sane a protection architecture for enterprise networks
play

SANE: A Protection Architecture for Enterprise Networks Presented - PowerPoint PPT Presentation

Dec 25, 2023 •310 likes •440 views

SANE: A Protection Architecture for Enterprise Networks Presented By: Luke St.Clair How do you set up a network? Routers Firewalls NAT VLAN Problems? What happens when... You need to add a computer A computer moves You want to add

  1. SANE: A Protection Architecture for Enterprise Networks Presented By: Luke St.Clair

  2. How do you set up a network? Routers Firewalls NAT VLAN

  3. Problems?

  4. What happens when... You need to add a computer A computer moves You want to add someone to a logical “group” with access decisions in more than one layer/PEP

  5. Can We Wipe the Slate Clean? Existing networks, ways of doing things On what sort of scale? Are some places better?

  6. The Claim... Partially funded by the Stanford Clean Slate Program You can do this in businesses Central Handful of Services Everything is authenticated (hosts, users) “new networks are regularly built from scratch”

  7. If We Could Start From Scratch... What would you want? How would you get it?

  8. One Idea... Do everything at the link layer this prevents subversion can it deal with the application level? Onion routing, after authentication

  9. How does this work? Some central authority knows everything (DC) Knows topology everyone can reach him does “authentication” IP addresses aren’t used within the network

  10. How do you find out what’s on the Network Tell the guy who knows everything he’ll give you the capability to talk then you can talk Can’t broadcast directly - have to broadcast to DC, who checks for conformity What does this compare to today?

  11. Lots of edge conditions... But I won’t completely bore you with those... Malicious switches Revocation state DoS Mobility/Anti-Mobility Flooding And so much more...

  12. So... Can it work? Why/Why not?

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Enterprise Architecture: The Next 20 Years Dr. John Gtze Enterprise Architecture? A

Enterprise Architecture: The Next 20 Years Dr. John Gtze Enterprise Architecture? A

Enterprise Architecture: The Next 20 Years Dr. John Gtze Enterprise Architecture? A discipline A profession A mindset EA s purpose: Line of sight Strategy Technology Business 4 EA = The analysis and documentation of an enterprise

607 views • 60 slides
BIAN Introduction BY BABAK DARVISH ROUHANI (PHD) SALEH RAD 1 Enterprise Architecture 2

BIAN Introduction BY BABAK DARVISH ROUHANI (PHD) SALEH RAD 1 Enterprise Architecture 2

BIAN Introduction BY BABAK DARVISH ROUHANI (PHD) SALEH RAD 1 Enterprise Architecture 2 Enterprise Architecture Enterprise Architecture (EA) To align Business and Information Technology To integrate environment for enterprise EA

985 views • 36 slides
Architecture Roadmaps Drive IT Investment Association of Enterprise Architects December 2016

Architecture Roadmaps Drive IT Investment Association of Enterprise Architects December 2016

SA Power Networks Architecture Roadmaps Drive IT Investment Association of Enterprise Architects December 2016 About Me Sean Provis Lead Architect Strategic Projects @ SA Power Networks Background: Bachelor of Information

506 views • 35 slides
SANE BOUNDS ON SOME VDW-TYPE NUMBERS A collaboration spanning many papers and authors.

SANE BOUNDS ON SOME VDW-TYPE NUMBERS A collaboration spanning many papers and authors.

SANE BOUNDS ON SOME VDW-TYPE NUMBERS A collaboration spanning many papers and authors. http://www.cs.umd.edu/~gasarch/sane/sane.html . Daniel Apon- U of Ark (grad student) Richard Beigel- Temple U Stephen Fenner- U of SC William Gasarch- U of

975 views • 44 slides
EA Anamnesis: Towards an approach for Enterprise Architecture rationalization Georgios

EA Anamnesis: Towards an approach for Enterprise Architecture rationalization Georgios

DSM 2012 EA Anamnesis: Towards an approach for Enterprise Architecture rationalization Georgios Plataniotis Sybren de Kinderen Henderik A. Proper CRP Henri Tudor, Luxembourg 1 Enterprise Architecture A design that shows

450 views • 17 slides
An Extended Enterprise Architecture for a Netw ork- Enabled, Effects-based Approach for National

An Extended Enterprise Architecture for a Netw ork- Enabled, Effects-based Approach for National

