Post IPv6 Implementation and Security: Now What?

•

0 gostou•810 visualizações

Best practices for securing IPv4 and IPv6 connectivity. Presented by Scott Hogg, GTRI, and Jay Wiley, IRS, at the Digital Government Institute's Government IPv6 & Networking Conference & Expo, August 2013.

Tecnologia

8/23/2013 1© 2013 Global Technology Resources, Inc. All Rights Reserved.
Post IPv6 Implementation and Security:
Now What?
Scott Hogg
GTRI - Director of Technology Solutions
Chair Emeritus – RMv6TF
CCIE #5133, CISSP #4610
Digital Government Institute
Government IPv6 & Networking Conference & Expo
August 21, 2013
Jay Wiley
Senior Advisor, CISO
IRS
CISSP-ISSEP #279827

You Now Have an IPv6 Network
• You have IPv6 deployed at your Internet edge
• DNS triggers if an application makes an IPv4
connection or an IPv6 connection (Happy Eyeballs)
• How do you know if a connecting is taking place
over IPv4 or IPv6? We don’t want the users to
know.
8/23/2013 2© 2013 Global Technology Resources, Inc. All Rights Reserved.

Securing Two Protocols
• Need to have equal protections for IPv4 and IPv6.
• You are only as strong as the weakest of the two stacks.
• Running dual stack will give you at least twice the
number of vulnerabilities and require twice the work to
secure.
• Do all of your security protections work equally well with
IPv4 and IPv6?
– WAFs, IPS, DPI, e-mail/web content filtering, etc.
IPv4 IPv6
8/23/2013 3© 2013 Global Technology Resources, Inc. All Rights Reserved.

Combined IPv4/IPv6 Security Policy
Any-IPv4 V4-Host-1
Source Destination Protocol Action
HTTP Permit
Any Any Any Deny
Any-IPv6 V6-Host-1 HTTP Permit
Any-IPv6 V6-Host-2 FTP Permit
Any
V4-Host-1
V6-Host-1
Echo-
Request
Permit
V4-Host-3
V6-Host-3
Any HTTP Permit
Rule
1
2
3
4
5
6
8/23/2013 4© 2013 Global Technology Resources, Inc. All Rights Reserved.

TCP/IPv6 Troubleshooting
Application
Layer
Transport
Layer
Internet
Layer
Link Layer
IPv4 IPv6
ARP
ICMP
IGMP
TCP UDP SCTPTelnet
SSH
FTP
TFTP
DHCP
DNS
SMTP
HTTP
SSL
SNMP
BGP
DCCP
T1/E1/T3/E3
SONET
SDH
ICMPv6
NDP MLD
Ethernet WiFi
8/23/2013 5© 2013 Global Technology Resources, Inc. All Rights Reserved.

IPv6 Network Management
• Good engineering practices dictate that when we
prepare to build something we must plan for the
long-term operations.
• Many organizations lack internal and external
visibility to their IPv6-enabled applications.
• NMSs must be able to communicate with IPv6-
enabled devices.
• External testing services, looking glasses, E-mail
reflectors.
• Administrators need a “jump-box” or remote testing
platform.
8/23/2013 6© 2013 Global Technology Resources, Inc. All Rights Reserved.

Dual Stack OPEX Costs
8/23/2013 7© 2013 Global Technology Resources, Inc. All Rights Reserved.
Cost
Time

Summary
• Strive to attain equal protections for IPv4
and IPv6 connectivity. Ask your vendors.
• Consider investing in people and processes,
not just technology.
– People need the ability to proactively manage
and reactively troubleshoot IPv6.
– Your processes need to allow both protocols to
be maintained.
• Consider how using two IP protocols will
change how you operate your IT
infrastructure.
8/23/2013 8© 2013 Global Technology Resources, Inc. All Rights Reserved.

Resources from NWW blog
http://www.networkworld.com/community/hogg
• 7/24/13 - IPv6 Network Management
– http://www.networkworld.com/community/blog/ipv6-network-management
• 4/23/13 - Life in a Dual Stack World
– http://www.networkworld.com/community/blog/life-dual-stack-world
• 9/11/12 - Web Application Firewalls and IPv6
– http://www.networkworld.com/community/blog/web-application-firewalls-
and-ipv6
• 7/31/12 - Dual-Stack Will Increase Operating Expenses
– http://www.networkworld.com/community/blog/dual-stack-will-increase-
operating-expenses
• 3/4/12 - Should You Allow Inbound E-mail Over IPv6?
– http://www.networkworld.com/community/blog/should-you-allow-inbound-
e-mail-over-ipv6
• 1/19/12 - The Future of Firewall Policies
– http://www.networkworld.com/community/blog/future-firewall-policies
• 5/20/11 - Troubleshooting IPv6 Networks and Systems
– http://www.networkworld.com/community/blog/troubleshooting-ipv6-
networks-and-systems
8/23/2013 9© 2013 Global Technology Resources, Inc. All Rights Reserved.

Question and Answer
Q:
&
A:
SHogg@GTRI.com
Mobile: 303-949-4865
Twitter: @scotthogg
8/23/2013 10© 2013 Global Technology Resources, Inc. All Rights Reserved.
Jay.Wiley@IRS.gov
Mobile: 214-364-2030
Twitter: @wiley_jay

Mais conteúdo relacionado

Mais procurados

Herding Pets and Cattle: Extending Foundational Controls Into the Cloud

Tripwire

Accelerating Digital Leadership

M2M Alliance e.V.

