security 101 overview of information assurance
play

Security 101: Overview of Information Assurance Dr. Barbara - PowerPoint PPT Presentation

Sep 03, 2023 •346 likes •1.07k views

Security 101: Overview of Information Assurance Dr. Barbara Endicott-Popovsky ICS Department UHM UW/UHM Center for IA and Cybersecurity Putin Praises DNC Hack But Denies Russia Was Behind It

  1. Security 101: Overview of Information Assurance Dr. Barbara Endicott-Popovsky ICS Department UHM UW/UHM Center for IA and Cybersecurity

  2. Putin Praises DNC Hack But Denies Russia Was Behind It http://www.nbcnews.com/card/putin-praises-dnc-hack-denies-russia-was-behind-it-n642061 Russian President Vladimir Putin is praising the hack that broke into the Democratic National Committee and leaked internal emails online -- but says Russia was not behind it. Cyber security experts have fingered two hacking groups working with the Russian government in the DNC hack, which the FBI is also investigating, and Democratic officials say the breach was part of the Moscow's attempt to influence the presidential election in favor of Donald Trump. The hack resulted in the ouster of several top DNC officials, including its former chair. Thursday, Putin said the hack was a public service because it exposed the DNC's apparent favoritism of Clinton during the Democratic presidential primary, but claimed, "I don't know anything about it." "Listen, does it even matter who hacked this data?'' Putin said. "There's no need to distract the public's attention from the essence of the problem by raising some minor issues connected with the search for who did it." "The important thing is the content that was given to the public," he added. Sep 2 2016, 10:36 am ET

  3. iClicker Question: • Based on what you have read and heard about this hack how certain are you that the Russians did it? a. Very sure: The Russians did it, no doubt! They’re evil! b. Sure: I accept the news media reports—they know what they’re talking about. c. Neither sure or unsure: I’ve just heard about it and have no opinion. d. Unsure: How do they know for sure—on what evidence? e. Very unsure: Attribution is very difficult to determine absolutely on Internet communications. For example, someone could hijack Russian servers.

  4. iClicker: A: Very Sure B: Sure C: Neither sure or unsure D: Unsure E: Very unsure

  5. Thought question Assuming that this is an attack on the US electoral process, would this be • an act of war? – For that matter, when is an intrusion a “hack” (a simple crime) and when is it an act of war? – How will we know? These are today’s stakes! What ever happened to the kids staying up all • night on Jolt hacking into the Pentagon?

  6. Cyber War http://www.foxnews.com/politics/2016/09/03/ putin-calls-dnc-hack-public-service-denies- russias-involvement.html

  7. Agenda • Context • Overview Threat Landscape • Threat Spectrum Evolution • Breach Trends • Strategies for Organizations and Industries • Do Controls Work? • Changing our Mental Models

  8. How did we get here? CONTEXT

  9. Information System Security Revolution 1960-1980 1985 1995 - Packet Switch Bridge File Server Gateway Other Networks INFOSEC Information Assurance Computer Security

  10. Agricultural Industrial Information Age Age Age Attribute Wealth Land Capital Knowledge Advancement Conquest Invention Paradigm Shifts Time Sun/Seasons Factory Time Zones Whistle Workplace Farm Capital Networks equipment Organization Family Corporation Collaborations Structure Tools Plow Machines Computers Problem-solving Self Delegation Integration Knowledge Generalized Specialized Interdisciplinary Learning Self-taught Classroom Online

  11. Smashing Industrial Age Infrastructure!

  13. The Sorcerer’s Apprentice http://www.youtube.com/watch?v=4ryFOztZrrc

  14. Certificate in IA and Cybersecurty ICS 426, 425 and 491

  15. Security Poll iClicker Question: Before discussing the threat landscape, how do you feel about your online security in general? A: Very Safe B: Safe C: Okay D: Not safe E: Vulnerable

