SlideShare uma empresa Scribd logo

W_F_Slater_and_ITMT_535_Students_for_Forensecure_2016_v15_FINAL

‱Transferir como PPSX, PDF‱
‱
L
Louis-Adrien Philias
1 de 59
4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 1
4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 2 Is Your Data Center Prepared for the Zombie Apocalypse?
IS YOUR DATA CENTER PREPARED FOR THE ZOMBIE APOCALYPSE? WILLIAM F. SLATER, III, M.S. MBA, PMP, CISSP, CISA ADJUNCT PROFESSOR, IIT SCHOOL OF APPLIED TECHNOLOGY -AND- LOUIS-PHILIAS, SEBRINA NEAL, JORIS EKPANGBO & TEMILOLU OLANIYAN ITMT 535 – DATA CENTER ARCHITECTURE STUDENTS A PRESENTATION FOR FORENSECURE 2016
AGENDA ❖Introduction  What is a Data Center?  Traditional Data Center Security Concepts and Limits  The Zombie Apocalypse & how it can expose n our Data Centers?  How can we prepare our Data Centers for the Zombie Apocalypse? ❖Conclusion ❖Questions ❖References 4/1/2016 4Is Your Data Center Prepared for the Zombie Apocalypse?
INTRODUCTION 4/1/2016 5Is Your Data Center Prepared for the Zombie Apocalypse?
INTRODUCTION 4/1/2016 6Is Your Data Center Prepared for the Zombie Apocalypse?
WHAT IS A DATA CENTER? 4/1/2016 7Is Your Data Center Prepared for the Zombie Apocalypse?
DATA CENTER DEFINITION It generally includes redundant or backup power supplies, redundant data communications connections, environmental controls (e.g., air conditioning, fire suppression) and various security devices. Large data centers are industrial scale operations using as much electricity as a small town. 31 March 2016 8Is Your Data Center Prepared for the Zombie Apocalypse?
WHY DATA CENTER MATTERS? “The internet was done so well that most people think of it as a natural resource like the Pacific Ocean” -Alan Kay-
TRADITIONAL DATA CENTER SECURITY CONCEPTS & LIMITS 4/1/2016 10Is Your Data Center Prepared for the Zombie Apocalypse?
CIA – THE SECURITY TRIAD 114/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? TRADITIONAL DATA CENTER SECURITY CONCEPTS
TRADITIONAL DATA CENTER SECURITY CONCEPTS The security in a Data Center is based on safeguarding of data and other IT assets (the CIA TRIAD) and consists of two types: ❖The Physical Security ❖The Logical Security 4/1/2016 12Is Your Data Center Prepared for the Zombie Apocalypse?
TRADITIONAL DATA CENTER SECURITY CONCEPTS ❖Physical security building best practices: 1. Build on the right spot 2. Have redundant utilities, 3. Pay attention to the walls, how they are built 4. Avoid windows 5. Use landscaping for protection, 6. Keep a 100-foot buffer zone around the site, 7. Use retractable crash barriers at vehicle entry points, 8. Plan for bomb detection 9. Limit entry points, 10. Make fire doors exit only, Sarah Scalet 4/1/2016 13Is Your Data Center Prepared for the Zombie Apocalypse?
4/1/2016 14Is Your Data Center Prepared for the Zombie Apocalypse? TRADITIONAL DATA CENTER SECURITY CONCEPTS Sarah Scalet
11. Use cameras as much as possible, 12. Protect the building's machinery, 13. Plan for secure air handling, 14. Ensure nothing can hide in the walls and ceilings, 15. Use two-factor authentication 16. Harden the core with security layers 17. Watch the exits too, 18. Prohibit food in the computer rooms, 19. Install visitor restrooms. ❖The logical security (Antivirus software, firewalls and intrusion-detection systems for instance) 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 15 Sarah Scalet
LIMITS
LIMITS ❖Be Diligent Against the Biggest Threat: People â–Ș Whether it is intentional sabotage, social engineering, carelessness or lack of following a defined policy, people working in the facility can be the biggest risk. For example, social engineering is a common threat because most people by nature want to be helpful. It’s important to train people to stick to the security policy and require them to be 100 percent accountable for their access. â–Ș Furthermore, the redundancy of IT equipment is the first goal to meet in any data center to assure its availability, to make it free of disruption. But the people working in a data center are its most important « engine », and cannot be redundant. 4/1/2016 17Is Your Data Center Prepared for the Zombie Apocalypse?
THE ZOMBIE APOCALYPSE & HOW IT CAN EXPOSE OUR DATA CENTERS 4/1/2016 18Is Your Data Center Prepared for the Zombie Apocalypse?
WHAT ARE ZOMBIES? 4/1/2016 19Is Your Data Center Prepared for the Zombie Apocalypse?
WHAT ARE ZOMBIES? ❖A zombie (Haitian French: zombi, Haitian Creole: zonbi) is a fictional undead being created through the reanimation of a human corpse. ❖The English word "zombie" is first recorded in 1819, in a history of Brazil by the poet Robert Southey, in the form of "zombi". The Oxford English Dictionary gives the origin of the word as West African, and compares it to the Kongo words nzambi (god) and zumbi (fetish). ❖One of the first books to expose Western culture to the concept of the voodoo zombie was The Magic Island by W.B. Seabrook in 1929. This is the sensationalized account of a narrator who encounters voodoo cults in Haiti and their resurrected thralls. 4/1/2016 20Is Your Data Center Prepared for the Zombie Apocalypse?
THE STORY OF FELICIA FELIX MENTOR 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 21 Felicia Felix-Mentor was a Haitian woman believed to have been made into a zombie in the early part of the 20th century. She reportedly died in 1907, after a sudden illness of the type that Haitian belief finds to be characteristic of a person marked to be made into a zombie. In 1936 a woman in ragged clothing was found wandering the streets, and made her way to a farm which she claimed belonged to her father. The owners identified the woman as Felicia Felix- Mentor, long thought dead, and Felix-Mentor’s husband also confirmed this. Due to her poor health, she was sent to a government hospital. A doctor who interviewed her described her behavior. Her occasional outbursts of laughter were devoid of emotion, and very frequently she spoke of herself in either the first or the third person without any sense of discrimination. She had lost all sense of time and was quite indifferent to the world of things around her.
WEST AFRICAN ZOMBIES (BENIN) 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 22
WHAT IS THE ZOMBIE APOCALYPSE? ❖Intimately tied to the concept of the modern zombie is the "zombie apocalypse"; the breakdown of society as a result of an initial zombie outbreak that spreads. This archetype has emerged as a prolific subgenre of apocalyptic fiction and has been portrayed in many zombie-related media after Night of the Living Dead. In a zombie apocalypse, a widespread (usually global) rise of zombies hostile to human life engages in a general assault on civilization. Victims of zombies may become zombies themselves. This causes the outbreak to become an exponentially growing crisis: the spreading phenomenon swamps normal military and law enforcement organizations, leading to the panicked collapse of civilized society until only isolated pockets of survivors remain, scavenging for food and supplies in a world reduced to a pre- industrial hostile wilderness. ❖This fictional event has gained gradually recognition: â–Ș In government media â–Ș On 18 May 2011, the United States' Centers for Disease Control and Prevention (CDC) published a graphic novel, Preparedness 101: Zombie Apocalypse providing tips to survive a zombie invasion as a "fun new way of teaching the importance of emergency4/1/2016 23Is Your Data Center Prepared for the Zombie Apocalypse?
WHAT IS THE ZOMBIE APOCALYPSE? â–Ș In music Michael Jackson's music video Thriller (1983), in which he dances with a troop of zombies, has been preserved as a cultural treasure by the Library of Congress' National Film Registry â–Ș In literature Max Brooks's novel World War Z (2006) became a New York Times bestseller. â–Ș In theoretical academic papers Adam Chodorow of the Sandra Day O'Connor College of Law at Arizona State University investigated the estate and income tax implications of a zombie apocalypse under United States federal and state tax codes. 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 24
NOTABLE ORGANIZATIONS THAT BELIEVE IN THE ZOMBIE APOCALYPSE 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 25
WHAT COULD HAPPEN? 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 26
AMERICAN CITIES – BEST AND WORST PLACES FOR THE ZOMBIE APOCALYPSE 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 27
THE ZOMBIE APOCALYPSE THREAT & HOW CAN IT EXPOSE OUR DATA CENTERS ❖Threat modeling (often related to the logical security in Data Center) There are at least three general approaches to threat modeling: ❖Attacker-centric Attacker-centric threat modeling starts with an attacker, and evaluates their goals, and how they might achieve them. Attacker's motivations are often considered, for example, "The NSA wants to read this email," or "Jon wants to copy this DVD and share it with his friends." This approach usually starts from either entry points or assets ❖Software-centric Software-centric threat modeling (also called 'system-centric,' 'design-centric,' or 'architecture- centric') starts from the design of the system, and attempts to step through a model of the system, looking for types of attacks against each element of the model. This approach is used in threat modeling in Microsoft's Security Development Lifecycle ❖Asset-centric Asset-centric threat modeling involves starting from assets entrusted to a system, such as a collection of sensitive personal information 4/1/2016 28Is Your Data Center Prepared for the Zombie Apocalypse?
Any high security data center can actually prevent any disaster including a zombie apocalypse : ❖A hardened, secure, windowless facility will keep the staff and the servers safe and protect them from hordes of brain-hungry, shambling corpses pounding at the front door ❖If “clever” zombies somehow manage to get hold of a keycard or passcode, multi-factor security that includes biometrics (zombies, after all, don’t have the body warmth and heartbeats of a living human) should prevent the flesh-eaters from getting in ❖What if the walking dead attack during a shift change at the local power plant? No problem: your uninterruptible power supply (UPS) will bridge the few seconds it takes for the generators to reach full power 4/1/2016 29Is Your Data Center Prepared for the Zombie Apocalypse? THE ZOMBIE APOCALYPSE THREAT & HOW CAN IT EXPOSE OUR DATA CENTERS
❖Having a secondary site can be a nice safeguard if zombies find a hole in security at a less secure site. The remaining question is: What if the danger comes from within the data center? 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 30 THE ZOMBIE APOCALYPSE THREAT & HOW CAN IT EXPOSE OUR DATA CENTERS
Are you going to quarantine them? Or kill them? No logic would lead the contaminated staff so the worst has to be expected. The data center will be likely to be destroyed because : ‱ Delete/modify the data ‱ Infect other people ‱ Causing a Virus to spread ‱ Press the RED button The most astonishing fact is that there are no palliative solutions for those dramatic events up to now in any data center disaster recovery plan. 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 31 THE ZOMBIE APOCALYPSE THREAT & HOW CAN IT EXPOSE OUR DATA CENTERS
HOW WILL YOU KNOW THE ZOMBIE APOCALYPSE IS HAPPENING? Source: http://hisz.rsoe.hu/alertmap/index2.php?area=usa&lang=eng RSOE - Emergency and Disaster Information Service 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 31
“Noah did not wait until it was raining to start building the Ark.” 4/1/2016 33 “BETTER SAFE THAN SORRY” Is Your Data Center Prepared for the Zombie Apocalypse?
“BETTER SAFE THAN SORRY” ❖Data center designers generally do a good job preparing for conventional risks like earthquakes, fires, floods, and hurricanes, but if the disaster recovery plan doesn’t include provisions for dealing with the undead, the risk mitigation strategy has a gaping hole ❖Unlike conventional disaster recovery (DR)/business continuity planning (BCP), zombie preparedness has a unique set of goals beyond data protection and business resumption: Ensure the long-term Survivability of your facilities AND your people 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 34
HOW CAN WE PREPARE OUR DATA CENTERS FOR THE ZOMBIE APOCALYPSE? 4/1/2016 35Is Your Data Center Prepared for the Zombie Apocalypse?
NECESSARY SURVIVAL KIT : WATER 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 35
NECESSARY SURVIVAL KIT : FOOD 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 36
NECESSARY SURVIVAL KIT : WEAPONS 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 37
DATA CENTER FORTIFICATION CONCEPTS TO SURVIVE A ZOMBIE APOCALYPSE ❖Shelter in Place ❖Highly-Available, Redundant â–Ș Power â–Ș Cooling â–Ș Communications ❖Entertainment ❖Communications Equipment (Raspberry Pi, radio FM transmitter) ❖Sleeping quarters ❖Sanitary Facilities ❖Sensors (presence sensors etc) ❖First-Aid Kits ❖Medical Supplies 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 39
LET’S BE PRAGMATIC! Odds are, an outbreak of zombies is for now unlikely to happen. But there are still plenty of other potential threats that could spell disaster for your data center if you’re not prepared. So make sure you take the time to consider all possibilities as you build out your IT infrastructure, have a disaster plan in place and hold a test drill every so often to make sure everyone knows what to do to keep your facilities online. Always best to prepare for zombies, even when there is no perceived threat of zombies 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 40
OUR RECOMMENDATIONS ❖Improve your Disaster Recovery Plan and your Business Continuity Plan ❖Actively fortify your Data Center ❖Equip and Train every member of your Data Center Staff ❖Plan to for the Long-Term Survivability of the Human Element ❖Take the Online Quiz: http://bit.ly/1MJRVLn 4/1/2016 41Is Your Data Center Prepared for the Zombie Apocalypse?
EVEN MORE ZOMBIES 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 42
Discussion of DoS Attacks In early February 2000, a series of well organized denial-of-service attacks were launched against some major e-commerce websites

