system of systems security for crisis management
play

System-of-Systems Security for Crisis Management Kashif Kifayat, - PowerPoint PPT Presentation

Nov 26, 2022 •186 likes •343 views

System-of-Systems Security for Crisis Management Kashif Kifayat, Abdullahi Arabo, Oliver Drew, Adrian Waller, Rachel Craddock, Glyn Jones David Llewellyn-Jones, Madjid Merabti, Qi Shi Liverpool John Moores University Thales Research and

  1. System-of-Systems Security for Crisis Management Kashif Kifayat, Abdullahi Arabo, Oliver Drew, Adrian Waller, Rachel Craddock, Glyn Jones David Llewellyn-Jones, Madjid Merabti, Qi Shi Liverpool John Moores University Thales Research and Technology (UK) Ltd.

  2. Outline Outline Background Challenges Our Approach Requirements Implementation Scenario Future Work Network image by gerard79: http://www.sxc.hu/photo/1008231 2

  3. Background Background A crisis or disaster is a natural or man-made disruptive event 2005 Hurricane Katrina: over 1604 people died with estimated financial loss of $25-$100 billion 2005 Buncefield Oil Depot Explosion: 0 deaths and $1billion ICT requirements in crisis management Dynamic ad-hoc communication network between different agencies using System-of-Systems approach Each agency will have its own networks and systems Secure information sharing without delay Image courtesy of Chilton Air Support Unit and Hampshire Constabulary 3

  4. Challenges Challenges System-of-Systems Security and Assurance Issues Interaction between component systems may affect the security and assurance of the overall system Assurance in components is important and can be built on, but is not enough in itself Crisis situations are highly dynamic and unpredictable, and it is not possible to engineer components to be suitable for all situations Assurance takes time to establish High security may have an adverse effect on information flow Need balance between security and operational effectiveness Image http://www.istockphoto.com 4

  5. Our approach Our approach Secure System Composition Modelling and Evaluation Analyse different pre-deployment System-of-System scenarios Highlight the post deployment security issues in real operations Secure System Composition Dynamic Analysis Tools and techniques for dynamic analysis (component analysis and composition analysis) 5

  6. Our approach Our approach Provide users with composition assurance layer tools to help them compose systems rapidly and intelligently Want to avoid putting together whatever is available and “hoping for the best” Build on known and assured properties of individual components Establish known and assured properties of potential composed systems Enable different combinations of components to be investigated, and selection of the most appropriate Although our focus is System-of-Systems, the tools and techniques proposed here should be applicable more widely 6

  7. Requirements Requirements User-friendly Interface Clear Message and Indication Identify and prompt users of possible security problems Highlight risk areas dynamically Suggest potential solutions to mitigate risks Dynamic real time analysis Automated analysis Applicable in dynamic, mobile networks Image by topfer: http://www.sxc.hu/photo/871496 7

  8. MATTS (the Mobile Agent Topology Test System) MATTS (the Mobile Agent Topology Test System) Consists of two applications Composition client Represents any organisation (police, fire service, paramedical, etc.) which could participate in crisis management Included with communication devices (PDAs, smart phones, laptops, etc.) Each client has a set of security properties and policies MATTS server Receives client information (connectivity, security policies, etc.) in an XML file Runs composition analyses to identify vulnerabilities and threats according to scripts 8

  9. MATTS (the Mobile Agent Topology Test System) MATTS (the Mobile Agent Topology Test System) Gives freedom to model many possible scenarios Different numbers of nodes Different security properties Different vulnerability tests 9

  10. Example – – Boundary Check Scenario (Initial Network) Boundary Check Scenario (Initial Network) Example 10

  11. Example – – Proposed Connection Proposed Connection Example External node Composed system Boundary node Internal nodes 11

