SlideShare a Scribd company logo

13.Anton-Position-Security-Considerations-23June2015[1]

A
Anton Kaska

The document discusses security considerations and concerns for standardization of software defined networking. It notes computing trends driving network changes and constraints faced. Industry is said to be taking the same approach and architecture but security drivers may not be quite the same. The document discusses using a defense in depth model with baseline security models, integrity checks, and physical security. It also discusses accomplishing security without failing standards from various organizations and using a flexible security model while remembering physical security. It summarizes that a flexible approach is needed given advancing technology and existing best practices should be leveraged, but a more complex risk mitigation matrix may be required long term which will be difficult for industries to address.

1 of 6
Download to read offline
1
2
3
4
5
6
IEEE SDN Initiative Standardization Committee Meeting Security Considerations & Concerns Anton Kaska BTNE, LLC June 23, 2015 Piscataway, NJ 1
What are we facing? ONF Model ONF SAYS: Computing Trends are driving network change… 1. Changing Traffic Patterns 2. Consumerization of IT 3. Rise of Cloud Services 4. Big Data=More Bandwidth Constraints listed include: • Complexity leads to stasis • Inability to scale • Vendor Dependence WHAT IS INDUSTRY SAYING? 1. The same approach 2. The same architecture 3. The same security drivers …not quite
Not a new challenge we are facing 3 Defense in Depth with specifics for Software Defined Networking  Baseline Security Models  Integrity Checks  Brewer-Nash Model?  Physical Security
How do we accomplish and not fail (PCI, ETSI, IEEE, etc? 4 BSI-Standard 100-2:IT- Grundschutz Vorgehensweise 3 GPP TS 33.210TS Network Domain Security TS 33.310 Authentication Framework TS 33.401 Security Architecture
A Flexible Model 5 Remember Physical Security
Summary • Multiple attempts at security Standards but focused on verticals, size, business models, point technologies, etc. • Using security as it has been practically applied, as a historical illustration • we will not meet the challenges sufficiently • there are many examples to glean knowledge from. • A flexible approach is required. • Given the speed with which technology advances, leveraging existing best practices and solutions that have proven themselves (Defense in Depth Theory, Chinese Walls, etc.) will provide acceptable and practical levels of mitigation that are implementable with tolerable financial and political cost. • A more complex matrixes approach leveraging industry specific and/or business requirement based risk mitigation is likely a requirement when viewed long term • This is in my opinion the harder nut to crack for the industries as a whole (and organizations such as IEEE) 6

More Related Content

PPTX
Securing the ‘Wild Wild West’: USM for Universities
AlienVault
 
PPTX
Computer security aspects in
Vishnu Suresh
 
PPTX
Network Security Terminologies
university of education,Lahore
 
PDF
Cyber Security vs.pdf
Ming Man Chan
 
PPTX
Cloud Security using NIST guidelines
Srishti Ahuja
 
PPTX
Jb ia
Deepal Samaraweera
 
PPTX
Ics & computer security for nuclear facilities
omriyad
 
PPTX
PhD-Guidance-in-Cyber-Security
Phdtopiccom
 
Securing the ‘Wild Wild West’: USM for Universities
AlienVault
 
Computer security aspects in
Vishnu Suresh
 
Network Security Terminologies
university of education,Lahore
 
Cyber Security vs.pdf
Ming Man Chan
 
Cloud Security using NIST guidelines
Srishti Ahuja
 
Jb ia
Deepal Samaraweera
 
Ics & computer security for nuclear facilities
omriyad
 
PhD-Guidance-in-Cyber-Security
Phdtopiccom
 

What's hot (19)

PPTX
Security Architecture and Design - CISSP
Srishti Ahuja
 
PPTX
OSI Security Architecture
university of education,Lahore
 
PPT
Epic Sales Presentation
dpsmith1968
 
PPTX
Lecture 07 networking
HNDE Labuduwa Galle
 
PPT
Steganography
university of education,Lahore
 
PDF
Cloud Computing Security V1.2
Dr. Mehmet Yildiz
 
PDF
IoT security-arrow-roadshow #iotconfua
Andy Shutka
 
PDF
Infosec resume-duckworth
Tim Duckworth
 
PDF
Darryl T. Smith Resume (1)
Darryl Smith, CISSP
 
PDF
NIST Zero Trust Explained
rtp2009
 
PDF
Network access control (nac)
cyberlocke
 
PPT
What is NAC
Israel Marcus
 
PPTX
Zero Trust
Boaz Shunami
 
DOCX
Matrix Table
HerrycaRonaldo
 
PPTX
Firewalls
Shatha Al-mazrou
 
PPTX
JDMDE Specialisation KaHo Sint-Lieven
KaHo Sint-Lieven
 
PDF
Intel Security Endpoint Protection
Trustmarque
 
PPTX
Network Security Projects
Phdtopiccom
 
PPTX
Advanced Firewalls Progress Report
David Strom Inc.
 