NUS-ISS Learning Day 2019-Complying with new IoT cyber security guide

NUS-ISS

Modern Security Operations & Common Roles/Competencies

Harry McLaren

Cisco Connect 2018 Indonesia - Delivering intent for data center networking

NetworkCollaborators

Cisco Connect 2018 Indonesia - Building a secure data center

NetworkCollaborators

What is an IDS? What is required for a successful implementation and utilisation? IDS can also be used for penetration testing activities, not just for defence purposes. See how! This was presented as part of the FIRST Technical Colloquium 2017 Conference in Mauritius on the 30th of November 2017. Feel free to contact us for more information. If you are reusing some of the slides or their content, can you please reference our website as the source: https://www.elysiumsecurity.com

Open Source IDS - How to use them as a powerful fee Defensive and Offensive tool

Sylvain Martinez

Forrester zero trust_dna

Cristian Garcia G.

Cisco connect winnipeg 2018 unlocking business value with network programma...

Cisco Canada

Seen at InfoSec Europe 2015: Spot your Snowden!

John Wallix

TWISummit 2019 - Return of Reconfigurable Computing

Thoughtworks

Cisco Connect 2018 Singapore - Cisco CMX

NetworkCollaborators

As #1 on Gartner’s information security agenda, CASB is a must-have. But is your business case lined up? Get started now with the definitive CASB business case starter kit. The kit includes: - The Gartner Market Guide to Cloud Access Security Brokers - A CASB justification letter that you can tailor and deliver to your decision-maker - A CASB ROI calculator into which you can enter your assumptions, plus a 3-slide companion executive presentation - A sample Cloud Risk Assessment so you know what to expect when you request this analysis from your CASB - The Netskope Cloud Report, which contains the latest cloud security benchmarks - The 15 Most Critical CASB Use Cases eBook, which will help you understand and prioritize your CASB use cases

The Definitive CASB Business Case Kit - Presentation

Netskope

Threat modeling is a way of thinking about what could go wrong and how to prevent it. Instinctively, we all think this way in regards to our own personal security and safety. When it comes to building software, some software shops either skip the important step of threat modeling in secure software design or, they have tried threat modeling before but haven't quite figured out how to connect the threat models to real world software development and its priorities. In this session, you will learn practical strategies in using threat modeling in secure software design and how to apply risk management in dealing with the threats.

Robert Hurlbut - Threat Modeling for Secure Software Design

centralohioissa

Securing Medical Devices Using Adaptive Testing Methodologies

Daniel Miessler

Netskope Overview

Netskope

Talk2 esc2 muscl-wifi_v1_2b

Sylvain Martinez

Cisco Connect 2018 Singapore - Cisco Incident Response Services

NetworkCollaborators

BeyondCorp Myths: Busted

Ivan Dwyer

It security

Mutten

Mais procurados (20)

Herding Pets and Cattle: Extending Foundational Controls Into the Cloud

Accelerating Digital Leadership

NUS-ISS Learning Day 2019-Complying with new IoT cyber security guide

Modern Security Operations & Common Roles/Competencies

Cisco Connect 2018 Indonesia - Delivering intent for data center networking

Cisco Connect 2018 Indonesia - Building a secure data center

Open Source IDS - How to use them as a powerful fee Defensive and Offensive tool

Forrester zero trust_dna

Cisco connect winnipeg 2018 unlocking business value with network programma...

Seen at InfoSec Europe 2015: Spot your Snowden!

TWISummit 2019 - Return of Reconfigurable Computing

Cisco Connect 2018 Singapore - Cisco CMX

The Definitive CASB Business Case Kit - Presentation

Robert Hurlbut - Threat Modeling for Secure Software Design

Securing Medical Devices Using Adaptive Testing Methodologies

Netskope Overview

Talk2 esc2 muscl-wifi_v1_2b

Cisco Connect 2018 Singapore - Cisco Incident Response Services

BeyondCorp Myths: Busted

It security

Destaque

Single Glass of Pain: See Your World, Maybe You Wish You Hadn't

Zivaro Inc

Good Guys vs Bad Guys: Using Big Data to Counteract Advanced Threats

Zivaro Inc

"Good Guys versus Bad Guys: Using Big Data to Counteract Advanced Threats" was presented with permission at the Rocky Mountain Information Security Conference (RMISC) in May 2014 by Kelly Feagans (Splunk) and Dave Herrald (GTRI). Most organizations collect heaps of machine-generated operational data, but making sense of it and understanding what role it can play in a security program can be overwhelming. This session will help you understand how Splunk can take data from a variety of sources and transform it into meaningful information that you can use to yield greater visibility into your security posture, identify unknown threats and streamline security operations.

Using Big Data to Counteract Advanced Threats

Zivaro Inc

Successfully Deploying IPv6

Zivaro Inc

Successfully Deploying IPv6

Zivaro Inc

IPv6 Security - Hacker Halted 2013

Zivaro Inc

You know the value of SDN, but do you know what architecture best supports an SDN system? This presentation explains the importance of best in-class virtualized networking solutions and how those tools integrate with leading SDN systems. You’ll learn how SDN architecture components, such as Citrix Netscaler, help to converge the management of network and application services into a centralized, extensible orchestration platform. You'll also discover how to automate provisioning and configuration of the entire infrastructure to deliver new applications and services in minutes. This presentation is from a webinar presented by Michael Edwards, Principal Architect GTRI, and Jacob Rutski, Citrix, on May 12, 2016.