  12. Example – – Policy Policy Example “ A component will only be allowed to have external connections when it has either Firewall or IDS running, and its Encryption Strength and Staff Skills satisfy the minimum requirements imposed in accordance with its Sensitivity Level.” <process id =" check "> <process id =" check "> <process action =" link = @ilnum[@n] "/> <process action =" link = @ilnum[@n] "/> <process id =" link " init =" 0 "> <process id =" link " init =" 0 "> <process action =" link = (link-1) "/> <process action =" link = (link-1) "/> <process init =" 0 " cond =" (!@a[@iln[@n][link]][External]) && (!@a[@iln[@n][link]][Firewall]) <process init =" 0 " cond =" (!@a[@iln[@n][link]][External]) && (!@a[@iln[@n][link]][Firewall]) && (!@a[@iln[@n][link]][IDS]) " action =" (safe=0) "/> && (!@a[@iln[@n][link]][IDS]) " action =" (safe=0) "/> <process id =" ex " init =" 0 " action =" ex=@a[@iln[@n][link]][External] "/> <process id =" ex " init =" 0 " action =" ex=@a[@iln[@n][link]][External] "/> <process id =" sl " init =" 0 " action =" sl=@a[@iln[@n][link]][SensitivityLevel] "/> <process id =" sl " init =" 0 " action =" sl=@a[@iln[@n][link]][SensitivityLevel] "/> <process id =" es " init =" 0 " action =" es=@a[@iln[@n][link]][EncryptionStrength] "/> <process id =" es " init =" 0 " action =" es=@a[@iln[@n][link]][EncryptionStrength] "/> <process id =" ss " init =" 0 " action =" ss=@a[@iln[@n][link]][StaffSkills] "/> <process id =" ss " init =" 0 " action =" ss=@a[@iln[@n][link]][StaffSkills] "/> <process init =" 0 " cond =" (!ex) && (sl == 0) && ((es < 11) || (ss < 3)) " action =" (safe=0) "/> <process init =" 0 " cond =" (!ex) && (sl == 0) && ((es < 11) || (ss < 3)) " action =" (safe=0) "/> <process init =" 0 " cond =" (!ex) && (sl == 1) && ((es < 11) || (ss < 3)) " action =" (safe=0) "/> <process init =" 0 " cond =" (!ex) && (sl == 1) && ((es < 11) || (ss < 3)) " action =" (safe=0) "/> ... ... <process cond =" link > 0 " config =" link "/> <process cond =" link > 0 " config =" link "/> </process> </process> </process> </process> 12

  13. Example - - Analysis Result Analysis Result Example Policy failed 13

  14. Implemented composition analyses Implemented composition analyses Boundary Check Ensuring the System-of Systems has a secure boundary Data Flow Security Ensuring data cannot flow to locations with insufficient security Buffer Overrun Detecting where buffer overrun vulnerabilities can be exploited Cascade Vulnerability Detecting if a chain of systems can be compromised in order to access data 14

  15. Conclusions and Future Work Conclusions and Future Work Current implementation Extensible, automated means of detecting Systems-of- Systems security issues Highlights potential problems dynamically as topology changes Reasons using device properties and topological structure Combines real devices and modelled nodes Future work More automated analysis to investigate different scenarios and policies Policy reconciliation Correction to automatically address detected problems Test in larger, real-world scenarios Image by flaivoloka: http://www.sxc.hu/photo/994582 15

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Security Crisis Management Emmanuel FUCHS Slides available soon at www.Elfuchs.Fr Crisis

Security Crisis Management Emmanuel FUCHS Slides available soon at www.Elfuchs.Fr Crisis

Security Crisis Management Emmanuel FUCHS Slides available soon at www.Elfuchs.Fr Crisis Management Crisis Definition Crisis Management Overview Crisis Management Process Risk Analysis Risk Analysis Case (quantitative )

1.21k views • 102 slides
Management and financing Estonian health system during the financial crisis Hanno Pevkur

Management and financing Estonian health system during the financial crisis Hanno Pevkur

Management and financing Estonian health system during the financial crisis Hanno Pevkur Minister of Social Affairs of Estonia Tallinn Charter: Health Systems for Health and Wealth Member States of WHO committed themselves to: Promote shared

371 views • 16 slides
SEGUR + CLAIRE Traffic Management system Security Solutions &amp; Services References

SEGUR + CLAIRE Traffic Management system Security Solutions &amp; Services References

SEGUR + CLAIRE Traffic Management system Security Solutions &amp; Services References Provider and Installer of systems since 1971 (over 50 reference systems) Large systems: Paris (2000 traffic controllers), SITER Hauts de

921 views • 17 slides
Distributed Systems 1 Roadmap CPU management Memory management Disk management

Distributed Systems 1 Roadmap CPU management Memory management Disk management

Distributed Systems 1 Roadmap CPU management Memory management Disk management Distributed System Protection &amp; Security Virtual machine 2 Today Distributed systems overview Basic network concepts TCP/IP

316 views • 16 slides
Jonathan and Erik Bernstein Bernstein Crisis Management, Inc Crisis Management Best Practices

Jonathan and Erik Bernstein Bernstein Crisis Management, Inc Crisis Management Best Practices

BEST PRACTICES IN CRISIS MANAGEMENT Jonathan and Erik Bernstein Bernstein Crisis Management, Inc Crisis Management Best Practices Crisis Prevention Organizations must plan for crises or they are, de facto, planning to have a crisis.

