Скачать презентацию PROVISION OF CIS-SERVICES IN A DYNAMICALLY EVOLVING CYBER Скачать презентацию PROVISION OF CIS-SERVICES IN A DYNAMICALLY EVOLVING CYBER

a0e93631b7b23d514b1b197b13e6842f.ppt

  • Количество слайдов: 24

PROVISION OF CIS-SERVICES IN A DYNAMICALLY EVOLVING CYBER WORLD 29 October 2009 Brussels, Belgium PROVISION OF CIS-SERVICES IN A DYNAMICALLY EVOLVING CYBER WORLD 29 October 2009 Brussels, Belgium Tech. Net International 2009 - Keynote Speech Session I – International Threats – Regional Solutions Presented by Lieutenant General Kurt Herrmann, Director NCSA NATO CIS Services Agency

Outline • Understanding NCSA • Free Flow of Information and Knowledge • Security in Outline • Understanding NCSA • Free Flow of Information and Knowledge • Security in the Cyber World • NATO’s Response to Cyber Risks NATO UNCLASSIFIED 2

NCSA Mission To ensure the provision of secure end -to-end information exchange services and NCSA Mission To ensure the provision of secure end -to-end information exchange services and information processing services required for NATO Consultation, Command Control, using fielded Communications and Information Systems in the most cost effective manner. NATO UNCLASSIFIED 3

NCSA Organisation CIS Operations Systems Management Static CIS Support Service Delivery NATO INFOSEC Signal NCSA Organisation CIS Operations Systems Management Static CIS Support Service Delivery NATO INFOSEC Signal Battalions NATO UNCLASSIFIED 4

NCSA’s Position NAC NATO C 3 Board SACEUR Policy direction Military Committee OPCON (for NCSA’s Position NAC NATO C 3 Board SACEUR Policy direction Military Committee OPCON (for Operations) NCSA “as a whole” (indivisible mission / organisation) SLAs Op. Plans/Op. Orders CIS support to Static HQ structures Consultation C 2 for NFS • NATO HQ Brussels • Nations’ customers C 2 for NCS • ACT • +Substructure Reach back C 2 for NCS • ACO • +Substructure NATO UNCLASSIFIED NCSA DCIS elements • DCMs • CIS Logistic Depot CIS support to NATO Operations Supporting NATO elements Supporting National CIS elements • NC 3 A • NAMSA • Contractors 5

Future Area of Responsibility EUFOR KFOR Stavanger Finderup ISAF Norfolk Northwood Yeovilton NL. Mons Future Area of Responsibility EUFOR KFOR Stavanger Finderup ISAF Norfolk Northwood Yeovilton NL. Mons Sector Norfolk Sector Mons Sector Brunssum Sector Naples Sector Lisbon Bydgoszcz Udem Brunssum Ramstein Heidelberg IRAQ La Spezia JALLC Monsanto Lisbon Poggio Renatico Madrid Naples Larissa Izmir GR NCSA Squadron NCSA Detachment NCSA Support Element NATO UNCLASSIFIED 6

NCSA Connecting NATO … NHQS KFOR ACTIVE ENDEAVOUR NTM-I ISAF Darfur NATO UNCLASSIFIED 7 NCSA Connecting NATO … NHQS KFOR ACTIVE ENDEAVOUR NTM-I ISAF Darfur NATO UNCLASSIFIED 7

Federated & Integrated Architecture for ISAF SIPRNe. T (US) ISAF General-Purpose Communication System Shared Federated & Integrated Architecture for ISAF SIPRNe. T (US) ISAF General-Purpose Communication System Shared ISAF Information Domain NATO Secret 41 TCN CENTRIXS ISAF Secret (FOC+, MP 4, IOC, Overtask) CENTRIXS GCTF 80 nations National Mission Secret NATO UNCLASSIFIED NATO HQ Mission Secret 8

FREE FLOW INFORMATION AND KNOWLEDGE: Network price performance (doubling every 12 months) Source: NATO FREE FLOW INFORMATION AND KNOWLEDGE: Network price performance (doubling every 12 months) Source: NATO UNCLASSIFIED 9