Support Software Defined Networking with Dynamic Network Architecture

Zivaro Inc

An overview of Software-Defined Networking (SDN) and the key benefits of moving to a virtualized network, including: - Improved time to market through automation - Optimal trafficking with a global view of the network - Quicker enablement of new services - Reduced operating costs - Improved management and visibility - Simplified operation of network devices From "Introduction to Software Defined Networking" webinar presented by GTRI CTO Scott Hogg on March 10, 2016. Webinar recording: https://youtu.be/gRXnctYDBjE

Software Defined Networking (SDN) Technology Brief

Zivaro Inc

GTRI.com Splunk for Vmware APP

Zivaro Inc

Splunk for Real time alerting and monitoring. www.gtri.com

Zivaro Inc

Splunk Enterprise 6.3 - Splunk Tech Day

Zivaro Inc

GTRI and Cisco discuss how using the internet to run branch network traffic provides a better user experience and reduces costs. You’ll learn the basics of Software-Defined WAN (SD-WAN) and the benefits, including: - Reduced costs - Reliability and security - Flexibility to choose service providers - Optimized traffic flows Presented by Mani Ganesan of Cisco and Michael Edwards of GTRI (http://www.gtri.com) in a webinar on August 10, 2016. Webinar recording at https://youtu.be/08_QpBT07pU.

Software-Defined WAN 101

Zivaro Inc

Combining SDN with VMware’s NSX can accelerate application deployment and delivery in a secure and virtualized network. No longer will your network create a bottleneck when trying to administer new applications. Key topics include: - How SDN allows for innovative ways to use a virtualized network - Why SDN creates greater span of control, network analytics and response - What intelligence can be gained from a global view of the network - How SDN and NSX together allow IT to treat their physical network as a pool of transport capacity that can be consumed and repurposed on demand From: "Software Defined Networking for NSX" webinar presented by Scott Hogg of GTRI and Hunter Hansen of VMware on February 3, 2016. Webinar recording: https://youtu.be/t_3DpN3nIXQ

Software Defined Networking (SDN) with VMware NSX

Zivaro Inc

GTRI Splunk Overview - Splunk Tech Day

Zivaro Inc

Petit Déj' "Ergonomie et SEO" organisé par Use Age le 26 Septembre 2013

Use Age

GTRI Splunk Case Studies - Splunk Tech Day

Zivaro Inc

Big Data Workshop: Splunk and Dell EMC...Better Together

Zivaro Inc

Organizational Change Management (OCM) is a strategic framework on how to manage change. Discover the challenges companies experience during business transformations and get tips and advice for how to successfully execute an initiative. Learn how to effectively drive change within your organization and how changes in technologies, structure, processes and culture should be managed and prepared for ahead of a major transformation initiative. Presented during a GTRI webinar on October 13, 2016.

Organizational Change Management

Zivaro Inc

Enib cours c.a.i. web - séance #1 - html5 css3-js - 1

Horacio Gonzalez

Beyond the Phish with GTRI and Wombat Security Technologies

Zivaro Inc

Destaque (20)

Single Glass of Pain: See Your World, Maybe You Wish You Hadn't

Good Guys vs Bad Guys: Using Big Data to Counteract Advanced Threats

Using Big Data to Counteract Advanced Threats

Successfully Deploying IPv6

IPv6 Security - Hacker Halted 2013

Support Software Defined Networking with Dynamic Network Architecture

Software Defined Networking (SDN) Technology Brief

GTRI.com Splunk for Vmware APP

Splunk for Real time alerting and monitoring. www.gtri.com

Splunk Enterprise 6.3 - Splunk Tech Day

Software-Defined WAN 101

Software Defined Networking (SDN) with VMware NSX

GTRI Splunk Overview - Splunk Tech Day

Petit Déj' "Ergonomie et SEO" organisé par Use Age le 26 Septembre 2013

GTRI Splunk Case Studies - Splunk Tech Day

Big Data Workshop: Splunk and Dell EMC...Better Together

Organizational Change Management

Enib cours c.a.i. web - séance #1 - html5 css3-js - 1

Beyond the Phish with GTRI and Wombat Security Technologies

Semelhante a Post IPv6 Implementation and Security: Now What?

While IPv6 has been a defined standard since 1998, the end-user adoption of this standard is minimal. Less than 1% of Internet peers utilize IPv6 in the course of normal operation. However, IPv6 support within operating systems and network routers is becoming commonplace. While IT personnel continue to be focused on IPv4, IPv6 capabilities may already be active by default on many Internet connected systems within an IT professional's environment. These IPv6 interfaces generate traffic which can bypass traditional controls based on IPv4 technology. Although IPv6 is likely to eclipse IPv4 as the dominant Internet protocol, the path to this state is disorganized and unclear. This state indicates that as IPv6 gains inertia as a legitimate Internet protocol, IT administrators need to be aware of and manage IPv6 traffic on their network with as much vigilance as they would apply to the more commonplace IPv4. Kevin D. Wilkins, CISSP, Senior Network Engineer, iSecure LLC After coursework at the Rochester Institute of Technology, Kevin’s professional experience includes ISP and VOIP operations. Kevin has 10 years of industry experience in system and network engineering and platform management. In the last few years, a focus on information security has brought his experiences together into a consolidated viewpoint of enterprise-wide security policy and implementation. Peter Rounds, Senior Network Engineer, Syracuse University Peter has been a Sr. Network Engineer at Syracuse University for 11 years. He is responsible for maintaining core network infrastructure consisting of Internet edge traffic identification/management, Internet BGP routing and security profile management, campus OSPF and security profile management, and data center network and security profile management. He is responsible for numerous security technologies for the University.

