENTIAL - Professor Shue Professor

344 views • 18 slides
Security Safety Interface in Practice Lessons learned from the Swedish joint regulatory

Security Safety Interface in Practice Lessons learned from the Swedish joint regulatory

Security Safety Interface in Practice Lessons learned from the Swedish joint regulatory project Jonas Sjstrm, CPP B.Sc. Security Background to the regulatory situation 2008 Swedish Nuclear Power Inspectorate The new regulatory

388 views • 12 slides
AttackDefense Tree Methodology for Security Assessment Barbara Kordy Joint work with Patrick

AttackDefense Tree Methodology for Security Assessment Barbara Kordy Joint work with Patrick

AttackDefense Tree Methodology for Security Assessment Barbara Kordy Joint work with Patrick Schweitzer, Sjouke Mauw, Saa Radomirovi Barbara Kordy, UL ATREES project funded by National Research Fund CORE grant No. C08/IS/26 1 Outline

841 views • 59 slides
CS 315: Computer Security Team/Term Project Fengwei Zhang SUSTech CS 315 Computer Security 1

CS 315: Computer Security Team/Term Project Fengwei Zhang SUSTech CS 315 Computer Security 1

CS 315: Computer Security Team/Term Project Fengwei Zhang SUSTech CS 315 Computer Security 1 General Information A research project with 2-5 individuals Building a new system Improving an existing technique Performing a large

647 views • 9 slides
IPC Project Briefing No. 2 United Wam bo Open Cut Coal Mine Project 1 Agenda Joint Venture

IPC Project Briefing No. 2 United Wam bo Open Cut Coal Mine Project 1 Agenda Joint Venture

IPC Project Briefing No. 2 United Wam bo Open Cut Coal Mine Project 1 Agenda Joint Venture and Project Overview Response to Com m ission Review Report Noise, vibration and transition to Joint Venture Air Quality and Blasting

523 views • 50 slides
IPC Project Briefing United Wam bo Open Cut Coal Mine Project 1 Agenda Joint Venture and

IPC Project Briefing United Wam bo Open Cut Coal Mine Project 1 Agenda Joint Venture and

IPC Project Briefing United Wam bo Open Cut Coal Mine Project 1 Agenda Joint Venture and Project Overview Response to Com m ission Review Report Noise, vibration and transition to Joint Venture Air Quality and Blasting

487 views • 47 slides
Human Errors in Security Protocols David Basin joint work with Sa a Radomirovi and Lara

Human Errors in Security Protocols David Basin joint work with Sa a Radomirovi and Lara

Human Errors in Security Protocols David Basin joint work with Sa a Radomirovi and Lara Schmid Institute of Information Security Recap Security Protocols We have defined the Dolev-Yao adversary communicating agents that follow a

618 views • 51 slides
Security for smart Electricity GRIDs Project type: Collaborative project small or medium

Security for smart Electricity GRIDs Project type: Collaborative project small or medium

Security for smart Electricity GRIDs Project type: Collaborative project small or medium scale focused research project Grant agreement no: 607109 Thematic Priority: FP7-SEC-2013-1 October 1 st , 2014 Start date of project: Duration: 36

303 views • 11 slides
Binary-Level Software Security Gang Tan Department of CSE, Lehigh University For Joint Summer

Binary-Level Software Security Gang Tan Department of CSE, Lehigh University For Joint Summer

Binary-Level Software Security Gang Tan Department of CSE, Lehigh University For Joint Summer Schools on Cryptography and Principles of Software Security @ Penn State; Jun 1st, 2012 High-Level Languages for Safety/Security 2 Java, C#,

1.54k views • 98 slides
FED EDERAL RAL A AND STATE TE JOINT P T PROJECT: Federal COLORAD ADO H HEALTH TH

FED EDERAL RAL A AND STATE TE JOINT P T PROJECT: Federal COLORAD ADO H HEALTH TH

FED EDERAL RAL A AND STATE TE JOINT P T PROJECT: Federal COLORAD ADO H HEALTH TH Perspective EXCH CHANGE NGE ESTAB ABLISHMENT G T GRAN ANT FOUNDATIONS FOR JOINT PROJECT Last few years emphasis on intergovernmental

372 views • 11 slides
Security Decision Making in Interdependent Organizations Presented by R. Ann Miura-Ko Joint work

Security Decision Making in Interdependent Organizations Presented by R. Ann Miura-Ko Joint work

Security Decision Making in Interdependent Organizations Presented by R. Ann Miura-Ko Joint work with Benjamin Yolken, John Mitchell and Nicholas Bambos Risk Management Security: not a technology issue alone Budgets and resources are

295 views • 17 slides
SECURITY PROJECT MANAGEMENT BEST PRACTICES AND GAP ANALYSIS Presented to the PSWG - WECC August

SECURITY PROJECT MANAGEMENT BEST PRACTICES AND GAP ANALYSIS Presented to the PSWG - WECC August

SECURITY PROJECT MANAGEMENT BEST PRACTICES AND GAP ANALYSIS Presented to the PSWG - WECC August 7, 2019 AGENDA Introductions The ClearVue Team Benefits of Project Management Project Management Phases Ideal PM Process for Security Projects

601 views • 40 slides
Another Look at Provable Security Alfred Menezes (joint work with Sanjit Chatterjee, Neal