Globally Applied IP Networking 14 billion devices will be connected to 14 the Internet Globally Applied IP Networking 14 billion devices will be connected to 14 the Internet by 2010 Billion 300 Million 2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 Source: / Forrester Research, February 2005 NATO UNCLASSIFIED 10

The World Is Changing Fast Information flows freely Content/Applications Experience Devices Source: NATO UNCLASSIFIED The World Is Changing Fast Information flows freely Content/Applications Experience Devices Source: NATO UNCLASSIFIED 11

Cloud Computing NATO UNCLASSIFIED 12 12 Cloud Computing NATO UNCLASSIFIED 12 12

Security Concerns NATO UNCLASSIFIED 13 13 Security Concerns NATO UNCLASSIFIED 13 13

Security in the Cyber World: The Social Revolution of the Internet Generation Social Networks Security in the Cyber World: The Social Revolution of the Internet Generation Social Networks Growth Instant Messaging Social Networking Global Collaboration NATO UNCLASSIFIED 14

Active Threats • • Spam Malware (viruses, worms, trojans. . ) Web defacements Denial Active Threats • • Spam Malware (viruses, worms, trojans. . ) Web defacements Denial of Service NATO UNCLASSIFIED 15

Active Threats (2) • Classified Information Leakage • Vulnerabilities exposed by poor maintenance • Active Threats (2) • Classified Information Leakage • Vulnerabilities exposed by poor maintenance • User indiscretions NATO UNCLASSIFIED 16

The Attackers. . • • Script Kiddie Recreational Hacker Cyber Activist Organized Crime Terrorist The Attackers. . • • Script Kiddie Recreational Hacker Cyber Activist Organized Crime Terrorist Organization Nation-state Insider Threat NATO UNCLASSIFIED 17

Cyber Defence in NATO • Commitment by Nations • Effective Cyber Defence Policies • Cyber Defence in NATO • Commitment by Nations • Effective Cyber Defence Policies • NATO Cyber Defence Management Authority (CDMA) • NATO Computer Incident Response Capability NATO UNCLASSIFIED 18

Security Activities PROTECT / PREVENT FEEDBACK DETECT RECOVER RESPOND NATO UNCLASSIFIED 19 Security Activities PROTECT / PREVENT FEEDBACK DETECT RECOVER RESPOND NATO UNCLASSIFIED 19

NATO CYBER DEFENCE: Functional View • NATO wide CD Mgmt Body th Au or NATO CYBER DEFENCE: Functional View • NATO wide CD Mgmt Body th Au or e is • Policy • Strategic Direction – rm fo In – vi Ad se • Response Teams • Intrusion Detection t or ep -R • Security Mgmt NATO UNCLASSIFIED 20 20

Cyber Defence Security Services • • System Hardening measures NATO-wide anti-malware support Specialist advice Cyber Defence Security Services • • System Hardening measures NATO-wide anti-malware support Specialist advice to projects Vulnerability Assessments (VA) and Penetration Testing • NATO-wide Vulnerability Notification • Training and Awareness NATO UNCLASSIFIED 21

Cyber Defence Security Services (2) • • • Intrusion Detection System Mail Content Checking Cyber Defence Security Services (2) • • • Intrusion Detection System Mail Content Checking Website Monitoring 24/7 Incident Response Capability On and Off-line Computer Forensic Services NATO UNCLASSIFIED 22

NATO’s CIS Network Land, Air & Maritime Forces NATO Core Network Voice Nations ISAF NATO’s CIS Network Land, Air & Maritime Forces NATO Core Network Voice Nations ISAF Service Interface Balkans Data VTC Exercise s NATO UNCLASSIFIED NTMI 23

NCSA: NATO’s Driving Force for Efficient CIS Services Questions? NATO CIS Services Agency NATO NCSA: NATO’s Driving Force for Efficient CIS Services Questions? NATO CIS Services Agency NATO UNCLASSIFIED 24