Security Architecture and Design - CISSP
Srishti Ahuja
 
OSI Security Architecture
university of education,Lahore
 
Epic Sales Presentation
dpsmith1968
 
Lecture 07 networking
HNDE Labuduwa Galle
 
Steganography
university of education,Lahore
 
Cloud Computing Security V1.2
Dr. Mehmet Yildiz
 
IoT security-arrow-roadshow #iotconfua
Andy Shutka
 
Infosec resume-duckworth
Tim Duckworth
 
Darryl T. Smith Resume (1)
Darryl Smith, CISSP
 
NIST Zero Trust Explained
rtp2009
 
Network access control (nac)
cyberlocke
 
What is NAC
Israel Marcus
 
Zero Trust
Boaz Shunami
 
Matrix Table
HerrycaRonaldo
 
Firewalls
Shatha Al-mazrou
 
JDMDE Specialisation KaHo Sint-Lieven
KaHo Sint-Lieven
 
Intel Security Endpoint Protection
Trustmarque
 
Network Security Projects
Phdtopiccom
 
Advanced Firewalls Progress Report
David Strom Inc.
 
Ad

Viewers also liked (13)

PDF
1474595020.pdf ปุ๋ย 9
Kanchna Jailampang
 
PDF
Self Improvement Complete Directory
kindheartedpred87
 
PPTX
Guess who
nevilmovedden7
 
PPTX
Hope and Dream (Biographical Recount)
Annisa Alfath
 
DOCX
Curriculum_Vitae
Rakesh Singh Kushwaha
 
ODP
Diapo bien utiliser
cdironsard
 
PPTX
Some tips on distinguish the good all in one solar led lights.
Peter Peng
 
PPTX
Struktur Sosial
Annisa Alfath
 
DOC
OJO ELIJAH OLURINDE RESUME 1
ojo olurinde
 
DOCX
SAP ABAP-Archana Jha
Archana Jha
 
DOC
Nallen c v 15
Govender Nallen
 
PPTX
Project 2
nevilmovedden7
 
PPTX
Retirement Seminar v1
Duncan Orr
 
1474595020.pdf ปุ๋ย 9
Kanchna Jailampang
 
Self Improvement Complete Directory
kindheartedpred87
 
Guess who
nevilmovedden7
 
Hope and Dream (Biographical Recount)
Annisa Alfath
 
Curriculum_Vitae
Rakesh Singh Kushwaha
 
Diapo bien utiliser
cdironsard
 
Some tips on distinguish the good all in one solar led lights.
Peter Peng
 
Struktur Sosial
Annisa Alfath
 
OJO ELIJAH OLURINDE RESUME 1
ojo olurinde
 
SAP ABAP-Archana Jha
Archana Jha
 
Nallen c v 15
Govender Nallen
 
Project 2
nevilmovedden7
 
Retirement Seminar v1
Duncan Orr
 
Ad

Similar to 13.Anton-Position-Security-Considerations-23June2015[1] (20)

PDF
Security sdn
Priya Singh
 
DOCX
SDN-Security
Paras Hematbhai Dudhatra
 
PPTX
SDN and Named Data Networking Security
wolverinetyagi
 
PDF
SDN Standards: What and Whatnot
Open Networking Summits
 
PPTX
FIOT_Uni4.pptx
RishikeshPathak10
 
PDF
SDN Security: Two Sides of the Same Coin
Zivaro Inc
 
PDF
Sdn&security
Cristiano Monteiro
 
PDF
TACTiCS_WP Security_Addressing Security in SDN Environment
Saikat Chaudhuri
 
PDF
The evolving threat in the face of increased connectivity
APNIC
 
PPTX
Lqsqsssssssssssssssssssssssssssssssssssq18.pptx
pfeprojet
 
PDF
The Open Networking Foundation: Standard Bearer for SDN
Open Networking Summits
 
PDF
6th SDN Interest Group Seminar - Session7 (131210)
NAIM Networks, Inc.
 
