Eleonora figueroa august 9 2005
Download
1 / 22

Fermilab Computer Security Network flows - PowerPoint PPT Presentation


  • 107 Views
  • Uploaded on

Eleonora Figueroa August 9, 2005. Fermi National Acceleration Laboratory. The University of Texas at San Antonio. Fermilab Computer Security Network flows. Computer Security Team. Joe Klemencic. Mark Leininger. Computing Division Laboratory Computer Security Program Expertise

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about ' Fermilab Computer Security Network flows' - decima


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
Eleonora figueroa august 9 2005

Eleonora Figueroa

August 9, 2005

Fermi National Acceleration Laboratory

The University of Texas at San Antonio

Fermilab Computer SecurityNetwork flows


Computer security team
Computer Security Team

Joe Klemencic

Mark Leininger

  • Computing Division

  • Laboratory Computer Security Program

  • Expertise

  • Information

  • Resources

Randy Reitz

Frank Nagy


My projects
My Projects

  • Node Registration Page and show_sys() method

  • Graph block/unblock request time

  • Sending digitally signed emails

  • Write network flow filters



Creating the webpage
Creating the webpage

  • Show_sys()

    • Python method

    • MySQL Database

    • Returns array of information

  • Supporting web-page

    • Zope/DTML


G r a p h b l o c k u n b l o c k r e q u e s t t i m e
G r a p h b l o c k / u n b l o c k r e q u e s t t i m e


  • Vulnerabilities looked for

    • Weak passwords

    • Missing patches

    • Unprotected information

  • Graph data with python script

  • Administrative purposes efficiency


Digitally signed emails
Digitally signed emails

Python script  Unix shell

Why?

Validity Authentication

Added security

Future:

Automated signing of emails


Netflow pl
Netflow.pl

Background:

Network routers flows

Problems:

Software CISCO Format  Vendor specific

Want to change to Standard Format

Two-fold process

Long learning curve


Netflow pl1
Netflow.pl

Features:

Automatic time/day

Specific error messages: missing flags, wrong format

Runtime manual

Change the save location of filters for future reference

Negate parameters


Contrast
Contrast

Before

After

- CISCO format

- Manually make filters

- Two-fold process

- Long learning curve

- Open format

- Enter parameters

- Program gets information looked for

- Easy to use


Netflow pl results
Netflow.pl Results

Implemented by members of the Computer Security Team

In the process of being implemented by Fermilab Incidence response Team and Fermilab Networking Team

Released back to open source community


Conclusions
Conclusions

Important tools:

Writing filters to analyse information

Graphing wanted data

Wrapping disjointed tools

Basics of growing security trend

Satisfaction of having my programs implemented and offered to the community:

Digitally signing emails documentation

Netflow.pl Repository to open source of netflow tool


Acknowledgment
Acknowledgment

Computer Security Team Joe Klemencic, Mark Leininger, Randy Reitz, and Frank Nagy

Igor Mandrichenko

Mentors: Cosmore Sylvester, Jamieson Olsen

SIST administrative staff: Dianne Engram, Elliot McCrory, Dr. Davenport



ad