applying se to securing the
play

Applying SE to Securing the Energy Future Level 4 - Public 2017 - PowerPoint PPT Presentation

Jan 11, 2024 •32 likes •212 views

2017 Applying SE to Securing the Energy Future Level 4 - Public 2017 Our Energy Future is at Risk Our Critical Infrastructure is at high risk from High-Impact threats EMP Space Weather Cyber (Industrial Controls) Wanted:

  1. 2017 Applying SE to Securing the Energy Future Level 4 - Public

  2. 2017 Our Energy Future is at Risk • Our Critical Infrastructure is at high risk from High-Impact threats • EMP • Space Weather • Cyber (Industrial Controls) • Wanted: systemic approaches for critical infrastructure protection and recovery • complex systems & modeling approaches • resilience and agility • decision & prioritization tools 2 Level 4 - Public

  3. 2017 Critical Infrastructures 1) Chemical and other industrial 8) Healthcare and Public Health bases 9) Information Technology 2) Communications 10) Nuclear Reactors, Materials, 3) Electrical & Energy production and Waste & distribution 11) Transportation 4) Emergency Services 12) Water storage, treatment and 5) Financial Services distribution 6) Food and Agriculture 13) Waste handling and disposal (water, refuse, hazardous) 7) Government Services & Facilities 14) Society at large page 3 Level 4 - Public

  4. 2017 EMP in Brief • High-Altitude Nuclear Blast causes significant EM pulse • E1, E2, E3 • Demonstrated by US and Russian atmospheric nuclear blast tests • Even small weapons have a wide effect • Included in war strategies • US, NATO, China, Russia, Iran, Israel, India, Pakistan, North Korea page 4 Level 4 - Public

  5. 2017 Space Weather in Brief • Caused by interaction of high-energy particles from coronal mass ejection with the Earth’s magnetic field • Geomagnetically Induced Currents • Results in waveforms similar to EMP E3 • Small to moderate storms are common & impactful • equipment failures • communications and air traffic disruptions • Large Storms could have wide-spread impact • Carrington Event • 2012 Near-miss page 5 Level 4 - Public

  6. 2017 Cyber Attack in Brief 295 critical infrastructure incidents were reported by U.S. companies in 2015 - Security • Industrial Control Systems at Risk Intelligence: ICS-CERT Reports 2015 Infrastructure Attacks • Possible to destroy equipment and cause death 70% of the world’s power, • Multiple attack paths water, and critical infrastructure providers • Internal and external vulnerabilities reported a breach in the past • Loss of visibility of your true system status year, which led to a loss of confidential information or a • Loss of control disruption in operations . - • Active warfare Security Week: Unisys & Ponemon Institute 2014 Survey • Ukraine, Turkey, Iran examples • Recent US warning regarding the targeting of US- based utilities and industrial facilities page 6 Level 4 - Public

  7. 2017 Simple Infrastructure Model (Example) Energy Agriculture Transport Resource & Food Industries Industries Electric General Banking/ All Sectors Grid Population Finance Commun- ications Potable Waste Medical Water Water 7 Level 4 - Public

  8. 2017 Challenges • Understanding threats • Understanding critical infrastructure domains • Understanding cross-domain interactions • Gaining cooperation within and across domains • Sensitivity of information • Verifiability of concepts and solutions • Rapid evolution of threats and domains • Scale of the problem • Capturing Information in SE products, architecture, requirements, life cycle, etc. to support decision makers Challenge: Bring systems perspectives and solutions to this hyper-complex problem Level 4 - Public

  9. 2017 Contributing to the Solution • International Council On Systems Engineering (INCOSE) created the Critical Infrastructure Protection and Recovery (CIPR) working group • Provide a forum to address CIPR issues • manmade and natural threats • disruptions for periods of a month or more. • systems engineering principles, practices, applications and solutions • Exchange knowledge, systems engineering information and solutions regarding CIPR • Develop systems engineering products (e.g. architectures, models, requirements, IV&V, etc. Level 4 - Public

  10. 2017 CIPR Goal Areas System Protection System Community Recovery Resilience Cross-Domain • • Resilience Secure Systems • • Agile System of Systems • • Resilient Complex Systems Level 4 - Public

  11. 2017 Systems Thinking & Practices • Systems engineers approach problems in a somewhat unique manner • Big Picture & integration of the whole • Lifecycle view considering all aspects of the problem (operations, evolving threats, failure modes, logistics, etc) • Ability to transition from operating concepts, requirements, science and technology to real world solutions • Requirements elicitation • Functional and performance requirements • Architectural alternatives development and selection • Verification and Validation methods Level 4 - Public