IPv6 Can No Longer Be Ignored

Rochester Security Summit

Roadmap to Next Generation IP Networks: A Review of the Fundamentals

Network Utility Force

Network devices play a crucial role; they are not just in the Data Center. It's the Wifi, VOIP, WAN and recently underlays and overlays. Network teams are essential for operations. It's about time we highlight to the configuration management community the importance of Network teams and include them in our discussions. This talk describes the personal experience of systems engineer on how to kickstart a network team into automation. Most importantly, how and where to start, challenges faced, and progress made. The network team in question uses multi-vendor network devices in a large traditional enterprise. NetDevOps, we do not hear that term as frequent as we should. Every time we hear about automation, or configuration management, it is usually the application, if not, it is the systems that host the applications. How about the network systems and devices that interconnect and protects our services? This talk aims to describe the journey a systems engineer had as part of an automation assignment with the network management team. Building from lessons learned and challenges faced with system automation, how one can kickstart an automation project and gain small wins quickly. Where and how to start the journey? What to avoid? What to prioritise? How to overcome the lack of network skills for the automation engineer and lack of automation and Linux/Unix skills for network engineers. What challenges were faced and how to overcome them? What fights to give up? Where do I see network automation and configuration management as a systems engineer? What are the status quo and future expectations?

Network Automation Journey, A systems engineer NetOps perspective

Walid Shaari

MySQL Enterprise Transparent Data Encryption (TDE) protects your critical data by enabling data-at-rest encryption in the database. It protects the privacy of your information, prevents data breaches and helps meet regulatory requirements including the Payment Card Industry Data Security Standard (PCI DSS), Health Insurance Portability and Accountability Act (HIPAA) and numerous others. MySQL Enterprise Audit provides an easy to use, policy-based auditing solution that helps organizations implement stronger security controls and satisfy regulatory compliance. As more sensitive data is collected, stored and used online, database auditing becomes an essential component of any security strategy. To guard against the misuse of information, popular compliance regulations including HIPAA, Sarbanes-Oxley, and the PCI Data Security Standard require organizations to track access to information. MySQL Enterprise Firewall guards against cyber security threats by providing real-time protection against database specific attacks. Any application that has user-supplied input, such as login and personal information fields is at risk. Database attacks don't just come from applications. Data breaches can come from many sources including SQL virus attacks or from employee misuse. Successful attacks can quickly steal millions of customer records containing personal information, credit card, financial, healthcare or other valuable data. MySQL Enterprise Masking and De-identification provides an easy to use, built-in database solution to help organizations protect sensitive data from unauthorized uses by hiding and replacing real values with substitutes. MySQL Enterprise Edition provides ready to use external authentication modules to easily integrate existing security infrastructures, including Linux Pluggable Authentication Modules (PAM) and Windows Active Directory.

MySQL Day Paris 2018 - MySQL & GDPR; Privacy and Security requirements

Olivier DASINI

Creating a Climate for Innovation on Internet2 - Eric Boyd Senior Director, S...

Ed Dodds

Last week SnapLogic sponsored partner event Splunk Worldwide Users' Conference in Las Vegas. The theme of the conference was "Your Data, No Limits." In keeping with this theme, SnapLogic helps Splunk customers access more comprehensive analytics by integrating as much data as possible from as many sources as possible, and by streamlining the business process of loading data in Splunk, detecting problems, and facilitating actions that result in a prompt resolution. To learn more, visit: http://www.snaplogic.com/.

Webinar: Improve Splunk Analytics and Automate Processes with SnapLogic

SnapLogic

OGF Introductory Overview - OGF 44 at EGI Conference 2015

Alan Sill

Learn how HP Fortify On Demand is leveraging Fortify Runtime Protection to protect our own cloud services. See tips and techniques learned from deploying Runtime Protection in the real world, and learn how you can leverage the same technology in your environment without compromising performance or uptime. You’ll come away with tips on deploying, managing, and integrating Fortify Runtime Protection so you can block attacks while providing your developers with line-of-code detail regarding how to close the holes.

Runtime Protection in the Real World

Brooks Garrett

Cisco has developed a comprehensive approach, the Mass Scale Networking (MSN) Transformation Journey, that covers both aspects. On the technology front, technologies such as Segment Routing, EVPN, orchestration, automation, HW/SW disaggregation are covered. On the operating model side, the use of advanced APIs, model driven operations, Infrastructure as Code (IaC), and others are also covered. The primary objective of this session being to create a methodical and structured approach to drive an SP’s MSN Journey.

