cert cert emergency network emergency network
play

CERT CERT Emergency Network Emergency Network G.A. van Malenstein - PowerPoint PPT Presentation

CERT CERT Emergency Network Emergency Network G.A. van Malenstein G.A. van Malenstein R.P. Vloothuis R.P. Vloothuis Supervisor: J. Meijer Supervisor: J. Meijer Introduction Introduction Introduction to Introduction to CERTs CERTs


  1. CERT CERT Emergency Network Emergency Network G.A. van Malenstein G.A. van Malenstein R.P. Vloothuis R.P. Vloothuis Supervisor: J. Meijer Supervisor: J. Meijer

  2. Introduction Introduction � Introduction to Introduction to CERTs CERTs � � Key problem Key problem � � Main Main research research question question � � Research Research methods methods � � Organizational problems Organizational problems � � Technical solutions Technical solutions � � Deployment Deployment � � Conclusion Conclusion � � Future work Future work �

  3. CERTs CERTs � Computer Emergency Response Team Computer Emergency Response Team � � 1st CERT 1988 after worm attack 1st CERT 1988 after worm attack � � No hierarchy between CERTs No hierarchy between CERTs � � Communication structure Communication structure � • Pagers, mobile phones and mailing lists Pagers, mobile phones and mailing lists • � No Emergency Communication plan No Emergency Communication plan � � GOV-CERT, GOV-CERT, SURFnet-CERT SURFnet-CERT, , UvA-CERT UvA-CERT � � Formal structure: Formal structure: SURFnet SURFnet, , UvA UvA, OS3 , OS3 �

  4. Key problem Key problem � CERTs CERTs communicate by communicate by I nternet and I nternet and � by (mobile) (mobile) telephones telephones by � KPN KPN introduces an introduces an All-IP All-IP network network � � No No communication possible communication possible in case in case � of an emergency an emergency of � Example Example 1: 1: SURFnet SURFnet � � Example Example 2: CISCO 2: CISCO �

  5. Main research research question question Main � Which ways of communication can Which ways of communication can � be used for the CERTs for mutual be used for the CERTs for mutual communication when the regular communication when the regular communications networks (Internet, communications networks (Internet, telephone) fail? telephone) fail?

  6. Organizational problems Organizational problems � No official communication structure No official communication structure � in case of emergency in case of emergency � No overall chart of CERTs No overall chart of CERTs � � Who has to communicate with Who has to communicate with � whom? whom? � Point-to-point communication Point-to-point communication � requires communication plan requires communication plan � No priority given by CERTs No priority given by CERTs �

  7. Technical solutions Technical solutions � Requirements Requirements � • Scalable Scalable • • Flexible Flexible • • Affordable Affordable • • Physically separated from Physically separated from the Internet the Internet • • Available Available •

  8. Technical solutions Technical solutions � TETRA TETRA � • Mobile units and Mobile units and masts masts • • C2000, MCCN C2000, MCCN • � KPN KPN Emergency Network Emergency Network � • PSTN PSTN -> All-IP -> All-IP • • Not Not a mobile a mobile network network • • 6000 6000 connections connections • � Radio Radio � • Amateurs, Amateurs, packet packet radio radio • � WiMAX WiMAX � • 4th 4th Generation Generation Mobile Services Mobile Services • � Satellite communications Satellite communications � • Flexible Flexible, , affordable affordable •

  9. Overview Overview Scalable Flexible Affordable Separated Available network TETRA + 0 -- + + KPN Emergency -- - 0 - 0 Network Radio - + ++ ++ + WiMAX + 0 - - - Satellite ++ ++ + + ++

  10. Solution direction Solution direction • 6 mobile satellites units: • � 9.000,00 total non-recurring costs • � 20,00 per CERT is charged • Total of � 1.440,00 per year • In case the Emergency Network is used, the costs of calling by satellites phone are � 1,00 per minute

  11. Deployment Deployment � To deploy an Emergency Network, the following steps have to be taken: 1. Organize a meeting with at least 2 CERTs 2. Create agreements on how the network is set up 3. Describe these agreements in a communication plan 4. Connect all participating CERTs to the satellite network 5. Add all CERT names and numbers to the communication plan 6. Update and distribute the communication plan on a frequent basis 7. Get more CERTs interested to participate in the arisen Emergency Network; start again at step 1.

  12. Conclusion Conclusion � Which ways of communication can be used for the CERTs for mutual communication when the regular communications network (Internet) fails? � Satellite communication, best solution: • Completely separated network • Always worldwide available � No communication structure between CERTs in case of (partial) failure of the Internet: • Communication plan needed. � All procedures and (mobile) satellites phone numbers of the participating CERTs � No priority, CERTs have to take action now!

  13. Future Work Future Work � Communication plan Communication plan � � Further research technical solutions Further research technical solutions � � Open dialog with radio amateurs Open dialog with radio amateurs � � Research security aspect Research security aspect �

  14. The End The End � Any questions? Any questions? �

Recommend


More recommend