What Did the DoS Attacks Look Like?
Who Were the Targets?
Where Were the Attacks Launched From??
CONCLUSION “IF YOU ARE PREPARED FOR ZOMBIES, YOU ARE PREPARED FOR ANYTHING” 4/1/2016 47Is Your Data Center Prepared for the Zombie Apocalypse?
48
49 Air
50
QUESTIONS? 4/1/2016 51Is Your Data Center Prepared for the Zombie Apocalypse?
REFERENCES 4/1/2016 52Is Your Data Center Prepared for the Zombie Apocalypse?
REFERENCES 4/1/2016 53Is Your Data Center Prepared for the Zombie Apocalypse? Google Hacking for penetration testers, By Long J. & Gardner B. & Brown J. Everything you ever wanted to know abut zombies, By Mogk M.
REFERENCES 4/1/2016 54Is Your Data Center Prepared for the Zombie Apocalypse? The Zombie Survival Guide, By Brooks M. The Maker’s Guide to the Zombie Apocalypse, By Monk S.
‱ Ashford, W. (2015, May 26). Linking threat modelling and risk analysis key to cyber security. Retrieved March 31, 2016, from http://www.computerweekly.com/news/4500246898/Linking-threat-modelling-and-risk-analysis- key-to-cyber-security ‱ Castro, D. (2014, October 29). Is US Tech Policy Ready For A Zombie Apocalypse? – InformationWeek. Retrieved March 31, 2016, from http://www.informationweek.com/it-life/is-us- tech-policy-ready-for-a-zombie-apocalypse/a/d-id/1316987 ‱ Dougherty B. (2012): Is your data center ready for the coming zombie apocalypse? Retrieved from http://www.ragingwire.com/blog/disaster-recovery-business-continuity-planning- and-zombie-preparedness on March 31st, 2016 ‱ Grimes, R. A. (2014, April 8). Repeat after me: Model your security threats first. Retrieved March 31st, 2016, from http://www.infoworld.com/article/2610847/security/repeat-after-me-- model-your-security-threats-first.html ‱ Hudson, G. (2012, February 13). 6 Green Data Centers that Could Survive a Zombie Apocalypse. Retrieved March 31st, 2016, from http://cleantechnica.com/2012/02/13/6-green- data-centers-that-could-survive-a-zombie-apocalypse/ 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 55 REFERENCES
‱ Jackson, M. (1982). Michael Jackson - Thriller. Retrieved March 31, 2016, from https://www.youtube.com/results?search_query=thriller+michael+jackson ‱ Khan, A. S. (2011, May 16). Preparedness 101: Zombie Apocalypse. Retrieved March 31st, 2016, from http://blogs.cdc.gov/publichealthmatters/2011/05/preparedness-101-zombie- apocalypse ‱ Miller, R. (2013, March 4). Brocade Data Center Repels Zombie Attack | Data Center Knowledge. Retrieved March 31, 2016, from http://www.datacenterknowledge.com/archives/2013/03/04/brocade-data-center-repeals-zombie- attack/ ‱ Scalet S. (2006): 19 Ways to Build Physical Security Into a Data Centre. Retrieved March 31st, 2016 from http://www.cio.com.au/article/181324/19_ways_build_physical_security_into_data_centre/ on March 24th, 2016 ‱ Threat modeling. (n.d.) Retrieved March 31st, 2016, from https://en.wikipedia.org/wiki/Threat_model ‱ Trend micro: Security threats to evolving data centers - Trend micro U.S.A. (n.d.). Retrieved March 31, 2016, from http://www.trendmicro.com/cloud-content/us/pdfs/security- intelligence/reports/rpt_security-threats-to-datacenters.pdf ‱ Warwick A. (2015): Linking threat modelling and risk analysis key to cyber security. REFERENCES 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 55
PRESENTER BIO: WILLIAM F. SLATER, III ❖ Current Positions – Project Manager / Sr. IT Consultant at Adecco North America, President & CEO of Slater Technologies, Inc. , and Adjunct Professor at the Illinois Institute of Technology - Working on projects related to â–Ș Global Cybersecurity Manager at a $4.5 Billion company â–Ș Software Development and Migration at the U.S. Department of Veterans Affairs â–Ș Security reviews and auditing â–Ș ISO 27001 Project Implementations â–Ș Subject Matter Expert for preparing Risk Management and Security Exams at Western Governor’s State University in UT â–Ș Created an eBook with articles about Security, Risk Management, Cyberwarfare, Project Management and Data Center Operations â–Ș Providing subject matter expert services to Data Center product vendors and other local businesses. â–Ș Also Developing and presenting technical training materials for undergraduate and graduate students at the Illinois Institute of Technology in the areas of Data Center Operations, Data Center Architecture, Cyber Security Management, and Information Technology hardware and software. 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 57
BIO’S OF CO-PRESENTERS : ITMT 535 STUDENTS Student Name Bio Major Graduation Date Sebrina Neal Sebrina is an undergraduate majoring in ITM, she earned her Associates Degree in Computer Information Systems (CIS) from Kennedy King College in 2014, a scholar in One Million Degrees Scholarship Program, and an IT intern at HBK Engineering, LLC. Information Technology & Management December 2016 Joris Ekpangbo Graduate student in ITM - Data Management in a double degree program taking also a professional Master in Information Systems Engineering at ESIGELEC/FR Information Technology & Management December 2016 4/1/2016 58Is Your Data Center Prepared for the Zombie Apocalypse?
BIO’S OF CO-PRESENTERS : ITMT 535 STUDENTS Student Name Bio Major Graduation Date Louis-Adrien Philias Louis is a graduate student in a double degree program from France in ITM with a specialization in Data Center Operations & Management Information Technology & Management August 2016 Temilolu Olaniyan Temi had her undergraduate degree in computer engineering and is currently pursuing her Graduate studies in Information Technology and Management at Illinois Institute of Technology Information Technology & Management December 2016 4/1/2016 59Is Your Data Center Prepared for the Zombie Apocalypse?