Mass Scale Networking

Steve Iatrou

World of many (OpenStack) clouds - the Making of the Intercloud

Lew Tucker

Redrawing the Cyber Defense Frontier

Joe Hage

Final Report

San Kai Hong

Introduction to the Open Grid Forum community and the document production process, as well as several primary application arenas for OGF specifications, given at the co-located International Conference on Cloud and Autonomic Computing (CAC 2014), IEEE International Conference on Self-Adaptive and Self-Organizing Systems (SASO 2014) and the IEEE International Conference on Peer-to-Peer Computing (P2P’14) conferences, September 8-12, 2014 at Imperial College in London, UK.

OGF Introductory Overview - FAS* 2014

Alan Sill

Cisco Services is providing a behind-the-scenes perspective of its decision management and smart analytics programs. Success for Cisco is more than the technology or any one project. It's a mix of art, philosophy and technology that allows analytics to keep adding value to the business. You will hear how the program has evolved over the last 6 years and will explore different levels of smart analytics. Along the way, you will hear how the team grew a simple idea into a patent-pending resource allocation model. For more information on the Loras College 2014 Business Analytics Symposium, the Loras College MBA in Business Analytics or the Loras College Business Analytics Certificate visit www.loras.edu/mba or www.loras.edu/bigdata.

Loras College 2014 Business Analytics Symposium | Aaron Lanzen: Creating Busi...

Cartegraph

Kinber ipv6-education-healthcare

Network Utility Force

Business applications like ERP, CRM, SRM, and others are one of the major topics in the field of computer security as these applications store business data and any vulnerabilities in these applications can cause a significant monetary and reputational loss or even stoppage of business. Nonetheless, people still do not pay much attention to the technical side of SAP security. As for SAP, we saw different vulnerabilities at all levels (architecture, software vulnerabilities and implementation).

Attacking SAP users with sapsploit

ERPScan

IRJET - Reliable and Efficient Revocation and Data Sharing using Identity...

IRJET Journal

IRJET- Redsc: Reliablity of Data Sharing in Cloud

IRJET Journal

OpenStack Infrastructure at any Scale - Simple is BEST!? - - OpenStack最新情報セミ...

VirtualTech Japan Inc.

Tech 2 Tech IPv6 presentation

Jisc

Semelhante a Post IPv6 Implementation and Security: Now What? (20)

IPv6 Can No Longer Be Ignored

Roadmap to Next Generation IP Networks: A Review of the Fundamentals

Network Automation Journey, A systems engineer NetOps perspective

MySQL Day Paris 2018 - MySQL & GDPR; Privacy and Security requirements

Creating a Climate for Innovation on Internet2 - Eric Boyd Senior Director, S...

Webinar: Improve Splunk Analytics and Automate Processes with SnapLogic

OGF Introductory Overview - OGF 44 at EGI Conference 2015

Runtime Protection in the Real World

Mass Scale Networking

World of many (OpenStack) clouds - the Making of the Intercloud

Redrawing the Cyber Defense Frontier

Final Report

OGF Introductory Overview - FAS* 2014

Loras College 2014 Business Analytics Symposium | Aaron Lanzen: Creating Busi...

Kinber ipv6-education-healthcare

Attacking SAP users with sapsploit

IRJET - Reliable and Efficient Revocation and Data Sharing using Identity...

IRJET- Redsc: Reliablity of Data Sharing in Cloud

OpenStack Infrastructure at any Scale - Simple is BEST!? - - OpenStack最新情報セミ...

Tech 2 Tech IPv6 presentation

Mais de Zivaro Inc

IT investments, by their nature, must be adjusted over time to fit ever-changing business requirements. If you’ve been tasked with ‘right-sizing’ your Citrix environment – or want to show value by getting ahead of that request – join Craig Jeske, Director of Engineering at GTRI, for a rundown of Citrix optimization techniques and tasks. The interactive discussion will cover topics including: - Auditing and assessment frameworks - Use case development - Security and access concerns & controls - Hosting strategies - User experience & feedback View the webinar here: https://youtu.be/SV9N-6bwbSY

How to Rightsize Your Citrix Investment

Zivaro Inc

When it comes to collaboration deployments, many organizations struggle to decide between on-premise or cloud deployments. It’s critical to understand the benefits and drawbacks of each option before moving forward. This webinar from Global Technology Resources, Inc. (GTRI) and Cisco includes collaboration considerations such as: - Costs, including CapEx vs. OpEx considerations and TCO - Resources, including outsourced on in-house expertise - Migration strategies and risk assessments - Disaster recovery View the webinar here: https://youtu.be/QA8R39rDc7Y

On-Prem vs. Cloud Collaboration Showdown

Zivaro Inc

Insider threats come in a variety of forms and may be malicious or simply the result of negligence. Insider attacks can cause more damage than outsider threats, so it is important that organizations understand how to protect against and remedy insider threats. Learn more about insider threats and GTRI's Insider Threat Security Solution in this presentation. (Source: GTRI) This presentation includes information about Cisco Stealthwatch, which goes beyond conventional threat detection and harnesses the power of NetFlow. With it, you get advanced network visibility, analytics, and protection. You see everything happening across your network and data center. And you can uncover attacks that bypass the perimeter and infiltrate your internal environment. (Source: Cisco)

Insider Threat Solution from GTRI

Zivaro Inc

When it comes to Software Defined Networking (SDN) Security there are two sides of the story. This webinar addresses both sides – what security vulnerabilities exist in modern SDN technologies and how SDN technologies can create new security protections. Also included are use cases that SDN solutions can provide and the new applications of SDN that can secure modern enterprise and data center environments. Presented by GTRI CTO, Scott Hogg, in a webinar on June 9, 2016. For more information, visit http://www.gtri.com/.

