Conveners
Real World Security: Session 3
- Nicole Harris (GÉANT)
Description
This session takes a very practical look at how we manage security challenges in NRENs on a daily basis. From network security, DDoS attacks and hijacks, how do our security teams manage the reality of incident response and are we working in the right direction?
Carlos Friaças is the Head of RCTS CERT, the CSIRT for the portuguese NREN (FCCN).
This presentation is about network security.
Our previous experience with BGP hijacks comes from handling the case with the notorious Bitcanal hijacker, which was a local internet exchange (Gigapix) member since the previous 4 years, before everything reached the public eye.
This incident led us to deploy...
Abstract
Long term CESNET NREN evolution that split overall network management into rather separate activities distributed among highly specialized teams (e.g. network administrators, service desk operators, CSIRT team) led us to an idea to develop a tool that would represent single source of knowledge and single unified interface (understandable to all involved teams) to apply directives...
In this talk we will present examples the Macedonian NREN saw in the DDOS domain in the timeline from the end of the pandemic up to end of 2023.
We will show how we implemented visibility tools and mitigation products as well as what we see as the landscape for 2024.
All types of DDOS attacks, Flow analysis tools and of course mitigation (scrub, firewall, develop your own or use what is...