Recomendados

Fake News Teacher Resource
Fake News Teacher ResourceFake News Teacher Resource
Fake News Teacher ResourceLaura Levy
 
Plug & Play News: Sourcing and Verifying News Online in 2022
Plug & Play News: Sourcing and Verifying News Online in 2022Plug & Play News: Sourcing and Verifying News Online in 2022
Plug & Play News: Sourcing and Verifying News Online in 2022Niki Radisic
 
Plug & Play News
Plug & Play News Plug & Play News
Plug & Play News Niki Radisic
 
Fake news, its ramifications and tools to check this menace.
Fake news, its ramifications and tools to check this menace.Fake news, its ramifications and tools to check this menace.
Fake news, its ramifications and tools to check this menace.Chetan Thathoo
 
Fake News Defined
Fake News DefinedFake News Defined
Fake News DefinedBenedictine University Library
 
Handling fake news and eyewitness media
Handling fake news and eyewitness mediaHandling fake news and eyewitness media
Handling fake news and eyewitness mediaAlastair Reid
 
Media Censorship
Media CensorshipMedia Censorship
Media Censorshippili perez ferreyra
 
Tara, Fact Check Muna! (A Discussion on Information Pandemic and Fake News)
Tara, Fact Check Muna! (A Discussion on Information Pandemic and Fake News)Tara, Fact Check Muna! (A Discussion on Information Pandemic and Fake News)
Tara, Fact Check Muna! (A Discussion on Information Pandemic and Fake News)Gab Billones
 

Recomendados

Fake News Teacher Resource
Fake News Teacher ResourceFake News Teacher Resource
Fake News Teacher ResourceLaura Levy
 
Plug & Play News: Sourcing and Verifying News Online in 2022
Plug & Play News: Sourcing and Verifying News Online in 2022Plug & Play News: Sourcing and Verifying News Online in 2022
Plug & Play News: Sourcing and Verifying News Online in 2022Niki Radisic
 
Plug & Play News
Plug & Play News Plug & Play News
Plug & Play News Niki Radisic
 
Fake news, its ramifications and tools to check this menace.
Fake news, its ramifications and tools to check this menace.Fake news, its ramifications and tools to check this menace.
Fake news, its ramifications and tools to check this menace.Chetan Thathoo
 