  16. What’s coming at us? OVERVIEW OF THREAT LANDSCAPE

  19. Threats

  20. Critical Infrastructure: An Irresistible Tar get

  21. Why now is so urgent: THREAT SPECTRUM EVOLUTION Source: GBA

  22. Today’s Criminals Come in Many Forms…all of which can do great harm • Script kiddies • Hacktivists • Cyber Criminals • APTs / Nation States IMAGE SOURCE: http://upload.wikimedia.org/wikipedia/commons/4/48/Anonymus_logo.png Source: GBA

  23. Different Faces, Same Basic Process http://www.discoveringidentity.com/2013/03/11/mandiant-report-apt1-exposing-one-of-chinas-cyber-espionage-units/ Source: GBA

  24. Common Script Kiddie Attack Progression Script Kiddie enjoys Identifies Target Scans for hacking and wants to build Website(s) Vulnerabilities reputation Defaces Website or Steals Exploits Data from Database Vulnerabilities Publicly Posts Data Breach Information and/or boasts about what they did Source: GBA

  25. Script Kiddie Damage • Hacked 259 websites in 90 days • Stole and leaked information • Defaced corporate websites Screenshot of Defacement by 15 Year Old Source: GBA

  26. Nation State Actors: Advanced Persistent Threats • Highly Skilled • Nation State Sponsored • Example: RBN • They have more time, and more resources than you • If you are targeted, they WILL get into your system http://rbnexploit.blogspot.com/ Source: GBA

  27. Methodology / APT Attack Progression The details change, but the process is generally the same Information cited from: http://www.www8-hp.com/ca/en/images/T-image__sw__insider-threat__560x342--C-tcm223-1357982--CT-tcm223-1237012-32.png Source: GBA

  28. Workspace 1 (workbooks) • Discuss who put the script kiddy out of business and why. • If nation states and nation state/criminals are the most devastating adversaries, what are the implications to the average person/average company doing business online?

  29. Study the data! BREACH TRENDS

  30. Top 9 Patterns of Intrusion

  31. Malicious Intrusion Trends Source: Verizon DBR 2016

  32. Motivations Behind Attacks

  33. Malicious Trends and Motives Which countries got attacked the most and how (2016) http://www.hackmageddon.com/2016/02/16/january-2016-cyber-attacks-statistics /

  34. Malicious Trends and Motives http://www.hackmageddon.com/2016/02/16/january-2016-cyber-attacks-statistics/

  35. Security Poll iClicker: After learning about the threat landscape, now how do you feel about your online security? A: Very Safe B: Safe C: Okay D: Not safe E: Vulnerable

  36. Workspace 2 (workbooks) • Describe how your own online behavior will change as a result of understanding the threats that are out there. https://www.stopthinkconnect.org/

  37. How to manage in this context STRATEGIES FOR ORGANIZATIONS AND INDUSTRIES

  38. Industry Status • Industry lags government • Lack of awareness – Literacy – Risks • Profit margins • Standards of care • Legal liability concerns • Critical infrastructure 85% private

  39. Change in Perception Required Today Where we need to go

  40. Basic IA Principles Security Services IA Design Approach

  41. Security Goals • Confidentiality (secrecy) – Only authorized parties can access an asset • Integrity – Only authorized parties can modified an asset • Availability – Assets are accessible/modifiable by authorized parties at appropriate times – Authorized parties cannot be denied access to the asset • Audit – An attacker cannot hide its tracks – Forensic analysis is possible

  42. Test your knowledge iClicker: Which of the following security goals am I applying if I make my Web site accessible from 9:00 A.M. to 3:00 P.M.? A: Confidentiality B: Integrity C: Availability D: Audit

  43. Test your knowledge iClicker: Which of the following security goals would prevent people without appropriate access from modifying files? A: Confidentiality B: Integrity C: Availability D: Audit

  44. Test your knowledge iClicker: Which of the following security goals would require only an authorized person can gain access to information? A: Confidentiality B: Integrity C: Availability D: Audit

  45. Traditional Security Model: McCumber Cube Security Thru info states Services Controls McCumber, John. Application of the Comprehensive INFOSEC Model: Mapping the Canadian Criteria for Systems Certification, Unpublished Manuscript, from the Proceedings of the Fifth Annual Canadian Computer Security Conference, May 1993. Ottawa, Canada.