SDN Security: Two Sides of the Same Coin

Zivaro Inc

Many companies have discovered that there is “gold” in their server log files and machine data. Closely monitoring this data can improve security, help prevent costly outages and reduce the time it takes to recover from a problem. In this presentation, GTRI’s Micah Montgomery explains how operational intelligence can be gained from machine data, and how Splunk Enterprise can turn this data into actionable insights. Also presenting was NetApp’s Steve Fritzinger, who discussed how to manage the challenges of capturing and storing a flood of data without breaking the bank. Presented at "Denver Big Data Analytics Day" on May 18, 2016 at GTRI.

Denver Big Data Analytics Day

Zivaro Inc

Cisco ACI: A New Approach to Software Defined Networking, presented by Michael Edwards from GTRI. Learn more about Cisco's Application Centric Infrastructure (ACI). As a policy-based automation solution, Cisco ACI is a different approach to Software Defined Networking (SDN). This presentation uncovers what makes it simple, agile and application centric, and how it can reduce errors and accelerate application deployment from weeks to minutes. Webinar can be found here: https://youtu.be/WFY3kUwTAw4 Have questions? Contact GTRI, 1.877.603.1984.

Cisco ACI: A New Approach to Software Defined Networking

Zivaro Inc

Splunk Fundamentals: Investigations with Core Splunk - Splunk Tech Day

Zivaro Inc

GTRI Splunk Elite Partner Capabilities

Zivaro Inc

Mais de Zivaro Inc (8)

How to Rightsize Your Citrix Investment

On-Prem vs. Cloud Collaboration Showdown

Insider Threat Solution from GTRI

SDN Security: Two Sides of the Same Coin

Denver Big Data Analytics Day

Cisco ACI: A New Approach to Software Defined Networking

Splunk Fundamentals: Investigations with Core Splunk - Splunk Tech Day

GTRI Splunk Elite Partner Capabilities

Último

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

Scaling API-first – The story of a global engineering organization

Radu Cotescu

Partners Life - Insurer Innovation Award 2024

The Digital Insurer

Strategies for Landing an Oracle DBA Job as a Fresher

Remote DBA Services

🐬 The future of MySQL is Postgres 🐘

RTylerCroy

Abhishek Deb(1), Mr Abdul Kalam(2) M. Des (UX) , School of Design, DIT University , Dehradun. This paper explores the future potential of AI-enabled smartphone processors, aiming to investigate the advancements, capabilities, and implications of integrating artificial intelligence (AI) into smartphone technology. The research study goals consist of evaluating the development of AI in mobile phone processors, analyzing the existing state as well as abilities of AI-enabled cpus determining future patterns as well as chances together with reviewing obstacles as well as factors to consider for more growth.

Exploring the Future Potential of AI-Enabled Smartphone Processors

debabhi2

GenAI Risks & Security Meetup 01052024.pdf

lior mazor

AWS Community Day CPH - Three problems of Terraform

Andrey Devyatkin

Created by Mozilla Research in 2012 and now part of Linux Foundation Europe, the Servo project is an experimental rendering engine written in Rust. It combines memory safety and concurrency to create an independent, modular, and embeddable rendering engine that adheres to web standards. Stewardship of Servo moved from Mozilla Research to the Linux Foundation in 2020, where its mission remains unchanged. After some slow years, in 2023 there has been renewed activity on the project, with a roadmap now focused on improving the engine’s CSS 2 conformance, exploring Android support, and making Servo a practical embeddable rendering engine. In this presentation, Rakhi Sharma reviews the status of the project, our recent developments in 2023, our collaboration with Tauri to make Servo an easy-to-use embeddable rendering engine, and our plans for the future to make Servo an alternative web rendering engine for the embedded devices industry. (c) Embedded Open Source Summit 2024 April 16-18, 2024 Seattle, Washington (US) https://events.linuxfoundation.org/embedded-open-source-summit/ https://ossna2024.sched.com/event/1aBNF/a-year-of-servo-reboot-where-are-we-now-rakhi-sharma-igalia

A Year of the Servo Reboot: Where Are We Now?

Igalia

This presentations targets students or working professionals. You may know Google for search, YouTube, Android, Chrome, and Gmail, but did you know Google has many developer tools, platforms & APIs? This comprehensive yet still high-level overview outlines the most impactful tools for where to run your code, store & analyze your data. It will also inspire you as to what's possible. This talk is 50 minutes in length.