Fake News Defined
Fake News DefinedFake News Defined
Fake News DefinedBenedictine University Library
 
Handling fake news and eyewitness media
Handling fake news and eyewitness mediaHandling fake news and eyewitness media
Handling fake news and eyewitness mediaAlastair Reid
 
Media Censorship
Media CensorshipMedia Censorship
Media Censorshippili perez ferreyra
 
Tara, Fact Check Muna! (A Discussion on Information Pandemic and Fake News)
Tara, Fact Check Muna! (A Discussion on Information Pandemic and Fake News)Tara, Fact Check Muna! (A Discussion on Information Pandemic and Fake News)
Tara, Fact Check Muna! (A Discussion on Information Pandemic and Fake News)Gab Billones
 
Diapositivas
DiapositivasDiapositivas
Diapositivasloreca12
 
Separacion de colores
Separacion de coloresSeparacion de colores
Separacion de coloresvagos y asociados
 
Curso de qualificação profissional - Assistente Administrativo com Informåtica
Curso de qualificação profissional - Assistente Administrativo com InformåticaCurso de qualificação profissional - Assistente Administrativo com Informåtica
Curso de qualificação profissional - Assistente Administrativo com InformåticaClayton de Almeida Souza
 
How beliefs are formed and transformed
How beliefs are formed and transformedHow beliefs are formed and transformed
How beliefs are formed and transformedWendy Watson-Hallowell The Belief Coach
 
18
1818
18Mathivanan Thangamani
 
9 consejos para presentar una diapositiva
9 consejos para presentar una diapositiva9 consejos para presentar una diapositiva
9 consejos para presentar una diapositivavagos y asociados
 
Q 16 and 22
Q 16 and 22Q 16 and 22
Q 16 and 22Nazzir Hussain
 
19A
19A19A
19AMathivanan Thangamani
 
7
77
7Mathivanan Thangamani
 
As mĂŁos de albrecht durer
As mĂŁos de albrecht durerAs mĂŁos de albrecht durer
As mĂŁos de albrecht durerAmadeu Wolff
 
Mbe1
Mbe1Mbe1
Mbe1Hugo Villafañe
 
Informaticabasica 160423154719
Informaticabasica 160423154719Informaticabasica 160423154719
Informaticabasica 160423154719vagos y asociados
 
6
66
6Mathivanan Thangamani
 
ASM poster 2015 final
ASM poster 2015 finalASM poster 2015 final
ASM poster 2015 finalKelly Haas
 
Surrealismo
Surrealismo Surrealismo
Surrealismo Paloma Griska
 
Ejemplo rr
Ejemplo rrEjemplo rr
Ejemplo rrJorge Garcia
 
Nova aula inaugural 2016 sem data
Nova aula inaugural 2016 sem dataNova aula inaugural 2016 sem data
Nova aula inaugural 2016 sem dataPedro Henrique
 
Riesgo
RiesgoRiesgo
RiesgoHugo Villafañe
 
Riesgo
RiesgoRiesgo
RiesgoHugo Villafañe
 
Lighting systems and their design..mau --jmi-2014
Lighting systems and their design..mau --jmi-2014Lighting systems and their design..mau --jmi-2014
Lighting systems and their design..mau --jmi-2014Mohd Azmatullah
 
Essay About Hawaii
Essay About HawaiiEssay About Hawaii
Essay About HawaiiHannah Walker
 
16 Best Images Of Persuasive Writing Worksh
16 Best Images Of Persuasive Writing Worksh16 Best Images Of Persuasive Writing Worksh
16 Best Images Of Persuasive Writing WorkshNancy Ideker
 

Mais conteĂșdo relacionado

Destaque

Diapositivas
DiapositivasDiapositivas
Diapositivasloreca12
 
Curso de qualificação profissional - Assistente Administrativo com Informåtica
Curso de qualificação profissional - Assistente Administrativo com InformåticaCurso de qualificação profissional - Assistente Administrativo com Informåtica
Curso de qualificação profissional - Assistente Administrativo com InformåticaClayton de Almeida Souza
 
9 consejos para presentar una diapositiva
9 consejos para presentar una diapositiva9 consejos para presentar una diapositiva
9 consejos para presentar una diapositivavagos y asociados
 
As mĂŁos de albrecht durer
As mĂŁos de albrecht durerAs mĂŁos de albrecht durer
As mĂŁos de albrecht durerAmadeu Wolff
 
Informaticabasica 160423154719
Informaticabasica 160423154719Informaticabasica 160423154719
Informaticabasica 160423154719vagos y asociados
 
ASM poster 2015 final
ASM poster 2015 finalASM poster 2015 final
ASM poster 2015 finalKelly Haas
 
Nova aula inaugural 2016 sem data
Nova aula inaugural 2016 sem dataNova aula inaugural 2016 sem data
Nova aula inaugural 2016 sem dataPedro Henrique
 
Lighting systems and their design..mau --jmi-2014
Lighting systems and their design..mau --jmi-2014Lighting systems and their design..mau --jmi-2014
Lighting systems and their design..mau --jmi-2014Mohd Azmatullah
 

Destaque (20)

Diapositivas
DiapositivasDiapositivas
Diapositivas
 
Separacion de colores
Separacion de coloresSeparacion de colores
Separacion de colores
 
Curso de qualificação profissional - Assistente Administrativo com Informåtica
Curso de qualificação profissional - Assistente Administrativo com InformåticaCurso de qualificação profissional - Assistente Administrativo com Informåtica
Curso de qualificação profissional - Assistente Administrativo com Informåtica
 
How beliefs are formed and transformed
How beliefs are formed and transformedHow beliefs are formed and transformed
How beliefs are formed and transformed
 
18
1818
18
 
9 consejos para presentar una diapositiva
9 consejos para presentar una diapositiva9 consejos para presentar una diapositiva
9 consejos para presentar una diapositiva
 
Q 16 and 22
Q 16 and 22Q 16 and 22
Q 16 and 22
 
19A
19A19A
19A
 
7
77
7
 
As mĂŁos de albrecht durer
As mĂŁos de albrecht durerAs mĂŁos de albrecht durer
As mĂŁos de albrecht durer
 
Mbe1
Mbe1Mbe1
Mbe1
 
Informaticabasica 160423154719
Informaticabasica 160423154719Informaticabasica 160423154719
Informaticabasica 160423154719
 
6
66
6
 
ASM poster 2015 final
ASM poster 2015 finalASM poster 2015 final
ASM poster 2015 final
 
Surrealismo
Surrealismo Surrealismo
Surrealismo
 
Ejemplo rr
Ejemplo rrEjemplo rr
Ejemplo rr
 
Nova aula inaugural 2016 sem data
Nova aula inaugural 2016 sem dataNova aula inaugural 2016 sem data
Nova aula inaugural 2016 sem data
 
Riesgo
RiesgoRiesgo
Riesgo
 
Riesgo
RiesgoRiesgo
Riesgo
 
Lighting systems and their design..mau --jmi-2014
Lighting systems and their design..mau --jmi-2014Lighting systems and their design..mau --jmi-2014
Lighting systems and their design..mau --jmi-2014
 

