security automation and optimization using hp na
play

Security Automation and Optimization using HP-NA Florian Ecard SNE - PowerPoint PPT Presentation

Jun 21, 2023 •349 likes •483 views

Security Automation and Optimization using HP-NA Florian Ecard SNE master student Supervisor: Olivier Willm 4 th February 2015 Security Automation and Optimization using HP-NA - What is HP Network Automation? - What were the objectives with

  1. Security Automation and Optimization using HP-NA Florian Ecard SNE master student Supervisor: Olivier Willm 4 th February 2015

  2. Security Automation and Optimization using HP-NA - What is HP Network Automation? - What were the objectives with it? - CVE retrieval automation using HP-LNc - Integrity of the configuration's Security - New HP-NA certificate - SSH keys 2

  3. Research question - Evaluate the software capabilities to audit the configurations about potential security issues from the CVE database. - How to automatically check the configuration's security integrity? - How does it fit in an overall network security improvement process? 3

  4. HP-LNc Installation & Configuration - Linux Redhat server - Use of the CLI - Choose the products - Two users & passwords - Automation using HP-NA → Documentation 4

  5. Automate the configuration integrity checking - What kind of configuration is verified? - Cisco IOS - Cisco NXOS - Why checking their integrity? 5

  6. Automate the configuration integrity checking - What is being checked? - ACLs, AAA & Usernames - Features & VTY - NTP - Logging facilities - How was it done with HP-NA? - Create groups, policies and tasks 6

  7. CA-signed HP-NA certificate - What for? - What are the .keystore and .truststore files? - What steps should be followed? - public key generation - CSR generation - 1 + 3 certificates returned And the result is → → → 7

  8. CA-signed HP-NA certificate 8

  9. CA-signed HP-NA certificate - The problems were due to … Stupidity! :-( - Asked for a www → Documentation 9

  10. Problems encountered - User accounts access - HP-NA unavailability - HP-LNc configuration entered using vim - HP-LNc user access & privileges - Certificates 10

  11. Conclusion RESEARCH QUESTION: - Evaluate the software capabilities to audit the configurations about potential security issues. Define specific policies from the CVE database. - How to automatically check the configuration's security integrity? - How does it fit in an overall network security improvement process? 11

  12. Conclusion - Future work - Perl API - SSH keys checking 12

  13. Security Automation and Optimization using HP-NA Questions ?? :-) 13

Recommend

Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial

Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial

ABB MINING USER CONFERENCE, MAY 02-05, 2017 Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial Automation Division Agenda Why worry about cyber security? ABBs approach to cyber security Cyber security

1.07k views • 39 slides
1 Automation Overview Definition Automation (automation, Automation ) : 1) set of all measures

1 Automation Overview Definition Automation (automation, Automation ) : 1) set of all measures

Industrial Automation Spring 2019, EPFL 1 Automation Overview Definition Automation (automation, Automation ) : 1) set of all measures aiming at replacing human work through machines (e.g. automation is applied science) 2) the

1.39k views • 63 slides
Security Testing - Where Automation Fails Today How does security testing of web

Security Testing - Where Automation Fails Today How does security testing of web

Security Testing - Where Automation Fails Today How does security testing of web applications work What does the tooling landscape look like How does automated security testing fail What can we do Image courtesy of

583 views • 56 slides
Decentralized Optimization for Multi-Agent Networks Qing Ling Department of Automation,

Decentralized Optimization for Multi-Agent Networks Qing Ling Department of Automation,

Decentralized Optimization for Multi-Agent Networks Qing Ling Department of Automation, University of Science and Technology of China (USTC) Joint work with Wotao Yin (UCLA), Wei Shi and Kun Yuan (USTC) 2014 Workshop on Optimization for Modern

311 views • 27 slides
Home Security and Automation On The Road And At Home Eric McHenry (#2242) Region 12 // Greater

Home Security and Automation On The Road And At Home Eric McHenry (#2242) Region 12 // Greater

Home Security and Automation On The Road And At Home Eric McHenry (#2242) Region 12 // Greater Bay Area Airstream Club eric.mchenry@airstreamclub.net Topics Security and automation objectives Traditional vs. emerging home security and

