24-02-2012, 03:53 PM
Basic Computer Security
050308BasicSecurity.ppt (Size: 196.5 KB / Downloads: 28)
Why Computer Security
The Internet is a dangerous place
We are constantly being scanned for weak or vulnerable systems; new unpatched systems will be exploited within minutes.
Fermilab is an attractive target
High network bandwidth is useful for attackers who take over lab computers
Publicity value of compromising a .gov site
Attackers may not realize we have no information useful to them
FNAL Strategy
Integrated Security Management
Defense in Depth
Perimeter Controls and auto blocking
Mail gateway virus scanning
Strong Authentication (Kerberos)
Critical System plans
Critical vulnerabilities
Prompt response to computer security incidents (FCIRT)
Intelligent and informed user community
Integrated Security Management
Computer Security is not an add-on or something external, it is part and parcel of everything you do with computers (analogy with ES&H)
Not “one-size-fits-all”, but appropriate for the needs and vulnerabilities of each system
In most cases, it is simply common sense + a little information and care
Each Division/Section or large experiment has a GCSC (General Computer Security Coordinator) who acts as liaison with the Computer Security Team in disseminating information and dealing with incident; see for an up to date list