An Extended Enterprise Architecture for a Netw ork- Enabled, Effects-based Approach for National Park Protection Transitioning Military Paradigms Tod M. Schuck Stevens Institute of Technology Lockheed Martin MS2 14 th ICCRTS June 15-17

326 views • 13 slides
Ralph Hodgson Realizing a semantic solution: Ontologies are like and unlike other IT models

Ralph Hodgson Realizing a semantic solution: Ontologies are like and unlike other IT models

Enterprise Architecture in SOA: Coverage Models and Methodologies Going Semantic Semantic technology May 23 rd , 2005 Enterprise architecture and semantic technology Enterprise architecture maturity model Capabilities of semantic

244 views • 9 slides
INF 5890 IT and Management Enterprise Architecture Bendik

INF 5890 IT and Management Enterprise Architecture Bendik

INF 5890 IT and Management Enterprise Architecture Bendik Bygstad IFI March 2016 Learning outcomes Understand the concept and purpose of enterprise

244 views • 22 slides
Enterprise architecture for artificial intelligence Kishau Rogers INTRODUCTION WHAT TO EXPECT

Enterprise architecture for artificial intelligence Kishau Rogers INTRODUCTION WHAT TO EXPECT

Enterprise architecture for artificial intelligence Kishau Rogers INTRODUCTION WHAT TO EXPECT Tips for reducing the friction of AI Background: Computer Science, Entrepreneur, 24yrs adoption in the enterprise using delivering enterprise

536 views • 14 slides
Government Enterprise Architecture for New Zealand GEA-NZ v3.0 Department of Internal Affairs

Government Enterprise Architecture for New Zealand GEA-NZ v3.0 Department of Internal Affairs

Government Enterprise Architecture for New Zealand GEA-NZ v3.0 Department of Internal Affairs GEA-NZ v3.0 Goals and Objectives One of the primary goals of Enterprise Architecture Ensure investments are cost-effective, sustainable

679 views • 39 slides
Governance Enterprise Architecture Working Group (EAWG)- Updates EAWG Charter EAWG

Governance Enterprise Architecture Working Group (EAWG)- Updates EAWG Charter EAWG

Governance Enterprise Architecture Working Group (EAWG)- Updates EAWG Charter EAWG Statewide Policy Setting Procedures EAWG Policies Being Drafted Security & Privacy Bring Your Own Device Enterprise Shared Services Enterprise

365 views • 8 slides
EA DMP Project Enterprise Architecture Depot Modernisation Project Imraan Khan (PRASA

EA DMP Project Enterprise Architecture Depot Modernisation Project Imraan Khan (PRASA

EA DMP Project Enterprise Architecture Depot Modernisation Project Imraan Khan (PRASA Enterprise Architecture), May 2015 What is EA DMP Initiative? PRASA has embarked on a multi billion rolling stock renewal project. The new trains require

440 views • 31 slides
Enterprise Connectivity using MIPv4 and MOBIKE Vijay Devarapalli and Pasi Eronen MIP4 WG, IETF 63

Enterprise Connectivity using MIPv4 and MOBIKE Vijay Devarapalli and Pasi Eronen MIP4 WG, IETF 63

Enterprise Connectivity using MIPv4 and MOBIKE Vijay Devarapalli and Pasi Eronen MIP4 WG, IETF 63 Enterprise connectivity Enterprise networks A typical enterprise networks has users connecting from trusted and untrusted networks

403 views • 8 slides
Software Architecture and Enterprise School of Computer Science Jose E. Labra Gayo Course

Software Architecture and Enterprise School of Computer Science Jose E. Labra Gayo Course

Software Architecture University of Oviedo Software Architecture and Enterprise School of Computer Science Jose E. Labra Gayo Course 2018/2019 Software Architecture Enterprise Architectures University of Oviedo Information Systems System

859 views • 36 slides
EAP ATAM and Collaboration at the Enterprise Level Evaluating Software Architecture ATAM The

EAP ATAM and Collaboration at the Enterprise Level Evaluating Software Architecture ATAM The

EAP ATAM and Collaboration at the Enterprise Level Evaluating Software Architecture ATAM The Architecture Trade-off Analysis Method n Evaluating software architecture Determines if the architecture meets the business drivers One of its