Semelhante a W_F_Slater_and_ITMT_535_Students_for_Forensecure_2016_v15_FINAL

Essay About Hawaii
Essay About HawaiiEssay About Hawaii
Essay About HawaiiHannah Walker
 
16 Best Images Of Persuasive Writing Worksh
16 Best Images Of Persuasive Writing Worksh16 Best Images Of Persuasive Writing Worksh
16 Best Images Of Persuasive Writing WorkshNancy Ideker
 
How To Write A Hypothesis Statement For A Research
How To Write A Hypothesis Statement For A ResearchHow To Write A Hypothesis Statement For A Research
How To Write A Hypothesis Statement For A ResearchAngelica Ortiz
 
Privacy isdeadgetoveritredux 10.12.2014
Privacy isdeadgetoveritredux 10.12.2014Privacy isdeadgetoveritredux 10.12.2014
Privacy isdeadgetoveritredux 10.12.2014protected7000
 
College Thesis Template - Googl. Online assignment writing service.
College Thesis Template - Googl. Online assignment writing service.College Thesis Template - Googl. Online assignment writing service.
College Thesis Template - Googl. Online assignment writing service.Lisa Garcia
 
Dealing with errors
Dealing with errorsDealing with errors
Dealing with errorsBrian Landberg
 
Psicologia y zombies
Psicologia y zombiesPsicologia y zombies
Psicologia y zombiesSilvia Sanchez
 
A George Washington ... Writing Paper By Regina D
A George Washington ... Writing Paper By Regina DA George Washington ... Writing Paper By Regina D
A George Washington ... Writing Paper By Regina DEmily Smith
 
Up In The Air Movie Essay. Online assignment writing service.
Up In The Air Movie Essay. Online assignment writing service.Up In The Air Movie Essay. Online assignment writing service.
Up In The Air Movie Essay. Online assignment writing service.Tammy Blood
 
Do Aliens Exist Essay.pdf
Do Aliens Exist Essay.pdfDo Aliens Exist Essay.pdf
Do Aliens Exist Essay.pdfAlyssa Ingoldsby
 
Do Aliens Exist Essay.pdf
Do Aliens Exist Essay.pdfDo Aliens Exist Essay.pdf
Do Aliens Exist Essay.pdfCamila Fernandes
 
Slumdog Millionaire Essay Notes. Slumdog millionaire essay notes - studyclix....
Slumdog Millionaire Essay Notes. Slumdog millionaire essay notes - studyclix....Slumdog Millionaire Essay Notes. Slumdog millionaire essay notes - studyclix....
Slumdog Millionaire Essay Notes. Slumdog millionaire essay notes - studyclix....Carley Kelley
 
Future_Radicals_Study_Guide_HIGH_RES
Future_Radicals_Study_Guide_HIGH_RESFuture_Radicals_Study_Guide_HIGH_RES
Future_Radicals_Study_Guide_HIGH_RESJenny O'Meara
 
Thisworldofours
ThisworldofoursThisworldofours
Thisworldofoursjennyevans555
 
Traditional And Progressive Education Essays.pdfTraditional And Progressive E...
Traditional And Progressive Education Essays.pdfTraditional And Progressive E...Traditional And Progressive Education Essays.pdfTraditional And Progressive E...
Traditional And Progressive Education Essays.pdfTraditional And Progressive E...Melissa Elliott
 
George Washington Page BorderWriting Frame (Narr
George Washington Page BorderWriting Frame (NarrGeorge Washington Page BorderWriting Frame (Narr
George Washington Page BorderWriting Frame (NarrWendy Belieu
 
Topic 2 Science and the Media- Zombies and EbolaZombies and E.docx
Topic 2 Science and the Media- Zombies and EbolaZombies and E.docxTopic 2 Science and the Media- Zombies and EbolaZombies and E.docx
Topic 2 Science and the Media- Zombies and EbolaZombies and E.docxrowthechang
 
Truth, Lies & Social Media
Truth, Lies & Social MediaTruth, Lies & Social Media
Truth, Lies & Social MediaMathias Klang
 
Hacktivism 2: A brief history of hacktivism.
Hacktivism 2: A brief history of hacktivism.Hacktivism 2: A brief history of hacktivism.
Hacktivism 2: A brief history of hacktivism.Peter Ludlow
 
The Impact Of Childhood Obesity On Health - Free E
The Impact Of Childhood Obesity On Health - Free EThe Impact Of Childhood Obesity On Health - Free E
The Impact Of Childhood Obesity On Health - Free EJennifer Cruz
 

Semelhante a W_F_Slater_and_ITMT_535_Students_for_Forensecure_2016_v15_FINAL (20)

Essay About Hawaii
Essay About HawaiiEssay About Hawaii
Essay About Hawaii
 
16 Best Images Of Persuasive Writing Worksh
16 Best Images Of Persuasive Writing Worksh16 Best Images Of Persuasive Writing Worksh
16 Best Images Of Persuasive Writing Worksh
 
How To Write A Hypothesis Statement For A Research
How To Write A Hypothesis Statement For A ResearchHow To Write A Hypothesis Statement For A Research
How To Write A Hypothesis Statement For A Research
 
Privacy isdeadgetoveritredux 10.12.2014
Privacy isdeadgetoveritredux 10.12.2014Privacy isdeadgetoveritredux 10.12.2014
Privacy isdeadgetoveritredux 10.12.2014
 
College Thesis Template - Googl. Online assignment writing service.
College Thesis Template - Googl. Online assignment writing service.College Thesis Template - Googl. Online assignment writing service.
College Thesis Template - Googl. Online assignment writing service.
 
Dealing with errors
Dealing with errorsDealing with errors
Dealing with errors
 
Psicologia y zombies
Psicologia y zombiesPsicologia y zombies
Psicologia y zombies
 
A George Washington ... Writing Paper By Regina D
A George Washington ... Writing Paper By Regina DA George Washington ... Writing Paper By Regina D
A George Washington ... Writing Paper By Regina D
 
Up In The Air Movie Essay. Online assignment writing service.
Up In The Air Movie Essay. Online assignment writing service.Up In The Air Movie Essay. Online assignment writing service.
Up In The Air Movie Essay. Online assignment writing service.
 
Do Aliens Exist Essay.pdf
Do Aliens Exist Essay.pdfDo Aliens Exist Essay.pdf
Do Aliens Exist Essay.pdf
 
Do Aliens Exist Essay.pdf
Do Aliens Exist Essay.pdfDo Aliens Exist Essay.pdf
Do Aliens Exist Essay.pdf
 
Slumdog Millionaire Essay Notes. Slumdog millionaire essay notes - studyclix....
Slumdog Millionaire Essay Notes. Slumdog millionaire essay notes - studyclix....Slumdog Millionaire Essay Notes. Slumdog millionaire essay notes - studyclix....
Slumdog Millionaire Essay Notes. Slumdog millionaire essay notes - studyclix....
 