  46. ICISO Perspective Secure and Forensic Ready system 46

  47. Workspace #2 • Describe the three security services and how they work together • Describe how the McCumber Cube is used to manage cybersecurity in organizations

  48. What do we do with the pesky humans in the system? DO CONTROLS WORK?

  49. Trusting Controls Assumes: • Design implements your goals • Sum total of controls implement all goals • Implementation is correct • Installation/administration are correct

  50. Bottom line assumption: You Will Never Own a Perfectly Secure System!!! You Will Never Own a Perfectly Secure System!!! You Will Never Own a Perfectly Secure System!!!

  51. Requires Change in Strategy for Managing Networked Systems • Today’s network defense strategy • On defense • Incident response focus on patch and recover • Avoidance of legal pursuit • Proposed network defense strategy • On offense • Assume breach • Incident response focus on forensics 51

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Information Assurance Information Assurance for Defense Security for Defense Security Prof.

Information Assurance Information Assurance for Defense Security for Defense Security Prof.

Information Assurance Information Assurance for Defense Security for Defense Security Prof. Paul A. Strassmann George Mason University, March 27, 2007 1 Prof. Strassmann, GMU March 27, 2007 Lecture, REPRODUCED BY PERMISSION ONLY Elements of

662 views • 49 slides
information security and cybercrime; To grant awards, scholarships or sponsorships to people

information security and cybercrime; To grant awards, scholarships or sponsorships to people

RAISA Romanian Association for Information Security Assurance is a profes - sional, non-governmental, non-partisan political, nonprofit and public benefit association. PURPOSE The aim of Romanian Association for Information Security Assurance

84 views • 6 slides
Xen Security Modules (XSM) George Coker National Information Assurance Research Lab National

Xen Security Modules (XSM) George Coker National Information Assurance Research Lab National

Xen Security Modules (XSM) George Coker National Information Assurance Research Lab National Security Agency (NSA) gscoker@alpha.ncsc.mil National Information Assurance Research Lab 1 UNCLASSIFIED What is XSM? A generalized

342 views • 33 slides
The Bureau of Diplomatic Security Diplomatic Security Training Center(DSTC) Information Assurance

The Bureau of Diplomatic Security Diplomatic Security Training Center(DSTC) Information Assurance

U.S. DEPARTMENT OF STATE The Bureau of Diplomatic Security Diplomatic Security Training Center(DSTC) Information Assurance (IA) and Cybersecurity Training Program UNCLASSIFIED CyberSec_Training@state.gov Information Assurance Training

142 views • 11 slides
Output Spaces Darryl Buller, Aaron Kaufer Information Assurance Directorate National Security

Output Spaces Darryl Buller, Aaron Kaufer Information Assurance Directorate National Security

Estimating Min-Entropy For Large Output Spaces Darryl Buller, Aaron Kaufer Information Assurance Directorate National Security Agency Overview Background Our goal Using Bayesian Networks Optimizing with a Genetic Algorithm

1.15k views • 77 slides
Introduction to Assurance Chapter 19 Computer Security: Art and Science , 2 nd Edition Version

Introduction to Assurance Chapter 19 Computer Security: Art and Science , 2 nd Edition Version

Introduction to Assurance Chapter 19 Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 19-1 Overview Trust Problems from lack of assurance Types of assurance Life cycle and assurance Waterfall life cycle

825 views • 27 slides
Ethical Hacking Philip Robbins August 31, 2013 Information Security & Assurance Program