Another Look at Provable Security Alfred Menezes (joint work with Sanjit Chatterjee, Neal

Another Look at Provable Security Alfred Menezes (joint work with Sanjit Chatterjee, Neal Koblitz, Palash Sarkar) EUROCRYPT 2012 1 Provable security Goal: To prove that a protocol P is secure with respect to a computational problem or

1.32k views • 91 slides
Welcome Joint Public Service Centre Project Welcome Agenda Introductions Project

Welcome Joint Public Service Centre Project Welcome Agenda Introductions Project

Staff Engagement Group 7 th November 2014 Welcome Joint Public Service Centre Project Welcome Agenda Introductions Project Update Key Task Area Project Manager Updates Engagement Assessment Results Implementation

856 views • 38 slides
An Introduction to the Joint Programming Initiative on Agriculture, Food Security and Climate

An Introduction to the Joint Programming Initiative on Agriculture, Food Security and Climate

An Introduction to the Joint Programming Initiative on Agriculture, Food Security and Climate Change (FACCE-JPI) 2017 GRA Livestock Research Group Meeting 10-12 April 2017 1 Joint Programming Concept : Endorsed by Council of the EU in

322 views • 19 slides
One Project The Benefits of Collaborative Project Delivery Your Logo Agenda The AIA/MBA Joint

One Project The Benefits of Collaborative Project Delivery Your Logo Agenda The AIA/MBA Joint

One Project The Benefits of Collaborative Project Delivery Your Logo Agenda The AIA/MBA Joint Committee 1 Why is Collaborative Project Delviery Important? 2 3 Collaboration in Project Delivery Systems 4 Case Studies 5 Strategies for

672 views • 39 slides
Principles and Practice of Scalable Systems (PPoSS) Webinar: January 27, 2020 Funda Ergun ,

Principles and Practice of Scalable Systems (PPoSS) Webinar: January 27, 2020 Funda Ergun ,

Principles and Practice of Scalable Systems (PPoSS) Webinar: January 27, 2020 Funda Ergun , Anindya Banerjee, Vipin Chaudhary , Wei Ding , Samee Khan, Tracy Kimbrel , Mimi McClure , and Yuanyuan Yang Directorate for Computer & Information

266 views • 23 slides
Better processes to facilitate earlier authorisation 3 rd Industry stakeholder platform on the

Better processes to facilitate earlier authorisation 3 rd Industry stakeholder platform on the

Better processes to facilitate earlier authorisation 3 rd Industry stakeholder platform on the operation of the centralised procedure for human medicinal products Presented by Victoria Palmi and Sabrina Spinosa on 21 April 2016 An agency of the

379 views • 14 slides
http://zoomwv.k12.wv.us/DashboardQA/portalHome.jsp The username is your k12 email address The

http://zoomwv.k12.wv.us/DashboardQA/portalHome.jsp The username is your k12 email address The

1. Log onto the following site: http://zoomwv.k12.wv.us/DashboardQA/portalHome.jsp The username is your k12 email address The password is the same password you use for your email. Access to this report is only available to individuals that have

397 views • 6 slides
Extend NonStop Applications with Cloud-based Services Phil Ly, TIC Software John Russell, Canam

Extend NonStop Applications with Cloud-based Services Phil Ly, TIC Software John Russell, Canam

Extend NonStop Applications with Cloud-based Services Phil Ly, TIC Software John Russell, Canam Software Agenda Cloud Computing and Microservices Amazon Web Services (AWS) Integrate NonStop with AWS Managed Services AWS Data

470 views • 43 slides
Working Together Joint approach to strategic planning and transport issues: The JSP will:

Working Together Joint approach to strategic planning and transport issues: The JSP will:

Working Together Joint approach to strategic planning and transport issues: The JSP will: be a statutory Development Plan Document provide the strategic overarching development framework for the West of England to 2036 identify

340 views • 16 slides
Investor Presentation Fact Sheet Manothamr Public, aksa Shareholding Structure (as of 31 Dec

Investor Presentation Fact Sheet Manothamr Public, aksa Shareholding Structure (as of 31 Dec

J.S.P. Property Public Company Limited Investor Presentation Fact Sheet Manothamr Public, aksa Shareholding Structure (as of 31 Dec 2016) Unit:Million 42.54% Familly, 30.42% Manothamraksa

653 views • 36 slides
J.S.P. Property Public Company Limited Investor Presentation Opportunity Day, 16 Aug 2016 Agenda

J.S.P. Property Public Company Limited Investor Presentation Opportunity Day, 16 Aug 2016 Agenda

J.S.P. Property Public Company Limited Investor Presentation Opportunity Day, 16 Aug 2016 Agenda Overview Financial Performance Project Update Strategy 2 Fact Sheet Shareholder Structure Manothamraksa Other Family 41.61% 30.30%

703 views • 48 slides
National Science Foundations HSI Program Talitha Washington Division of Undergraduate

National Science Foundations HSI Program Talitha Washington Division of Undergraduate

National Science Foundations HSI Program Talitha Washington Division of Undergraduate Education (DUE) NSF Mission Alert: This presentation is not all-inclusive Photo Credit: Maria Barnes, NSF NSF Funds All Fields of S&E Ten Big

327 views • 21 slides

More recommend