1 / 9

EVLA Monitor & Control Software PDR

EVLA Monitor & Control Software PDR. Monitor & Control Network Security. Requirements. Accessibility Operators Engineers Scientists Monitor vs. Control Read vs. write Security Acceptable risk. Access. From M&C systems to antennas From VLA to antennas From AOC to antennas

verdad
Download Presentation

EVLA Monitor & Control Software PDR

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. EVLA Monitor & Control Software PDR Monitor & Control Network Security EVLA M&C Software PDR May 14-15 2002

  2. Requirements • Accessibility • Operators • Engineers • Scientists • Monitor vs. Control • Read vs. write • Security • Acceptable risk EVLA M&C Software PDR May 14-15 2002

  3. Access • From M&C systems to antennas • From VLA to antennas • From AOC to antennas • From NRAO to antennas • From non-NRAO to antennas EVLA M&C Software PDR May 14-15 2002

  4. Vulnerabilities • M&C systems • M&C/Antenna Network • MIB • Other ? EVLA M&C Software PDR May 14-15 2002

  5. M&C systems (Linux, Solaris, Windows) • Virus • Root access • Denial of Service • M&C software itself EVLA M&C Software PDR May 14-15 2002

  6. M&C and antenna network • Network Devices • CISCO IOS NTP vulnerability • Announced May 8th • TCP/IP stack • Network flooding EVLA M&C Software PDR May 14-15 2002

  7. MIB vulnerabilities • TCP/IP stack • Telnet (authentication) • HTTP server • NTP • Denial of service • Port flooding • Human Error EVLA M&C Software PDR May 14-15 2002

  8. Direct Access • Firewall • Limit access based on • Source IP • Sender Digital Certificate • MIB awareness • Throttle flooding • Encryption precludes content filtering • Can’t guarantee packet integrity EVLA M&C Software PDR May 14-15 2002

  9. Indirect Access • Proxy service • Request proxy • Web Proxy • Virtual antenna • Same client software • Remote display • X11 or Citrix • slow EVLA M&C Software PDR May 14-15 2002

More Related