Ethical Hacking Philip Robbins August 31, 2013 Information Security & Assurance Program

ISA 330 Introduction to Proactive System Security Week #1 Ethical Hacking Philip Robbins August 31, 2013 Information Security & Assurance Program University of Hawai'i West Oahu 1 Ethical Hacking Topics Introductions Syllabus

1.17k views • 88 slides
ASSURANCE AND ACCOUNTABILITY ASSURANCE AND ACCOUNTABILITY GENERAL INFO / ANNOUNCEMENTS

ASSURANCE AND ACCOUNTABILITY ASSURANCE AND ACCOUNTABILITY GENERAL INFO / ANNOUNCEMENTS

ADVANCED COMPUTER SECURITY ASSURANCE AND ACCOUNTABILITY ASSURANCE AND ACCOUNTABILITY GENERAL INFO / ANNOUNCEMENTS Reminder : read and post response to Enforceable Security Policies by tomorrow afternoon. Please send me your talk

524 views • 41 slides
Census Data Quality Assurance 17 May 2010 Types of Quality Assurance (QA) Quality assurance of

Census Data Quality Assurance 17 May 2010 Types of Quality Assurance (QA) Quality assurance of

Census Data Quality Assurance 17 May 2010 Types of Quality Assurance (QA) Quality assurance of captured and coded data Quality assurance of downstream processes (including data security and integrity) Quality assurance of population counts,

129 views • 12 slides
Session 13 INFM 603 Bugs, process, assurance Software assurance: quality assurance for

Session 13 INFM 603 Bugs, process, assurance Software assurance: quality assurance for

Software Assurance Session 13 INFM 603 Bugs, process, assurance Software assurance: quality assurance for software Particularly assurance of security Bad (buggy, insecure software) comes not from discrete, unpredictable,

561 views • 18 slides
Information Security Officer (ISO) Appointment Overview Bob Auton VITA - Centralized Information

Information Security Officer (ISO) Appointment Overview Bob Auton VITA - Centralized Information

Information Security Officer (ISO) Appointment Overview Bob Auton VITA - Centralized Information Security Services Mark Martens Security Risk Management Analyst 1 Areas for Review Commonwealth ISO Certification IT Security

832 views • 40 slides
Outline OS trust and assurance CSci 5271 Introduction to Computer Security Announcements

Outline OS trust and assurance CSci 5271 Introduction to Computer Security Announcements

Outline OS trust and assurance CSci 5271 Introduction to Computer Security Announcements intermission Day 11: OS security: higher assurance Stephen McCamant Unix access control University of Minnesota, Computer Science & Engineering

401 views • 6 slides
What's New with SELinux Stephen D. Smalley sds@tycho.nsa.gov National Information Assurance

What's New with SELinux Stephen D. Smalley sds@tycho.nsa.gov National Information Assurance

What's New with SELinux Stephen D. Smalley sds@tycho.nsa.gov National Information Assurance Research Laboratory National Security Agency National Information Assurance Research Laboratory 1 Advances in SELinux Deploying new

440 views • 25 slides
Security 101 Definition of Information Security Information security is the protection of

Security 101 Definition of Information Security Information security is the protection of

Computing Services Information Security Office Security 101 Definition of Information Security Information security is the protection of information and systems from unauthorized access, disclosure, modification, destruction or disruption. The

469 views • 22 slides
Introductory Computer Security CS461/ECE422 Fall 2010 Susan Hinrichs Slide #1-1 Outline

Introductory Computer Security CS461/ECE422 Fall 2010 Susan Hinrichs Slide #1-1 Outline

Introductory Computer Security CS461/ECE422 Fall 2010 Susan Hinrichs Slide #1-1 Outline Administrative Issues Class Overview Information Assurance Overview Components of computer security Threats, Vulnerabilities,

549 views • 27 slides
Introductory Computer Security CS461/ECE422 Fall 2009 Susan Hinrichs Slide #1-1 Outline