594 views • 31 slides
Feedback Optimization on the Power Flow Manifold Institut fr Automation und angewandte

Feedback Optimization on the Power Flow Manifold Institut fr Automation und angewandte

Feedback Optimization on the Power Flow Manifold Institut fr Automation und angewandte Informatik (IAI) Karlsruhe Institute of Technology (KIT) Florian Drfler Automatic Control Laboratory, ETH Zrich March 26 - 29, 2018 1

850 views • 42 slides
Metasploitation H D Moore Director of Security Research (Exploit automation and IPS evasion)

Metasploitation H D Moore Director of Security Research (Exploit automation and IPS evasion)

Metasploitation H D Moore Director of Security Research (Exploit automation and IPS evasion) BreakingPoint Systems CanSecWest 2006 Agenda Introduction Metasploit 3 Automation IPS Evasion Examples 2 Introductions - Who?

675 views • 28 slides
Overview Problem Approach Automation of Performance Optimization Application to MPI

Overview Problem Approach Automation of Performance Optimization Application to MPI

Overview Problem Approach Automation of Performance Optimization Application to MPI Example Tuning Strategies Case Studies Related Research Future Research Problem and Motivation MPI is pervasive Most users

413 views • 14 slides
THE PAST, PRESENT & FUTURE OF ENTERPRISE SECURITY THE GOLDEN AGE OF ATTACK AUTOMATION

THE PAST, PRESENT & FUTURE OF ENTERPRISE SECURITY THE GOLDEN AGE OF ATTACK AUTOMATION

THE PAST, PRESENT & FUTURE OF ENTERPRISE SECURITY THE GOLDEN AGE OF ATTACK AUTOMATION Marcello Salvati - @byt3bl33d3r - https://github.com/byt3bl33d3r - Lead researcher @coalfirelabs - Years of experience building open source security

657 views • 38 slides
CS137: Today Electronic Design Automation Two-Level Logic Optimization Problem

CS137: Today Electronic Design Automation Two-Level Logic Optimization Problem

CS137: Today Electronic Design Automation Two-Level Logic Optimization Problem Definitions Day 4: October 5, 2005 Basic Algorithm: Quine-McClusky Two-Level Logic-Synthesis Improvements 1 2 CALTECH CS137 Fall2005 --

409 views • 11 slides
Industrial Automation Automation Industrielle Industrielle Automation 9.2 Dependability -

Industrial Automation Automation Industrielle Industrielle Automation 9.2 Dependability -

Industrial Automation Automation Industrielle Industrielle Automation 9.2 Dependability - Evaluation Estimation de la fiabilit Verlsslichkeitsabschtzung Dr. Jean-Charles Tournier CERN, Geneva, Switzerland 2015 - JCT The material

1.78k views • 91 slides
CS137: Today Electronic Design Automation Multilevel Synthesis/Optimization Why

CS137: Today Electronic Design Automation Multilevel Synthesis/Optimization Why

CS137: Today Electronic Design Automation Multilevel Synthesis/Optimization Why Transforms -- defined Day 5: October 7, 2005 Division/extraction Multi-level Synthesis How we support transforms Boolean Division

358 views • 9 slides
SCAP for VoIP Automating Configuration Compliance 6 th Annual IT Security Automation Conference

SCAP for VoIP Automating Configuration Compliance 6 th Annual IT Security Automation Conference

SCAP for VoIP Automating Configuration Compliance 6 th Annual IT Security Automation Conference Presentation Overview 1. The Business Challenge 2. Securing Voice over IP Networks 3. The ISA VoIP Security Project 4. Next Steps With SCAP 5. Summary

388 views • 23 slides
Industrial Automation Automation Industrielle Industrielle Automation Safety analysis and

Industrial Automation Automation Industrielle Industrielle Automation Safety analysis and

Industrial Automation Automation Industrielle Industrielle Automation Safety analysis and standards 9.6 Analyse de scurit et normes Sicherheitsanalyse und Normen Prof Dr. Hubert Kirrmann & Dr. B. Eschermann ABB Research Center,

799 views • 31 slides
SECURITY AUTOMATION WITH ANSIBLE Michelle Perz, Associate Manager-Ansible Support, Ansible by Red

