Salsa Call 20-April-06
*Attendees*
Mark Poepping, CMU (chair)
Gary Dobbins - Notre Dame
Terry Gray, U. Washington
Charles
Yun, Internet2
Rodney Petersen, Educause
Deke Kassabian, U.
Penn
Chas DiFatta, CMU
Chris Misra, U. Mass
Greg Travis, Indiana
Doug Pearson, Indiana
Jeff Schiller, MIT
Steve Olshansky, Internet2
(scribe)
*Discussion*
- CSI2 update - They are making progress
on the shared darknet project, MOU with REN-ISAC is in progress.
This has received a positive reception, and good attendance
at the BoF at Security Professionals Conference in Denver last
week. Doug will be presenting about this at the I2MM next week.
Minutes from CSI2 calls will be posted on the working group page. The CSI2-Announce list will start ramping up as progress warrants.
- FWNA update -
Making good progress, there are now
2 functional top level servers, one at Merit and one at UTK.
Testing is in progress - local authn servers via FWNA trust
- successful so far in these test environments.
There will be a demo at the I2MM. There will also be a 802.1x session at I2MM, which will also be looking at the potential intersection between FWNA and Shibboleth.
- Reconnections update -
Executive
Summary doc in progress...
- REN-ISAC update -
There was a
well-attended BoF at Security Prof. Conference, involving regional
security groups. Consensus was that there should be a follow-on
workshop devoted to this topic. The workshop may also involve
some hands-on training, train the trainer, involving 1-2 designated
reps from each member organization. In addition to info sharing,
they will get detail they can share with their teams...
Topics would go beyond operational info, potentially to include organizational, experiences, etc. There are new groups of this sort starting up, and established groups recognize the value of this sort of info sharing.
Aside from this potentially one-off workshop, consensus was that the Security Prof. Conference is a logical meeting place for this group yearly. Smaller sub-groups may meet more often.
Tech advisory group will soon be assembled, invites will go out soon. They are looking at assembling some shared data resources for members, including botnet info.
Discussions are under way with Microsoft about forming a relationship with MSRC (Microsoft Security Response Center), serving as a liaison with higher-ed.
Doug will be presenting on the Darknet project at the I2MM.
- Meeting report: Security Professionals Conference
-
330+ registered, > 2/3 were also
in pre-conference seminars. The evening BoFs were very popular,
and generally well attended.
Feedback was positive, networking is a key aspect, valuable to all. They are looking at ways to enhance this in the future. It seemed to be a good cross-section of attendees. Overall feedback was very positive, improving every year. Rodney and Charles are the Educause and Internet2 staff liaisons for next year's conference.
- STF meeting outcomes
-
- looking at ways to orient, mentor, and provide added value
to staff new to security. It was observed that many security
staff are being hired from outside academia, thus the need
to the challenges they face in becoming acclimated to the R&E
environment
- looking at next generation of the Effective Practices
guide, as a wiki
- I2MM update -
The list of security related
sessions was sent out to the list... Note the Salsa lunch Tuesday,
and the MACE/Salsa dinner Tue night. Please give some thought
in advance to what we have been successful at as a group, what
has not been so successful, and suggestions for future direction...
- Call For Papers deadline very soon for a forensics workshop, sent by Rodney to the list - working on bridging from academics to practitioners.
- National Science and Technology Council released the Federal Plan for Cyber Security and Information Assurance Research and Development report.
"April 17, National Coordination Office for Networking and Information Technology Research and Development — The National Science and Technology Council, a Cabinet-level council that coordinates science and technology policies across the federal government, released the Federal Plan for Cyber Security and Information Assurance Research and Development Monday, April 17. This report sets out a framework for multi-agency coordination of federal research and development (R&D) investments in technologies that can better secure the interconnected computing systems, networks, and information that together make up the U.S. information technology infrastructure. The Federal Plan for Cyber Security and Information Assurance outlines strategic objectives for coordinated federal R&D in cyber security and information assurance (CSIA). The Plan presents a broad range of CSIA R&D technical topics and identifies those topics that are multi-agency technical and funding priorities. The plan’s findings and recommendations address R&D priority-setting, coordination, fundamental R&D, emerging technologies, road-mapping, and metrics. Electronic pre-print release of the Federal Plan for Cyber Security and Information Assurance Research and Development: http://www.nitrd.gov/pubs/csia/FederalPlan_CSIA_RnD.pdf Source: http://www.nitrd.gov/pubs/csia/FederalPlan_CSIA_RnD_Press.pdf"
- Disaster Recovery - There will be a session late Wed afternoon at the I2MM. LSU is willing to take the lead, working on distributed storage, virtualization, and hot sites for a start.