Future_Radicals_Study_Guide_HIGH_RES
Future_Radicals_Study_Guide_HIGH_RESFuture_Radicals_Study_Guide_HIGH_RES
Future_Radicals_Study_Guide_HIGH_RES
 
Thisworldofours
ThisworldofoursThisworldofours
Thisworldofours
 
Traditional And Progressive Education Essays.pdfTraditional And Progressive E...
Traditional And Progressive Education Essays.pdfTraditional And Progressive E...Traditional And Progressive Education Essays.pdfTraditional And Progressive E...
Traditional And Progressive Education Essays.pdfTraditional And Progressive E...
 
George Washington Page BorderWriting Frame (Narr
George Washington Page BorderWriting Frame (NarrGeorge Washington Page BorderWriting Frame (Narr
George Washington Page BorderWriting Frame (Narr
 
Topic 2 Science and the Media- Zombies and EbolaZombies and E.docx
Topic 2 Science and the Media- Zombies and EbolaZombies and E.docxTopic 2 Science and the Media- Zombies and EbolaZombies and E.docx
Topic 2 Science and the Media- Zombies and EbolaZombies and E.docx
 
Truth, Lies & Social Media
Truth, Lies & Social MediaTruth, Lies & Social Media
Truth, Lies & Social Media
 
Hacktivism 2: A brief history of hacktivism.
Hacktivism 2: A brief history of hacktivism.Hacktivism 2: A brief history of hacktivism.
Hacktivism 2: A brief history of hacktivism.
 
The Impact Of Childhood Obesity On Health - Free E
The Impact Of Childhood Obesity On Health - Free EThe Impact Of Childhood Obesity On Health - Free E
The Impact Of Childhood Obesity On Health - Free E
 