SECURITY AUTOMATION WITH ANSIBLE Michelle Perz, Associate Manager-Ansible Support, Ansible by Red

SECURITY AUTOMATION WITH ANSIBLE Michelle Perz, Associate Manager-Ansible Support, Ansible by Red Hat whoami ? 2 AGENDA Ansible use cases Information security Why Ansible? Examples Get involved 3 FreeImages.com/kovik COMMON ANSIBLE USE

495 views • 22 slides
SECURITY AUTOMATION WITH ANSIBLE Michelle Perz, Associate Manager-Ansible Support, Ansible by Red

SECURITY AUTOMATION WITH ANSIBLE Michelle Perz, Associate Manager-Ansible Support, Ansible by Red

SECURITY AUTOMATION WITH ANSIBLE Michelle Perz, Associate Manager-Ansible Support, Ansible by Red Hat whoami ? 2 AGENDA Ansible use cases Information security Why Ansible? Examples Get involved 3 FreeImages.com/kovik COMMON ANSIBLE USE

513 views • 29 slides
Agenda Linux security 1. System hardening 2. Technical audits 3. Automation 2 Michael Boelen

Agenda Linux security 1. System hardening 2. Technical audits 3. Automation 2 Michael Boelen

Agenda Linux security 1. System hardening 2. Technical audits 3. Automation 2 Michael Boelen 3 Linux security Areas Core Resources Services Environment System Hardening Boot Process Accounting Database Forensics Containers

821 views • 34 slides
Automate Security Testing and System Compliance Agenda Introduction to SCAP Introduction

Automate Security Testing and System Compliance Agenda Introduction to SCAP Introduction

Automate Security Testing and System Compliance Agenda Introduction to SCAP Introduction to STIG SUSE STIG Automation Demo Time Whats next? What is SCAP? The Security Content Automation Protocol is a multi-purpose

684 views • 37 slides
Game Theory: Lecture #8 Outline: Individual Optimization Security Strategies Optimization

Game Theory: Lecture #8 Outline: Individual Optimization Security Strategies Optimization

Game Theory: Lecture #8 Outline: Individual Optimization Security Strategies Optimization and Strategy Previous focus: Given individual preferences, compute group preference? Given individual preferences, compute satisfactory

343 views • 9 slides
Presentation outline Introduction Particle swarm optimization algorithms The

Presentation outline Introduction Particle swarm optimization algorithms The

The 15th International Conference on Flexible Automation and Intelligent Manufacturing, July 18-20, 2005, University of Deusto, Bilbao A particle swarm optimization algorithm for machine grouping problems Carlos Andrs Romano 1 , Sebastin

481 views • 18 slides
NIST Information Technology Laboratory (ITL) The Cyber Maryland Showcase Security Automation

NIST Information Technology Laboratory (ITL) The Cyber Maryland Showcase Security Automation

NIST Information Technology Laboratory (ITL) The Cyber Maryland Showcase Security Automation Guidance Tower of Babel Documents Too much Alerts & Web Sites proprietary, Advisories incompatible information Costly

93 views • 8 slides
Effective Incident Response Security Orchestration and Automation (SOAR) Miguel Carrero Tammy

Effective Incident Response Security Orchestration and Automation (SOAR) Miguel Carrero Tammy

Effective Incident Response Security Orchestration and Automation (SOAR) Miguel Carrero Tammy Tolbert MicroFocus ArcSight and Siemplify Addressing the needs of SOCs, including: Relieving resource constraints by automating

476 views • 19 slides
Learning Bayesian networks viewed as an optimization problem Milan Studen y Institute of

Learning Bayesian networks viewed as an optimization problem Milan Studen y Institute of

Learning Bayesian networks viewed as an optimization problem Milan Studen y Institute of Information Theory and Automation of the AS CR Prague COSA Workshop Combinatorial Optimization, Statistics, and Applications Munich, Germany, March

458 views • 29 slides
Document Automation in Dynamics CRM Document Automation The value of Automation Reduce User

Document Automation in Dynamics CRM Document Automation The value of Automation Reduce User

Document Automation in Dynamics CRM Document Automation The value of Automation Reduce User Workload Reduce Errors by standardized processes Speeds up processes CRM Workflows are faster than users, no delay

424 views • 6 slides

More recommend