417 views • 18 slides
CRISIS MANAGEMENT 2 3 1 3/6/2018 4 An Airline in Crisis AA is shattered by the terrorist

CRISIS MANAGEMENT 2 3 1 3/6/2018 4 An Airline in Crisis AA is shattered by the terrorist

3/6/2018 Twelve Years of Turbulence: The Role of Lawyers During Times of Crisis Gary Kennedy Former Senior Vice President and General Counsel American Airlines CRISIS MANAGEMENT 2 3 1 3/6/2018 4 An Airline in Crisis AA is shattered

228 views • 10 slides
Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1

Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1

Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1 Spring 2015 Outline Basic concepts in computer security Design principles for security Important security tools for operating systems

844 views • 56 slides
Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1

Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1

Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1 Fall 2015 Outline Basic concepts in computer security Design principles for security Important security tools for operating systems

1.15k views • 64 slides
Distributed Systems How does the OS ensure security? 13C. Security for Distributed Systems

Distributed Systems How does the OS ensure security? 13C. Security for Distributed Systems

5/27/2017 Distributed Systems How does the OS ensure security? 13C. Security for Distributed Systems all key resources are kept inside of the OS protected by hardware (mode, memory management) 13I. Secure Sessions processes cannot

253 views • 9 slides
Distributed Systems How does the OS ensure security? 13C. Distributed Systems: Security all

Distributed Systems How does the OS ensure security? 13C. Distributed Systems: Security all

5/20/2018 Distributed Systems How does the OS ensure security? 13C. Distributed Systems: Security all key resources are kept inside of the OS protected by hardware (mode, memory management) 13I. Secure sessions processes cannot

129 views • 9 slides
Security in an Operating System Operating systems need to protect against two types of security

Security in an Operating System Operating systems need to protect against two types of security

H Security Security in an Operating System Operating systems need to protect against two types of security violations: Accidental security violations, e.g.: a program accidentally overwrites a file; a user issues rm -rf *,

6.18k views • 28 slides
Crisis Management Rachel Anderson Madeline Kilburn Jieun Lee Alexa Lewis Erica Nash-Wood

Crisis Management Rachel Anderson Madeline Kilburn Jieun Lee Alexa Lewis Erica Nash-Wood

Crisis Management Rachel Anderson Madeline Kilburn Jieun Lee Alexa Lewis Erica Nash-Wood WHAT IS A CRISIS ? Personnel Crisis Systemic Crisis Contextual Crisis Why companies need crisis management plans 1. To plan strategic procedures

417 views • 24 slides
CIP 101 Training CIP-007-3a Cyber Security System Security Management Overview September

CIP 101 Training CIP-007-3a Cyber Security System Security Management Overview September

Eric Weston Wally Magda, CISSP, PSP, CISA Compliance Auditor, Cyber Compliance Auditor, Cyber Security Security CIP 101 Training CIP-007-3a Cyber Security System Security Management Overview September 24-25, 2013 Salt Lake City, UT No

2.02k views • 198 slides
Protection and Security Threat is potential security violation Attack is attempt to breach

Protection and Security Threat is potential security violation Attack is attempt to breach

CSC 4103 - Operating Systems The Security Problem Spring 2007 Security must consider external environment of the system, and protect the system resources Lecture - XX Intruders (crackers) attempt to breach security Protection and

195 views • 4 slides
OSSAMS Open Source Security Assessment Management System

OSSAMS Open Source Security Assessment Management System

OSSAMS Open Source Security Assessment Management System System Overview Purpose To provide a framework for security assessors to correlate and

438 views • 12 slides
SYSTEM OF SYTEMS SECURITY (SOSSEC) OVERVIEW 1 VISION A fully capable System of Systems for