  12. 2017 CIPR Products • CIPR Edition of INCOSE INSIGHT (Dec 2016) • 16 articles on a wide range of topics • Contributions to InfraGard Publications and Events • EnergyTech Conferences (2015-2017) • Lean Startup of Infrastructure Projects • Microgrid Modeling Project • Community Resilience Models Level 4 - Public

  13. 2017 Microgrid Modeling Project System Context Interconnections 13 Functional Behaviors Level 4 - Public Model extracts generated by Sandy Friedenthal

  14. 2017 Community System IMPORT Distribution & Production Consumption EXPORT • Energy (electric, fuel, gas) • Water • Production Capacities • Energy (electric, fuel, gas) • Food • Storage • Water • People (skilled, general) • Consumption Rates • Food • Supplies (medical, • People (skilled, general) chemical, etc.) • Supplies (medical, • Finances chemical, etc.) • Finances What factors are critical to community resilience? 14 Level 4 - Public

  15. 2017 Agile Principles for Recovery • Independent Encapsulated • Distributed Control and Modules Information • Internal cohesion, loosely coupled • Decisions at the point of maximum knowledge • Facilitated Interfacing • Deferred Commitment • Standards, protocols • Resource commitments just in time • Peer to Peer interactions • Self-Organization • Self-determined, self-regulating page 15 Level 4 - Public Your Future at Risk – Are you Prepared? (deLamare, Walker, Juhasz, July 2016)

  16. 2017 Call to Interested Parties • Bring Systems Thinking and Practices to the Problem Space • Modeling of threats, infrastructure and alternatives • Development of Recovery Concepts and Planning Aids • Application of Resilience and Agility • Application of Security Approaches • Application of System of Systems Approaches • Application of Complex System Approaches Level 4 - Public

  17. 2017 External Outreach • InfraGard EMP SIG • White House Office of Science and Technology Policy • NASA • Science and Technology Policy Institute • IEEE • Project Management Institute • US Dept of Homeland Security • Center For Understanding Change • US Dept of Energy • Ohio Cuyahoga County Emergency • Ohio Dept of Homeland Security Management • US FBI • City of Cleveland Dept of Energy and • Foundation for Resilient Societies Policy • Energy Infrastructure Security Council • Various Universities • International Society for Automation Level 4 - Public

  18. 2017 CIPR Contacts • Mike de Lamare • madelama@bechtel.com • Mark Walker • lmw107@bct-llc.com • John Juhasz • Telepath.juhasz@yahoo.com Level 4 - Public

Recommend

O VERVIEW Applying security measure to the Internet Securing email Pretty Good Privacy

O VERVIEW Applying security measure to the Internet Securing email Pretty Good Privacy

4/16/18 S ECURING E MAIL WITH P RETTY G OOD P RIVACY C S C 2 4 9 A P R I L 1 7 , 2 0 1 8 O VERVIEW Applying security measure to the Internet Securing email Pretty Good Privacy Secure sockets layer, SSL Firewalls and Intrusion

268 views • 13 slides
Scanned by CamScanner Scanned by CamScanner Scanned by CamScanner Securing Internet

Scanned by CamScanner Scanned by CamScanner Scanned by CamScanner Securing Internet

Scanned by CamScanner Scanned by CamScanner Scanned by CamScanner Securing Internet Communication: TLS CS 161: Computer Security Prof. Raluca Ada Popa Feb 22, 2018 Some slides credit David Wagner Todays Lecture Applying crypto

869 views • 53 slides
SECURING SECURE SHELL INTERACTIVE AND AUTOMATED ACCESS MANAGEMENT AGAINST INSIDER THREATS

SECURING SECURE SHELL INTERACTIVE AND AUTOMATED ACCESS MANAGEMENT AGAINST INSIDER THREATS

SECURING SECURE SHELL INTERACTIVE AND AUTOMATED ACCESS MANAGEMENT AGAINST INSIDER THREATS Applying Due Care Via Common Sense Approach April 2017 100% 46% Ponemon 2014 SSH Security Vulnerability of 2000 Global do not Organizations Report

307 views • 29 slides
Securing Internet Communication CS 161: Computer Security Prof. Vern Paxson TAs: Devdatta

Securing Internet Communication CS 161: Computer Security Prof. Vern Paxson TAs: Devdatta