PDF
Swisscom Network Analytics Data Mesh Architecture - ETH Viscon - 10-2022.pdf
ThomasGraf40
 
PDF
ONOS SDN-IP: Tutorial and Use Case for SDX
APNIC
 
PPTX
OSI Security Architecture.pptx shshhd shshjdjdjdd dhdjdjjdjdjdjdjjdjdjdjjdjdj...
9102165122aa
 
PPT
Security of software defined networking (sdn) and cognitive radio network (crn)
Ameer Sameer
 
PPTX
OFC2016 SDN Framework and APIs
Deborah Porchivina
 
PPTX
ioT_SDN
Raluca Ciungu
 
PPTX
ONF Snapshot
US-Ignite
 
PDF
SDN-ppt-new
Gifty Susan Mani
 
Security sdn
Priya Singh
 
SDN-Security
Paras Hematbhai Dudhatra
 
SDN and Named Data Networking Security
wolverinetyagi
 
SDN Standards: What and Whatnot
Open Networking Summits
 
FIOT_Uni4.pptx
RishikeshPathak10
 
SDN Security: Two Sides of the Same Coin
Zivaro Inc
 
Sdn&security
Cristiano Monteiro
 
TACTiCS_WP Security_Addressing Security in SDN Environment
Saikat Chaudhuri
 
The evolving threat in the face of increased connectivity
APNIC
 
Lqsqsssssssssssssssssssssssssssssssssssq18.pptx
pfeprojet
 
The Open Networking Foundation: Standard Bearer for SDN
Open Networking Summits
 
6th SDN Interest Group Seminar - Session7 (131210)
NAIM Networks, Inc.
 
Swisscom Network Analytics Data Mesh Architecture - ETH Viscon - 10-2022.pdf
ThomasGraf40
 
ONOS SDN-IP: Tutorial and Use Case for SDX
APNIC
 
OSI Security Architecture.pptx shshhd shshjdjdjdd dhdjdjjdjdjdjdjjdjdjdjjdjdj...
9102165122aa
 
Security of software defined networking (sdn) and cognitive radio network (crn)
Ameer Sameer
 
OFC2016 SDN Framework and APIs
Deborah Porchivina
 
ioT_SDN
Raluca Ciungu
 
ONF Snapshot
US-Ignite
 
SDN-ppt-new
Gifty Susan Mani
 

13.Anton-Position-Security-Considerations-23June2015[1]

  • 1. IEEE SDN Initiative Standardization Committee Meeting Security Considerations & Concerns Anton Kaska BTNE, LLC June 23, 2015 Piscataway, NJ 1
  • 2. What are we facing? ONF Model ONF SAYS: Computing Trends are driving network change… 1. Changing Traffic Patterns 2. Consumerization of IT 3. Rise of Cloud Services 4. Big Data=More Bandwidth Constraints listed include: • Complexity leads to stasis • Inability to scale • Vendor Dependence WHAT IS INDUSTRY SAYING? 1. The same approach 2. The same architecture 3. The same security drivers …not quite
  • 3. Not a new challenge we are facing 3 Defense in Depth with specifics for Software Defined Networking  Baseline Security Models  Integrity Checks  Brewer-Nash Model?  Physical Security
  • 4. How do we accomplish and not fail (PCI, ETSI, IEEE, etc? 4 BSI-Standard 100-2:IT- Grundschutz Vorgehensweise 3 GPP TS 33.210TS Network Domain Security TS 33.310 Authentication Framework TS 33.401 Security Architecture
  • 5. A Flexible Model 5 Remember Physical Security
  • 6. Summary • Multiple attempts at security Standards but focused on verticals, size, business models, point technologies, etc. • Using security as it has been practically applied, as a historical illustration • we will not meet the challenges sufficiently • there are many examples to glean knowledge from. • A flexible approach is required. • Given the speed with which technology advances, leveraging existing best practices and solutions that have proven themselves (Defense in Depth Theory, Chinese Walls, etc.) will provide acceptable and practical levels of mitigation that are implementable with tolerable financial and political cost. • A more complex matrixes approach leveraging industry specific and/or business requirement based risk mitigation is likely a requirement when viewed long term • This is in my opinion the harder nut to crack for the industries as a whole (and organizations such as IEEE) 6