Peering danych dotyczących bezpieczeństwa w czasie rzeczywistym.pdf

(5531 KB) Pobierz

Passive DNS

A Tool that is Making a Difference

in Tracking Down Criminal

Activity On The Internet

Merike Kaeo

merike@isc.org

840746991.051.png

840746991.062.png

840746991.073.png

Resiliency and Security Forum

•   Promoting real-time security related

information exchange.

•   If big attacks happened, allow the people

who needed to work with each other to

exchange information and work

collectively to mitigate the attack.

•   For information dissemination, allow

trusted parties to get access to

remediation information in real time.

840746991.076.png

840746991.001.png

840746991.002.png

Security Information Exchange

Building on the Experience of Peering

•   ISPs, SPs, and Financial Institutions have been “peering” critical

on confidential data for decades.

Internet traffic (PAIX, Equinix, LINX)

  

Equity/futures (NY/London SE, NASDAQ)

  

Telco/Meet Me Room (Telehouse, CRG West)

  

SIE is building on the SP’s experience – by people who have run

SPs and other large networks – using that technological and

business experience to short cut perceived obstacles to security

data peering which will uncover the tangible obstacles .

  

COMMUNITY NETWORKING

VOICE

SP #1

Internet

SP #2

VIDEO

GAMING

PRIVATE NETWORKS

EMERGENCY SERVICES

840746991.003.png

840746991.004.png

840746991.005.png

840746991.006.png

840746991.007.png

840746991.008.png

840746991.009.png

840746991.010.png

840746991.011.png

840746991.012.png

840746991.013.png

840746991.014.png

840746991.015.png

840746991.016.png

840746991.017.png

840746991.018.png

840746991.019.png

840746991.020.png

840746991.021.png

840746991.022.png

840746991.023.png

840746991.024.png

840746991.025.png

840746991.026.png

840746991.027.png

840746991.028.png

840746991.029.png

840746991.030.png

The Security Information Exchange (SIE)

is ...

Efficient bi-lateral peering &

multi-lateral sharing within a

common legal/privacy framework

.. using a scalable

architecture …

.. and open source tools …

NMSG

840746991.031.png

840746991.032.png

840746991.033.png

840746991.034.png

840746991.035.png

840746991.036.png

SIE “Channels”

•  

SIE used “channels” as the term

for peers who are connected to a

“port” to subscribe to a data

sensor

sensor

sensor

sensor

sensor

sensor

flow.

RELAY

RELAY

•  

There are several types of

channels – which are all variants

of “private channels”:

  

Community Channels – multilateral

peering, open to any who connect to a

port (ISC channels will be converted to

Multilateral Community Channels).

SIE or I/SDRN Peers

Private Channels – bi-lateral, multi-

lateral, and commercial exchange

  

between the SIE constituents.

Incident Channels – created to provide

data during an incident – carries specific

distribution rules.

  

840746991.037.png

840746991.038.png

840746991.039.png

840746991.040.png

840746991.041.png

840746991.042.png

840746991.043.png

840746991.044.png

840746991.045.png

840746991.046.png

840746991.047.png

840746991.048.png

840746991.049.png

840746991.050.png

840746991.052.png

840746991.053.png

840746991.054.png

840746991.055.png

840746991.056.png

840746991.057.png

840746991.058.png

840746991.059.png

840746991.060.png

840746991.061.png

840746991.063.png

840746991.064.png

840746991.065.png

840746991.066.png

840746991.067.png

840746991.068.png

840746991.069.png

840746991.070.png

840746991.071.png

840746991.072.png

840746991.074.png

840746991.075.png

Plik z chomika:

Inne pliki z tego folderu:

Chmura- realna szansa na zmianę.pdf (1475 KB)
Data Center Grupy Allegro – wyboista droga L2 do autostrady L3.pdf (964 KB)
10GPON – przyszłość i rzeczywistość.pdf (6952 KB)
100 GbE i więcej.pdf (1108 KB)
100G w sieciach szkieletowych i miejskich.pdf (1511 KB)

Inne foldery tego chomika:

Zgłoś jeśli naruszono regulamin