Introductory Computer Security CS461/ECE422 Fall 2009 Susan Hinrichs Slide #1-1 Outline

Introductory Computer Security CS461/ECE422 Fall 2009 Susan Hinrichs Slide #1-1 Outline Administrative Issues Class Overview Information Assurance Overview Components of computer security Threats, Vulnerabilities,

554 views • 30 slides
Y P O Berenson-Allen Center for Noninvasive Brain Stimulation Department of Neurology C Beth

Y P O Berenson-Allen Center for Noninvasive Brain Stimulation Department of Neurology C Beth

Y P O Berenson-Allen Center for Noninvasive Brain Stimulation Department of Neurology C Beth Israel Deaconess Medical Center Harvard Medical School T O N Phosphenes O D Franziska Plessow, Ph.D. E S A E Intensive Course in

441 views • 16 slides
The Trendlines Group AGM presentation Steve Rhodes Todd Dollinger Haim Brosh Chairman and CEO

The Trendlines Group AGM presentation Steve Rhodes Todd Dollinger Haim Brosh Chairman and CEO

The Trendlines Group AGM presentation Steve Rhodes Todd Dollinger Haim Brosh Chairman and CEO Chairman and CEO Chief Financial Officer 17 June 2020 SGX:42T OTCQX: TRNLY Legal disclaimer Important notice This presentation is for

291 views • 17 slides
It is all in the gut. programmes, always reading and learning about

It is all in the gut. programmes, always reading and learning about

3/15/17 Nutrition and Wellbeing Seminar My story Had an invasive back surgery at age 13 due to scoliosis Suffered from Migraines since age 15 Poor

554 views • 5 slides
Mosaicism Mosaicism Two different genotypes that developed from a single fertilized egg

Mosaicism Mosaicism Two different genotypes that developed from a single fertilized egg

Mosaicism Mosaicism Two different genotypes that developed from a single fertilized egg Why? Event during cell division Chromosomal mutation during development Gene mutation during development (somatic) X-inactivation

556 views • 26 slides
SOME SURPRISING FACTS ABOUT (the problem of) SURPRISING FACTS D. Mayo February 26, 2011 1

SOME SURPRISING FACTS ABOUT (the problem of) SURPRISING FACTS D. Mayo February 26, 2011 1

SOME SURPRISING FACTS ABOUT (the problem of) SURPRISING FACTS D. Mayo February 26, 2011 1 Abstract: A common intuition about evidence is that if data x have been used to construct a hypothesis H ( x ), then x should not be used again in support

1.12k views • 43 slides
National Institutes of Health National Institutes of Health Clinical Research Policy Analysis

National Institutes of Health National Institutes of Health Clinical Research Policy Analysis

National Institutes of Health National Institutes of Health Clinical Research Policy Analysis Clinical Research Policy Analysis and Coordination Program and Coordination Program Fostering Simplicity, Clarity, and Efficiency in Clinical

526 views • 35 slides
BIOE 301 Lecture 19 http://www.npr.org/templates/story/story.php?storyId= 1579643 Zantrex-3

BIOE 301 Lecture 19 http://www.npr.org/templates/story/story.php?storyId= 1579643 Zantrex-3

BIOE 301 Lecture 19 http://www.npr.org/templates/story/story.php?storyId= 1579643 Zantrex-3 One of the most popular weight loss supplements currently sold in the US One months supply: $50 http://www.intomyhealth.com/die Millions

292 views • 6 slides
Science & research Simon Collins HIV i-Base i) why we need evidence and not just expert

Science & research Simon Collins HIV i-Base i) why we need evidence and not just expert

Science & research Simon Collins HIV i-Base i) why we need evidence and not just expert opinion ii) trial design and research S Collins, HIV i-Base UK CAB ACTIVIST TRAINING OCTOBER 2013 Activist training The CAB is a treatment

611 views • 19 slides

More recommend