W_F_Slater_and_ITMT_535_Students_for_Forensecure_2016_v15_FINAL

  • 1. 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 1
  • 2. 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 2 Is Your Data Center Prepared for the Zombie Apocalypse?
  • 3. IS YOUR DATA CENTER PREPARED FOR THE ZOMBIE APOCALYPSE? WILLIAM F. SLATER, III, M.S. MBA, PMP, CISSP, CISA ADJUNCT PROFESSOR, IIT SCHOOL OF APPLIED TECHNOLOGY -AND- LOUIS-PHILIAS, SEBRINA NEAL, JORIS EKPANGBO & TEMILOLU OLANIYAN ITMT 535 – DATA CENTER ARCHITECTURE STUDENTS A PRESENTATION FOR FORENSECURE 2016
  • 4. AGENDA ❖Introduction  What is a Data Center?  Traditional Data Center Security Concepts and Limits  The Zombie Apocalypse & how it can expose n our Data Centers?  How can we prepare our Data Centers for the Zombie Apocalypse? ❖Conclusion ❖Questions ❖References 4/1/2016 4Is Your Data Center Prepared for the Zombie Apocalypse?
  • 5. INTRODUCTION 4/1/2016 5Is Your Data Center Prepared for the Zombie Apocalypse?
  • 6. INTRODUCTION 4/1/2016 6Is Your Data Center Prepared for the Zombie Apocalypse?
  • 7. WHAT IS A DATA CENTER? 4/1/2016 7Is Your Data Center Prepared for the Zombie Apocalypse?
  • 8. DATA CENTER DEFINITION It generally includes redundant or backup power supplies, redundant data communications connections, environmental controls (e.g., air conditioning, fire suppression) and various security devices. Large data centers are industrial scale operations using as much electricity as a small town. 31 March 2016 8Is Your Data Center Prepared for the Zombie Apocalypse?
  • 9. WHY DATA CENTER MATTERS? “The internet was done so well that most people think of it as a natural resource like the Pacific Ocean” -Alan Kay-
  • 10. TRADITIONAL DATA CENTER SECURITY CONCEPTS & LIMITS 4/1/2016 10Is Your Data Center Prepared for the Zombie Apocalypse?
  • 11. CIA – THE SECURITY TRIAD 114/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? TRADITIONAL DATA CENTER SECURITY CONCEPTS
  • 12. TRADITIONAL DATA CENTER SECURITY CONCEPTS The security in a Data Center is based on safeguarding of data and other IT assets (the CIA TRIAD) and consists of two types: ❖The Physical Security ❖The Logical Security 4/1/2016 12Is Your Data Center Prepared for the Zombie Apocalypse?
  • 13. TRADITIONAL DATA CENTER SECURITY CONCEPTS ❖Physical security building best practices: 1. Build on the right spot 2. Have redundant utilities, 3. Pay attention to the walls, how they are built 4. Avoid windows 5. Use landscaping for protection, 6. Keep a 100-foot buffer zone around the site, 7. Use retractable crash barriers at vehicle entry points, 8. Plan for bomb detection 9. Limit entry points, 10. Make fire doors exit only, Sarah Scalet 4/1/2016 13Is Your Data Center Prepared for the Zombie Apocalypse?
  • 14. 4/1/2016 14Is Your Data Center Prepared for the Zombie Apocalypse? TRADITIONAL DATA CENTER SECURITY CONCEPTS Sarah Scalet
  • 15. 11. Use cameras as much as possible, 12. Protect the building's machinery, 13. Plan for secure air handling, 14. Ensure nothing can hide in the walls and ceilings, 15. Use two-factor authentication 16. Harden the core with security layers 17. Watch the exits too, 18. Prohibit food in the computer rooms, 19. Install visitor restrooms. ❖The logical security (Antivirus software, firewalls and intrusion-detection systems for instance) 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 15 Sarah Scalet
  • 17. LIMITS ❖Be Diligent Against the Biggest Threat: People â–Ș Whether it is intentional sabotage, social engineering, carelessness or lack of following a defined policy, people working in the facility can be the biggest risk. For example, social engineering is a common threat because most people by nature want to be helpful. It’s important to train people to stick to the security policy and require them to be 100 percent accountable for their access. â–Ș Furthermore, the redundancy of IT equipment is the first goal to meet in any data center to assure its availability, to make it free of disruption. But the people working in a data center are its most important « engine », and cannot be redundant. 4/1/2016 17Is Your Data Center Prepared for the Zombie Apocalypse?
  • 18. THE ZOMBIE APOCALYPSE & HOW IT CAN EXPOSE OUR DATA CENTERS 4/1/2016 18Is Your Data Center Prepared for the Zombie Apocalypse?
  • 19. WHAT ARE ZOMBIES? 4/1/2016 19Is Your Data Center Prepared for the Zombie Apocalypse?
  • 20. WHAT ARE ZOMBIES? ❖A zombie (Haitian French: zombi, Haitian Creole: zonbi) is a fictional undead being created through the reanimation of a human corpse. ❖The English word "zombie" is first recorded in 1819, in a history of Brazil by the poet Robert Southey, in the form of "zombi". The Oxford English Dictionary gives the origin of the word as West African, and compares it to the Kongo words nzambi (god) and zumbi (fetish). ❖One of the first books to expose Western culture to the concept of the voodoo zombie was The Magic Island by W.B. Seabrook in 1929. This is the sensationalized account of a narrator who encounters voodoo cults in Haiti and their resurrected thralls. 4/1/2016 20Is Your Data Center Prepared for the Zombie Apocalypse?
  • 21. THE STORY OF FELICIA FELIX MENTOR 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 21 Felicia Felix-Mentor was a Haitian woman believed to have been made into a zombie in the early part of the 20th century. She reportedly died in 1907, after a sudden illness of the type that Haitian belief finds to be characteristic of a person marked to be made into a zombie. In 1936 a woman in ragged clothing was found wandering the streets, and made her way to a farm which she claimed belonged to her father. The owners identified the woman as Felicia Felix- Mentor, long thought dead, and Felix-Mentor’s husband also confirmed this. Due to her poor health, she was sent to a government hospital. A doctor who interviewed her described her behavior. Her occasional outbursts of laughter were devoid of emotion, and very frequently she spoke of herself in either the first or the third person without any sense of discrimination. She had lost all sense of time and was quite indifferent to the world of things around her.
  • 22. WEST AFRICAN ZOMBIES (BENIN) 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 22
  • 23. WHAT IS THE ZOMBIE APOCALYPSE? ❖Intimately tied to the concept of the modern zombie is the "zombie apocalypse"; the breakdown of society as a result of an initial zombie outbreak that spreads. This archetype has emerged as a prolific subgenre of apocalyptic fiction and has been portrayed in many zombie-related media after Night of the Living Dead. In a zombie apocalypse, a widespread (usually global) rise of zombies hostile to human life engages in a general assault on civilization. Victims of zombies may become zombies themselves. This causes the outbreak to become an exponentially growing crisis: the spreading phenomenon swamps normal military and law enforcement organizations, leading to the panicked collapse of civilized society until only isolated pockets of survivors remain, scavenging for food and supplies in a world reduced to a pre- industrial hostile wilderness. ❖This fictional event has gained gradually recognition: â–Ș In government media â–Ș On 18 May 2011, the United States' Centers for Disease Control and Prevention (CDC) published a graphic novel, Preparedness 101: Zombie Apocalypse providing tips to survive a zombie invasion as a "fun new way of teaching the importance of emergency4/1/2016 23Is Your Data Center Prepared for the Zombie Apocalypse?
  • 24. WHAT IS THE ZOMBIE APOCALYPSE? â–Ș In music Michael Jackson's music video Thriller (1983), in which he dances with a troop of zombies, has been preserved as a cultural treasure by the Library of Congress' National Film Registry â–Ș In literature Max Brooks's novel World War Z (2006) became a New York Times bestseller. â–Ș In theoretical academic papers Adam Chodorow of the Sandra Day O'Connor College of Law at Arizona State University investigated the estate and income tax implications of a zombie apocalypse under United States federal and state tax codes. 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 24
  • 25. NOTABLE ORGANIZATIONS THAT BELIEVE IN THE ZOMBIE APOCALYPSE 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 25
  • 26. WHAT COULD HAPPEN? 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 26
  • 27. AMERICAN CITIES – BEST AND WORST PLACES FOR THE ZOMBIE APOCALYPSE 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 27
  • 28. THE ZOMBIE APOCALYPSE THREAT & HOW CAN IT EXPOSE OUR DATA CENTERS ❖Threat modeling (often related to the logical security in Data Center) There are at least three general approaches to threat modeling: ❖Attacker-centric Attacker-centric threat modeling starts with an attacker, and evaluates their goals, and how they might achieve them. Attacker's motivations are often considered, for example, "The NSA wants to read this email," or "Jon wants to copy this DVD and share it with his friends." This approach usually starts from either entry points or assets ❖Software-centric Software-centric threat modeling (also called 'system-centric,' 'design-centric,' or 'architecture- centric') starts from the design of the system, and attempts to step through a model of the system, looking for types of attacks against each element of the model. This approach is used in threat modeling in Microsoft's Security Development Lifecycle ❖Asset-centric Asset-centric threat modeling involves starting from assets entrusted to a system, such as a collection of sensitive personal information 4/1/2016 28Is Your Data Center Prepared for the Zombie Apocalypse?
  • 29. Any high security data center can actually prevent any disaster including a zombie apocalypse : ❖A hardened, secure, windowless facility will keep the staff and the servers safe and protect them from hordes of brain-hungry, shambling corpses pounding at the front door ❖If “clever” zombies somehow manage to get hold of a keycard or passcode, multi-factor security that includes biometrics (zombies, after all, don’t have the body warmth and heartbeats of a living human) should prevent the flesh-eaters from getting in ❖What if the walking dead attack during a shift change at the local power plant? No problem: your uninterruptible power supply (UPS) will bridge the few seconds it takes for the generators to reach full power 4/1/2016 29Is Your Data Center Prepared for the Zombie Apocalypse? THE ZOMBIE APOCALYPSE THREAT & HOW CAN IT EXPOSE OUR DATA CENTERS
  • 30. ❖Having a secondary site can be a nice safeguard if zombies find a hole in security at a less secure site. The remaining question is: What if the danger comes from within the data center? 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 30 THE ZOMBIE APOCALYPSE THREAT & HOW CAN IT EXPOSE OUR DATA CENTERS
  • 31. Are you going to quarantine them? Or kill them? No logic would lead the contaminated staff so the worst has to be expected. The data center will be likely to be destroyed because : ‱ Delete/modify the data ‱ Infect other people ‱ Causing a Virus to spread ‱ Press the RED button The most astonishing fact is that there are no palliative solutions for those dramatic events up to now in any data center disaster recovery plan. 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 31 THE ZOMBIE APOCALYPSE THREAT & HOW CAN IT EXPOSE OUR DATA CENTERS
  • 32. HOW WILL YOU KNOW THE ZOMBIE APOCALYPSE IS HAPPENING? Source: http://hisz.rsoe.hu/alertmap/index2.php?area=usa&lang=eng RSOE - Emergency and Disaster Information Service 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 31
  • 33. “Noah did not wait until it was raining to start building the Ark.” 4/1/2016 33 “BETTER SAFE THAN SORRY” Is Your Data Center Prepared for the Zombie Apocalypse?
  • 34. “BETTER SAFE THAN SORRY” ❖Data center designers generally do a good job preparing for conventional risks like earthquakes, fires, floods, and hurricanes, but if the disaster recovery plan doesn’t include provisions for dealing with the undead, the risk mitigation strategy has a gaping hole ❖Unlike conventional disaster recovery (DR)/business continuity planning (BCP), zombie preparedness has a unique set of goals beyond data protection and business resumption: Ensure the long-term Survivability of your facilities AND your people 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 34
  • 35. HOW CAN WE PREPARE OUR DATA CENTERS FOR THE ZOMBIE APOCALYPSE? 4/1/2016 35Is Your Data Center Prepared for the Zombie Apocalypse?
  • 36. NECESSARY SURVIVAL KIT : WATER 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 35
  • 37. NECESSARY SURVIVAL KIT : FOOD 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 36
  • 38. NECESSARY SURVIVAL KIT : WEAPONS 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 37
  • 39. DATA CENTER FORTIFICATION CONCEPTS TO SURVIVE A ZOMBIE APOCALYPSE ❖Shelter in Place ❖Highly-Available, Redundant â–Ș Power â–Ș Cooling â–Ș Communications ❖Entertainment ❖Communications Equipment (Raspberry Pi, radio FM transmitter) ❖Sleeping quarters ❖Sanitary Facilities ❖Sensors (presence sensors etc) ❖First-Aid Kits ❖Medical Supplies 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 39
  • 40. LET’S BE PRAGMATIC! Odds are, an outbreak of zombies is for now unlikely to happen. But there are still plenty of other potential threats that could spell disaster for your data center if you’re not prepared. So make sure you take the time to consider all possibilities as you build out your IT infrastructure, have a disaster plan in place and hold a test drill every so often to make sure everyone knows what to do to keep your facilities online. Always best to prepare for zombies, even when there is no perceived threat of zombies 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 40
  • 41. OUR RECOMMENDATIONS ❖Improve your Disaster Recovery Plan and your Business Continuity Plan ❖Actively fortify your Data Center ❖Equip and Train every member of your Data Center Staff ❖Plan to for the Long-Term Survivability of the Human Element ❖Take the Online Quiz: http://bit.ly/1MJRVLn 4/1/2016 41Is Your Data Center Prepared for the Zombie Apocalypse?
  • 42. EVEN MORE ZOMBIES 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 42
  • 43. Discussion of DoS Attacks In early February 2000, a series of well organized denial-of-service attacks were launched against some major e-commerce websites