Powerful Google developer tools for immediate impact! (2023-24 C)

wesley chun

The presentation explores the development and application of artificial intelligence (AI) from its inception to its current status in the modern world. The term "artificial intelligence" was first coined by John McCarthy in 1956 to describe efforts to develop computer programs capable of performing tasks that typically require human intelligence. This concept was first introduced at a conference held at Dartmouth College, where programs demonstrated capabilities such as playing chess, proving theorems, and interpreting texts. In the early stages, Alan Turing contributed to the field by defining intelligence as the ability of a being to respond to certain questions intelligently, proposing what is now known as the Turing Test to evaluate the presence of intelligent behavior in machines. As the decades progressed, AI evolved significantly. The 1980s focused on machine learning, teaching computers to learn from data, leading to the development of models that could improve their performance based on their experiences. The 1990s and 2000s saw further advances in algorithms and computational power, which allowed for more sophisticated data analysis techniques, including data mining. By the 2010s, the proliferation of big data and the refinement of deep learning techniques enabled AI to become mainstream. Notable milestones included the success of Google's AlphaGo and advancements in autonomous vehicles by companies like Tesla and Waymo. A major theme of the presentation is the application of generative AI, which has been used for tasks such as natural language text generation, translation, and question answering. Generative AI uses large datasets to train models that can then produce new, coherent pieces of text or other media. The presentation also discusses the ethical implications and the need for regulation in AI, highlighting issues such as privacy, bias, and the potential for misuse. These concerns have prompted calls for comprehensive regulations to ensure the safe and equitable use of AI technologies. Artificial intelligence has also played a significant role in healthcare, particularly highlighted during the COVID-19 pandemic, where it was used in drug discovery, vaccine development, and analyzing the spread of the virus. The capabilities of AI in healthcare are vast, ranging from medical diagnostics to personalized medicine, demonstrating the technology's potential to revolutionize fields beyond just technical or consumer applications. In conclusion, AI continues to be a rapidly evolving field with significant implications for various aspects of society. The development from theoretical concepts to real-world applications illustrates both the potential benefits and the challenges that come with integrating advanced technologies into everyday life. The ongoing discussion about AI ethics and regulation underscores the importance of managing these technologies responsibly to maximize their their benefits while minimizing potential harms.

Artificial Intelligence: Facts and Myths

Joaquim Jorge

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

Real Time Object Detection Using Open CV

Khem

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

A Domino Admins Adventures (Engage 2024)

Gabriella Davis

With more memory available, system performance of three Dell devices increased, which can translate to a better user experience Conclusion When your system has plenty of RAM to meet your needs, you can efficiently access the applications and data you need to finish projects and to-do lists without sacrificing time and focus. Our test results show that with more memory available, three Dell PCs delivered better performance and took less time to complete the Procyon Office Productivity benchmark. These advantages translate to users being able to complete workflows more quickly and multitask more easily. Whether you need the mobility of the Latitude 5440, the creative capabilities of the Precision 3470, or the high performance of the OptiPlex Tower Plus 7010, configuring your system with more RAM can help keep processes running smoothly, enabling you to do more without compromising performance.

Boost PC performance: How more available memory can improve productivity

Principled Technologies

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

💉💊+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHABI}}+971581248768 +971581248768 Mtp-Kit (500MG) Prices » Dubai [(+971581248768**)] Abortion Pills For Sale In Dubai, UAE, Mifepristone and Misoprostol Tablets Available In Dubai, UAE CONTACT DR.Maya Whatsapp +971581248768 We Have Abortion Pills / Cytotec Tablets /Mifegest Kit Available in Dubai, Sharjah, Abudhabi, Ajman, Alain, Fujairah, Ras Al Khaimah, Umm Al Quwain, UAE, Buy cytotec in Dubai +971581248768''''Abortion Pills near me DUBAI | ABU DHABI|UAE. Price of Misoprostol, Cytotec” +971581248768' Dr.DEEM ''BUY ABORTION PILLS MIFEGEST KIT, MISOPROTONE, CYTOTEC PILLS IN DUBAI, ABU DHABI,UAE'' Contact me now via What's App…… abortion Pills Cytotec also available Oman Qatar Doha Saudi Arabia Bahrain Above all, Cytotec Abortion Pills are Available In Dubai / UAE, you will be very happy to do abortion in Dubai we are providing cytotec 200mg abortion pill in Dubai, UAE. Medication abortion offers an alternative to Surgical Abortion for women in the early weeks of pregnancy. We only offer abortion pills from 1 week-6 Months. We then advise you to use surgery if its beyond 6 months. Our Abu Dhabi, Ajman, Al Ain, Dubai, Fujairah, Ras Al Khaimah (RAK), Sharjah, Umm Al Quwain (UAQ) United Arab Emirates Abortion Clinic provides the safest and most advanced techniques for providing non-surgical, medical and surgical abortion methods for early through late second trimester, including the Abortion By Pill Procedure (RU 486, Mifeprex, Mifepristone, early options French Abortion Pill), Tamoxifen, Methotrexate and Cytotec (Misoprostol). The Abu Dhabi, United Arab Emirates Abortion Clinic performs Same Day Abortion Procedure using medications that are taken on the first day of the office visit and will cause the abortion to occur generally within 4 to 6 hours (as early as 30 minutes) for patients who are 3 to 12 weeks pregnant. When Mifepristone and Misoprostol are used, 50% of patients complete in 4 to 6 hours; 75% to 80% in 12 hours; and 90% in 24 hours. We use a regimen that allows for completion without the need for surgery 99% of the time. All advanced second trimester and late term pregnancies at our Tampa clinic (17 to 24 weeks or greater) can be completed within 24 hours or less 99% of the time without the need surgery. The procedure is completed with minimal to no complications. Our Women's Health Center located in Abu Dhabi, United Arab Emirates, uses the latest medications for medical abortions (RU-486, Mifeprex, Mifegyne, Mifepristone, early options French abortion pill), Methotrexate and Cytotec (Misoprostol). The safety standards of our Abu Dhabi, United Arab Emirates Abortion Doctors remain unparalleled. They consistently maintain the lowest complication rates throughout the nation. Our Physicians and staff are always available to answer questions and care for women in one of the most difficult times in their lives. The decision to have an abortion at the Abortion Cl

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@

MINDCTI Revenue Release Quarter One 2024

MIND CTI

Post IPv6 Implementation and Security: Now What?