148 views • 11 slides
Adit Enterprise. Adit Enterprise. Adit Enterprise. Adit Enterprise. ADIT Enterprise is a

Adit Enterprise. Adit Enterprise. Adit Enterprise. Adit Enterprise. ADIT Enterprise is a

Adit Enterprise. Adit Enterprise. Adit Enterprise. Adit Enterprise. ADIT Enterprise is a wholesale distribution business providing complete range of Electronic Security Systems Kamlesh 093232 51184 Adit Enterprise Adit Enterprise Adit

619 views • 29 slides
Towards A Clean Slate Digital Sovereignty in the Post Snowden Era Alexander von Gernler

Towards A Clean Slate Digital Sovereignty in the Post Snowden Era Alexander von Gernler

Towards A Clean Slate Digital Sovereignty in the Post Snowden Era Alexander von Gernler <gernler@genua.de> Munich Internet Research Retreat Raitenhaslach, November 24/25, 2016 Personal Digital Sovereignty Disclaimer The views presented

258 views • 12 slides
Expanding Chafee Grant Access Tools for Implementing SB150 April 28, 2020 Information for

Expanding Chafee Grant Access Tools for Implementing SB150 April 28, 2020 Information for

Expanding Chafee Grant Access Tools for Implementing SB150 April 28, 2020 Information for Participants Call-in number is 1 (415) 655-0022 and access code is 142-865-267. Presentation materials and audio will be posted at jbaforyouth.org/

858 views • 40 slides
Electronic Trial Master File Standard Technical Committee Meeting Agenda Comment Review Period

Electronic Trial Master File Standard Technical Committee Meeting Agenda Comment Review Period

OASIS Electronic Trial Master File Standard Technical Committee Meeting Agenda Comment Review Period January 26, 2015 9:00 10:00 AM PDT Agenda Topic Presenter 9:00 - 9:05 Call to Order Zack 9:05 - 9:08 Roll Call (secretary: Cathy

357 views • 11 slides
Fighting SPAM: Whitelisting Revisited David Erickson Martin Casado Nick McKeown

Fighting SPAM: Whitelisting Revisited David Erickson Martin Casado Nick McKeown

Fighting SPAM: Whitelisting Revisited David Erickson Martin Casado Nick McKeown derickso@stanford.edu casado@cs.stanford.edu nickm@stanford.edu Member project of the Stanford Clean Slate Program http://cleanslate.stanford.edu

395 views • 27 slides
Rough Sleeping Estimates 2020 Verifiers Training Welcome! We will start just after 2pm Your

Rough Sleeping Estimates 2020 Verifiers Training Welcome! We will start just after 2pm Your

Rough Sleeping Estimates 2020 Verifiers Training Welcome! We will start just after 2pm Your microphones are muted and cameras off Please change your Chat panel to All panelists and attendees Lets end homelessness together

504 views • 34 slides
Cost-Effectiveness of PCI with Drug Eluting Stents vs. Bypass Surgery for Patients with Diabetes

Cost-Effectiveness of PCI with Drug Eluting Stents vs. Bypass Surgery for Patients with Diabetes

Cost-Effectiveness of PCI with Drug Eluting Stents vs. Bypass Surgery for Patients with Diabetes and Multivessel CAD: Results from the FREEDOM Trial Elizabeth A. Magnuson, Valentin Fuster, Michael E. Farkouh, Kaijun Wang, Katherine Vilain,

473 views • 20 slides
for a sign! But none will be given it except the sign of the prophet Jonah. 40 40 For as Jonah was

for a sign! But none will be given it except the sign of the prophet Jonah. 40 40 For as Jonah was

Then some of the Pharisees and teachers of the law said to him, Teacher, we want to see a sign from you. 39 39 He answered, A wicked and adulterous generation asks for a sign! But none will be given it except the sign of the prophet

841 views • 27 slides
BC Asset Management Webinar September 24, 2010 Gaetan Royer Leadership and Asset Management

BC Asset Management Webinar September 24, 2010 Gaetan Royer Leadership and Asset Management

BC Asset Management Webinar September 24, 2010 Gaetan Royer Leadership and Asset Management Infrastructure Roads Pipes Parks are are are crumbling rusting unsafe MMCD WORKSHOP 2010 Infrastructure Roads Pipes Parks If a tree falls

1.06k views • 64 slides

More recommend