Securing Internet Communication CS 161: Computer Security Prof. Vern Paxson TAs: Devdatta Akhawe, Mobin Javed & Matthias Vallentin http://inst.eecs.berkeley.edu/~cs161/ March 31, 2011 Todays Lecture Applying crypto technology in

695 views • 51 slides
Securing Internet Communication: TLS CS 161: Computer Security Prof. Haojin Materials adopted

Securing Internet Communication: TLS CS 161: Computer Security Prof. Haojin Materials adopted

Securing Internet Communication: TLS CS 161: Computer Security Prof. Haojin Materials adopted from Prof. David Wagner 2018 Todays Lecture Applying crypto technology in practice Two simple abstractions cover 80% of the use cases

623 views • 49 slides
IoT Security Image: xkcd How is securing IoT different from securing any other system? IoT

IoT Security Image: xkcd How is securing IoT different from securing any other system? IoT

IoT Security Image: xkcd How is securing IoT different from securing any other system? IoT is a system of systems, with A great deal of heterogeneity (sensing, computation, communication, energy) New types of devices appearing all

1.35k views • 65 slides
Building&Hacking modern iOS apps Wojciech Regua @_r3ggi wojciech.regula@securing.pl

Building&Hacking modern iOS apps Wojciech Regua @_r3ggi wojciech.regula@securing.pl

www.securing.pl Building&Hacking modern iOS apps Wojciech Regua @_r3ggi wojciech.regula@securing.pl @_r3ggi wojciech.regula@securing.pl www.securing.pl www.securing.pl WHOAMI -Senior IT Security Consultant @ SecuRing -Focused on

998 views • 67 slides
SANS Securing The Human Training Department of Safety Securing the Human Training Web

SANS Securing The Human Training Department of Safety Securing the Human Training Web

SANS Securing The Human Training Department of Safety Securing the Human Training Web based Centrally Administrated Divisionally managed Consistent content Central reporting Ability to add custom content (Policy's)

761 views • 10 slides
Securing and Protecting Securing and Protecting Water Rights and Uses in Water Rights and Uses

Securing and Protecting Securing and Protecting Water Rights and Uses in Water Rights and Uses

Securing and Protecting Securing and Protecting Water Rights and Uses in Water Rights and Uses in Arizona Arizona L. William Staudenmaier One Arizona Center 400 East Van Buren Street, Suite 1900 Phoenix, Arizona 85004 2202 602.382.6000 |

574 views • 32 slides
Securing a future for our horses. Securing a future for our sport. TABLE OF CONTENTS

Securing a future for our horses. Securing a future for our sport. TABLE OF CONTENTS

Securing a future for our horses. Securing a future for our sport. TABLE OF CONTENTS Industry-United Initiative ............................................ 2 The TAA Difference .................................................... 3 Life After

466 views • 19 slides
Securing Internet Routing Securing Internet Routing $ Local ISP Sharon Goldberg g Princeton

Securing Internet Routing Securing Internet Routing $ Local ISP Sharon Goldberg g Princeton

Jobtalk Securing Internet Routing Securing Internet Routing $ Local ISP Sharon Goldberg g Princeton University Based on work with: Based on work with: Boaz Barak, Shai Halevi, Aaron Jaggard, Vijay Ramachandran, Jennifer Rexford, Eran

1.12k views • 42 slides
Securing home Wi-Fi with WPA3 personal Raoul Dijksman and Erik Lamers Securing home Wi-Fi with

Securing home Wi-Fi with WPA3 personal Raoul Dijksman and Erik Lamers Securing home Wi-Fi with

Securing home Wi-Fi with WPA3 personal Raoul Dijksman and Erik Lamers Securing home Wi-Fi with WPA3 personal Making Wi-Fi great again With security this time, right? Securing home Wi-Fi with WPA3 personal - July 3 rd 2020 2 Why is WPA3

853 views • 28 slides
Web Security Thierry Sans Securing the web architecture means securing ... The network

Web Security Thierry Sans Securing the web architecture means securing ... The network

Web Security Thierry Sans Securing the web architecture means securing ... The network The operating system The web server ( Apache for instance) The administration server ( SSH for instance) The database ( Oracle for instance)

1.37k views • 61 slides
SECURING DONATIONS SECURING DONATIONS nonprofit.212mediastudios.com | 574.269.0720 |

SECURING DONATIONS SECURING DONATIONS nonprofit.212mediastudios.com | 574.269.0720 |

NON-PROFIT PRESENTATION TIPS FOR NON-PROFIT PRESENTATION TIPS FOR SECURING DONATIONS SECURING DONATIONS nonprofit.212mediastudios.com | 574.269.0720 | info@212mediastudios.com Having an efgective communication strategy is the fjrst step for your

116 views • 9 slides
Getting Acquainted W ith Zoom Outline Securing Your Computer Your Invitation The

Getting Acquainted W ith Zoom Outline Securing Your Computer Your Invitation The

Getting Acquainted W ith Zoom Outline Securing Your Computer Your Invitation The Waiting Room Working with Audio Working with Video Using the Tool Tray Chat In the Meeting When Things Go Wrong 2 Securing Your

325 views • 14 slides
Securing Home Networks Securing Home Networks protocols protocols A SWN04 A SWN04 K.