  • 44. What Did the DoS Attacks Look Like?
  • 45. Who Were the Targets?
  • 46. Where Were the Attacks Launched From??
  • 47. CONCLUSION “IF YOU ARE PREPARED FOR ZOMBIES, YOU ARE PREPARED FOR ANYTHING” 4/1/2016 47Is Your Data Center Prepared for the Zombie Apocalypse?
  • 48. 48
  • 50. 50
  • 51. QUESTIONS? 4/1/2016 51Is Your Data Center Prepared for the Zombie Apocalypse?
  • 52. REFERENCES 4/1/2016 52Is Your Data Center Prepared for the Zombie Apocalypse?
  • 53. REFERENCES 4/1/2016 53Is Your Data Center Prepared for the Zombie Apocalypse? Google Hacking for penetration testers, By Long J. & Gardner B. & Brown J. Everything you ever wanted to know abut zombies, By Mogk M.
  • 54. REFERENCES 4/1/2016 54Is Your Data Center Prepared for the Zombie Apocalypse? The Zombie Survival Guide, By Brooks M. The Maker’s Guide to the Zombie Apocalypse, By Monk S.
  • 55. ‱ Ashford, W. (2015, May 26). Linking threat modelling and risk analysis key to cyber security. Retrieved March 31, 2016, from http://www.computerweekly.com/news/4500246898/Linking-threat-modelling-and-risk-analysis- key-to-cyber-security ‱ Castro, D. (2014, October 29). Is US Tech Policy Ready For A Zombie Apocalypse? – InformationWeek. Retrieved March 31, 2016, from http://www.informationweek.com/it-life/is-us- tech-policy-ready-for-a-zombie-apocalypse/a/d-id/1316987 ‱ Dougherty B. (2012): Is your data center ready for the coming zombie apocalypse? Retrieved from http://www.ragingwire.com/blog/disaster-recovery-business-continuity-planning- and-zombie-preparedness on March 31st, 2016 ‱ Grimes, R. A. (2014, April 8). Repeat after me: Model your security threats first. Retrieved March 31st, 2016, from http://www.infoworld.com/article/2610847/security/repeat-after-me-- model-your-security-threats-first.html ‱ Hudson, G. (2012, February 13). 6 Green Data Centers that Could Survive a Zombie Apocalypse. Retrieved March 31st, 2016, from http://cleantechnica.com/2012/02/13/6-green- data-centers-that-could-survive-a-zombie-apocalypse/ 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 55 REFERENCES
  • 56. ‱ Jackson, M. (1982). Michael Jackson - Thriller. Retrieved March 31, 2016, from https://www.youtube.com/results?search_query=thriller+michael+jackson ‱ Khan, A. S. (2011, May 16). Preparedness 101: Zombie Apocalypse. Retrieved March 31st, 2016, from http://blogs.cdc.gov/publichealthmatters/2011/05/preparedness-101-zombie- apocalypse ‱ Miller, R. (2013, March 4). Brocade Data Center Repels Zombie Attack | Data Center Knowledge. Retrieved March 31, 2016, from http://www.datacenterknowledge.com/archives/2013/03/04/brocade-data-center-repeals-zombie- attack/ ‱ Scalet S. (2006): 19 Ways to Build Physical Security Into a Data Centre. Retrieved March 31st, 2016 from http://www.cio.com.au/article/181324/19_ways_build_physical_security_into_data_centre/ on March 24th, 2016 ‱ Threat modeling. (n.d.) Retrieved March 31st, 2016, from https://en.wikipedia.org/wiki/Threat_model ‱ Trend micro: Security threats to evolving data centers - Trend micro U.S.A. (n.d.). Retrieved March 31, 2016, from http://www.trendmicro.com/cloud-content/us/pdfs/security- intelligence/reports/rpt_security-threats-to-datacenters.pdf ‱ Warwick A. (2015): Linking threat modelling and risk analysis key to cyber security. REFERENCES 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 55
  • 57. PRESENTER BIO: WILLIAM F. SLATER, III ❖ Current Positions – Project Manager / Sr. IT Consultant at Adecco North America, President & CEO of Slater Technologies, Inc. , and Adjunct Professor at the Illinois Institute of Technology - Working on projects related to â–Ș Global Cybersecurity Manager at a $4.5 Billion company â–Ș Software Development and Migration at the U.S. Department of Veterans Affairs â–Ș Security reviews and auditing â–Ș ISO 27001 Project Implementations â–Ș Subject Matter Expert for preparing Risk Management and Security Exams at Western Governor’s State University in UT â–Ș Created an eBook with articles about Security, Risk Management, Cyberwarfare, Project Management and Data Center Operations â–Ș Providing subject matter expert services to Data Center product vendors and other local businesses. â–Ș Also Developing and presenting technical training materials for undergraduate and graduate students at the Illinois Institute of Technology in the areas of Data Center Operations, Data Center Architecture, Cyber Security Management, and Information Technology hardware and software. 4/1/2016 Is Your Data Center Prepared for the Zombie Apocalypse? 57
  • 58. BIO’S OF CO-PRESENTERS : ITMT 535 STUDENTS Student Name Bio Major Graduation Date Sebrina Neal Sebrina is an undergraduate majoring in ITM, she earned her Associates Degree in Computer Information Systems (CIS) from Kennedy King College in 2014, a scholar in One Million Degrees Scholarship Program, and an IT intern at HBK Engineering, LLC. Information Technology & Management December 2016 Joris Ekpangbo Graduate student in ITM - Data Management in a double degree program taking also a professional Master in Information Systems Engineering at ESIGELEC/FR Information Technology & Management December 2016 4/1/2016 58Is Your Data Center Prepared for the Zombie Apocalypse?
  • 59. BIO’S OF CO-PRESENTERS : ITMT 535 STUDENTS Student Name Bio Major Graduation Date Louis-Adrien Philias Louis is a graduate student in a double degree program from France in ITM with a specialization in Data Center Operations & Management Information Technology & Management August 2016 Temilolu Olaniyan Temi had her undergraduate degree in computer engineering and is currently pursuing her Graduate studies in Information Technology and Management at Illinois Institute of Technology Information Technology & Management December 2016 4/1/2016 59Is Your Data Center Prepared for the Zombie Apocalypse?