SYSTEM OF SYTEMS SECURITY (SOSSEC) OVERVIEW 1 VISION A fully capable System of Systems for

SYSTEM OF SYTEMS SECURITY (SOSSEC) OVERVIEW 1 VISION A fully capable System of Systems for Homeland Security/Homeland Defense that enables decisive Action to prevent, mitigate, respond and recover from all catastrophic incidents regardless

528 views • 27 slides
Designing Mobile Money Services Lessons From M-Pesa Authors: Ignacio Mas and Olga Morawczynski

Designing Mobile Money Services Lessons From M-Pesa Authors: Ignacio Mas and Olga Morawczynski

Designing Mobile Money Services Lessons From M-Pesa Authors: Ignacio Mas and Olga Morawczynski Presenters: Meredith Lampe, Sarah Yu, Emily Leland Summary M-Pesa is a mobile money service largely focused on helping people give remittances in

275 views • 8 slides
Mobile IP FEUP Manuel P. Ricardo Faculdade de Engenharia da Universidade do Porto Mobile IP 2

Mobile IP FEUP Manuel P. Ricardo Faculdade de Engenharia da Universidade do Porto Mobile IP 2

Mobile IP 1 Mobile IP FEUP Manuel P. Ricardo Faculdade de Engenharia da Universidade do Porto Mobile IP 2 Mobile IP, v4 Mobile IP 3 Motivation Forwarding of IP datagrams Based on IP destination address IP network address

1.03k views • 26 slides
AI Trends to Keep an Eye on The information contained in this document is property of Talkdesk and

AI Trends to Keep an Eye on The information contained in this document is property of Talkdesk and

AI Trends to Keep an Eye on The information contained in this document is property of Talkdesk and can only be used by the intended recipients. The reproduction or communication of information in this document without Talkdesk approval is

297 views • 19 slides
BlueScouts: A Scatternet Formation BlueScouts: A Scatternet Formation Protocol Based on Mobile

BlueScouts: A Scatternet Formation BlueScouts: A Scatternet Formation Protocol Based on Mobile

BlueScouts: A Scatternet Formation BlueScouts: A Scatternet Formation Protocol Based on Mobile Agents Protocol Based on Mobile Agents Sergio Gonzlez-Valenzuela 1 Son T. Vuong 2 Victor C. M. Leung 1 1 Department of Electrical and Computer

535 views • 18 slides
Reasoning about Resource-bounded Agents Natasha Alechina joint work with Brian Logan, Hoang Nga

Reasoning about Resource-bounded Agents Natasha Alechina joint work with Brian Logan, Hoang Nga

Reasoning about Resource-bounded Agents Natasha Alechina joint work with Brian Logan, Hoang Nga Nguyen, Franco Raimondi, Nils Bulling Agent Verification Workshop Liverpool, 11 September 2015 Natasha Alechina Reasoning about Resource-bounded

310 views • 28 slides
Lecture 12: Network layer mobility Lecture 12: Network layer mobility Mobile IP, cellular

Lecture 12: Network layer mobility Lecture 12: Network layer mobility Mobile IP, cellular

Lecture 12: Network layer mobility Lecture 12: Network layer mobility Mobile IP, cellular handsoffs. Mobile IP, cellular handsoffs. Mythili Vutukuru CS 653 Spring 2014 Feb 24, Monday Network layer: recap The network or IP layer

388 views • 11 slides
CS344M Autonomous Multiagent Systems Todd Hester Department or Computer Science The University

CS344M Autonomous Multiagent Systems Todd Hester Department or Computer Science The University

CS344M Autonomous Multiagent Systems Todd Hester Department or Computer Science The University of Texas at Austin Good Afternoon, Colleagues Todd Hester Good Afternoon, Colleagues Are there any questions? Todd Hester Logistics Office

611 views • 31 slides
The Internet Structure routers 1 The Internet Structure The AS graph The Internet Structure The

The Internet Structure routers 1 The Internet Structure The AS graph The Internet Structure The

DIMES DIMES Distributed Internet MEasurement and Simulation Yuval Shavitt shavitt@eng.tau.ac.il http://www.netdimes.org The Internet Structure routers 1 The Internet Structure The AS graph The Internet Structure The AS graph The PoP level

382 views • 21 slides

More recommend