Securing Home Networks Securing Home Networks protocols protocols A SWN04 A SWN04 K.

Securing Home Networks Securing Home Networks protocols protocols A SWN04 A SWN04 K. MASMOUDI, K. MASMOUDI, H. AFIFI H. AFIFI Boston, 08/2004 6 th PCRD Integrated Project Goal : provide secure communication

450 views • 22 slides
LOCATION PRIVACY Marc Langheinrich University of Lugano (USI), Switzerland Securing a Mobile

LOCATION PRIVACY Marc Langheinrich University of Lugano (USI), Switzerland Securing a Mobile

LOCATION PRIVACY Marc Langheinrich University of Lugano (USI), Switzerland Securing a Mobile Phone Securing a Mobile Phone Securing a Mobile Phone Securing a Mobile Phone Can We Have it Both Ways? Safe Secure Privacy-friendly

892 views • 62 slides
Applying to Applying to Universities in the Universities in the USA USA Running order The

Applying to Applying to Universities in the Universities in the USA USA Running order The

Applying to Applying to Universities in the Universities in the USA USA Running order The picture can't be displayed. + + Introduction + + Why the US? + + What are US universities looking for? + + What does the application consist

330 views • 20 slides
Applying for Financial Aid National College Fair 2018 Applying for Financial Aid Begin- as

Applying for Financial Aid National College Fair 2018 Applying for Financial Aid Begin- as

Applying for Financial Aid National College Fair 2018 Applying for Financial Aid Begin- as early as possible Get your FSA ID File the FAFSA/MN Dream Act Application Work with the financial aid office to complete verification or

430 views • 15 slides
Securing IoT with a hardware Secure Element Marc Renaudin - Serge Maginot - TIEMPO CONFIDENTIAL

Securing IoT with a hardware Secure Element Marc Renaudin - Serge Maginot - TIEMPO CONFIDENTIAL

Securing IoT with a hardware Secure Element Marc Renaudin - Serge Maginot - TIEMPO CONFIDENTIAL TIEMPO S.A.S. December 3, 2019 1 Outline Connected Objects Securing IoT with a hardware Secure Element Introduction Securing Treats

537 views • 10 slides
Turning spaghetti into lasagne Applying the principles of application frameworks to Applying the

Turning spaghetti into lasagne Applying the principles of application frameworks to Applying the

Turning spaghetti into lasagne Applying the principles of application frameworks to Applying the principles of application frameworks to packaged applications James Couzens Solution Architect, Suncorp JAOO Conference, 2009 What I will be

189 views • 15 slides
Securing RFID with Ultra-wideband Modulation Pengyuan Yu, Patrick Schaumont and Dong Ha

Securing RFID with Ultra-wideband Modulation Pengyuan Yu, Patrick Schaumont and Dong Ha

Securing RFID with Ultra-wideband Modulation Pengyuan Yu, Patrick Schaumont and Dong Ha Presented By: Eric Simpson Summary Traditional Secure Communications Securing the physical layer with UWB TH-PPM RFID digital baseband

386 views • 19 slides
- Securing Santas Sleigh - INET XMAS Presentation 2018 by Timo Hckel - Securing Santas

- Securing Santas Sleigh - INET XMAS Presentation 2018 by Timo Hckel - Securing Santas

- Securing Santas Sleigh - INET XMAS Presentation 2018 by Timo Hckel - Securing Santas Sleigh - INET XMAS Presentation 2018 by Timo Hckel Overview 1. Automotive Networks 2. SecVI Research Project 3. Software-Defined Networking

344 views • 31 slides
Applying to Medical School 2016-2017 Applying to Medical School Halifax and

Applying to Medical School 2016-2017 Applying to Medical School Halifax and

Applying to Medical School 2016-2017 Applying to Medical School Halifax and New Brunswick Campuses APPLICANT CATEGORIES Maritime (NS, NB, PE)99 = seats

518 views • 30 slides

More recommend