1. 8/23/2013 1© 2013 Global Technology Resources, Inc. All Rights Reserved. Post IPv6 Implementation and Security: Now What? Scott Hogg GTRI - Director of Technology Solutions Chair Emeritus – RMv6TF CCIE #5133, CISSP #4610 Digital Government Institute Government IPv6 & Networking Conference & Expo August 21, 2013 Jay Wiley Senior Advisor, CISO IRS CISSP-ISSEP #279827

2. You Now Have an IPv6 Network • You have IPv6 deployed at your Internet edge • DNS triggers if an application makes an IPv4 connection or an IPv6 connection (Happy Eyeballs) • How do you know if a connecting is taking place over IPv4 or IPv6? We don’t want the users to know. 8/23/2013 2© 2013 Global Technology Resources, Inc. All Rights Reserved.

3. Securing Two Protocols • Need to have equal protections for IPv4 and IPv6. • You are only as strong as the weakest of the two stacks. • Running dual stack will give you at least twice the number of vulnerabilities and require twice the work to secure. • Do all of your security protections work equally well with IPv4 and IPv6? – WAFs, IPS, DPI, e-mail/web content filtering, etc. IPv4 IPv6 8/23/2013 3© 2013 Global Technology Resources, Inc. All Rights Reserved.

4. Combined IPv4/IPv6 Security Policy Any-IPv4 V4-Host-1 Source Destination Protocol Action HTTP Permit Any Any Any Deny Any-IPv6 V6-Host-1 HTTP Permit Any-IPv6 V6-Host-2 FTP Permit Any V4-Host-1 V6-Host-1 Echo- Request Permit V4-Host-3 V6-Host-3 Any HTTP Permit Rule 1 2 3 4 5 6 8/23/2013 4© 2013 Global Technology Resources, Inc. All Rights Reserved.

5. TCP/IPv6 Troubleshooting Application Layer Transport Layer Internet Layer Link Layer IPv4 IPv6 ARP ICMP IGMP TCP UDP SCTPTelnet SSH FTP TFTP DHCP DNS SMTP HTTP SSL SNMP BGP DCCP T1/E1/T3/E3 SONET SDH ICMPv6 NDP MLD Ethernet WiFi 8/23/2013 5© 2013 Global Technology Resources, Inc. All Rights Reserved.

6. IPv6 Network Management • Good engineering practices dictate that when we prepare to build something we must plan for the long-term operations. • Many organizations lack internal and external visibility to their IPv6-enabled applications. • NMSs must be able to communicate with IPv6- enabled devices. • External testing services, looking glasses, E-mail reflectors. • Administrators need a “jump-box” or remote testing platform. 8/23/2013 6© 2013 Global Technology Resources, Inc. All Rights Reserved.

8. Summary • Strive to attain equal protections for IPv4 and IPv6 connectivity. Ask your vendors. • Consider investing in people and processes, not just technology. – People need the ability to proactively manage and reactively troubleshoot IPv6. – Your processes need to allow both protocols to be maintained. • Consider how using two IP protocols will change how you operate your IT infrastructure. 8/23/2013 8© 2013 Global Technology Resources, Inc. All Rights Reserved.

9. Resources from NWW blog http://www.networkworld.com/community/hogg • 7/24/13 - IPv6 Network Management – http://www.networkworld.com/community/blog/ipv6-network-management • 4/23/13 - Life in a Dual Stack World – http://www.networkworld.com/community/blog/life-dual-stack-world • 9/11/12 - Web Application Firewalls and IPv6 – http://www.networkworld.com/community/blog/web-application-firewalls- and-ipv6 • 7/31/12 - Dual-Stack Will Increase Operating Expenses – http://www.networkworld.com/community/blog/dual-stack-will-increase- operating-expenses • 3/4/12 - Should You Allow Inbound E-mail Over IPv6? – http://www.networkworld.com/community/blog/should-you-allow-inbound- e-mail-over-ipv6 • 1/19/12 - The Future of Firewall Policies – http://www.networkworld.com/community/blog/future-firewall-policies • 5/20/11 - Troubleshooting IPv6 Networks and Systems – http://www.networkworld.com/community/blog/troubleshooting-ipv6- networks-and-systems 8/23/2013 9© 2013 Global Technology Resources, Inc. All Rights Reserved.

10. Question and Answer Q: & A: SHogg@GTRI.com Mobile: 303-949-4865 Twitter: @scotthogg 8/23/2013 10© 2013 Global Technology Resources, Inc. All Rights Reserved. Jay.Wiley@IRS.gov Mobile: 214-364-2030 Twitter: @wiley_jay

Post IPv6 Implementation and Security: Now What?

Recomendados

Recomendados

Mais conteúdo relacionado

Mais procurados

Mais procurados (20)

Destaque

Destaque (20)

Semelhante a Post IPv6 Implementation and Security: Now What?

Semelhante a Post IPv6 Implementation and Security: Now What? (20)

Mais de Zivaro Inc

Mais de Zivaro Inc (8)

Último

Último (20)

Post IPv6 Implementation and Security: Now What?