Survivable Network Analysis - PowerPoint PPT Presentation

About This Presentation
Title:

Survivable Network Analysis

Description:

Oracle. Connection Mgr. Kerberos Domain Contriller. Acis.as. ... Cluster of Sun Sparc Servers. Public Access Points. Support services. Oracle Connection Manager ... – PowerPoint PPT presentation

Number of Views:23
Avg rating:3.0/5.0
Slides: 16
Provided by: qianmi
Category:

less

Transcript and Presenter's Notes

Title: Survivable Network Analysis


1
Survivable Network Analysis
  • Oracle Financial Management Services
  • Ali Ardalan
  • Qianming Michelle Chen
  • Yi Hu
  • Jason Milletary
  • Jian Song

2
Overview
  • Essential User Capabilities
  • Summary of Essential Components
  • Firewall Type
  • Essential Components Diagram
  • Essential Scenarios
  • Essential Component Details
  • Next Steps

3
Essential User Capabilities
  • Essential Capabilities performed by 300 dedicated
    users
  • Dedicated users must have access to financial
    service applications
  • Core Financial Applications
  • Application Desktop Integrator Applications
  • Feeder systems must integrate with financial
    applications
  • Primary actions performed by users are
  • Billing, reporting reconciliation of budgets
    and expenses

4
Summary of Essential Components
  • Kerberos Domain Controller (authentication)
  • Acis.as.cmu.edu (public access points)
  • Mistral (db server)
  • Tandem (print e-mail)
  • Chinook (backup server)

5
Logical Proxy (Application Gateway) Firewall
  • Restricts traffic based upon packet content
  • Application specific

Acis.as. cmu.edu (Sun Sparc Cluster)
SCP
Oracle Connection Mgr.
HTTPS

SSH
CAMPUS NETWORK
PRIVATE NETWORK
Tandem
LPR (print)
SMTP (e-mail)
SSH
(External)
(Internal)
6
Essential Components Diagram
Mistral (databse server)
Kerberos Domain Contriller
O. DB
O. Listener
O. Forms
Kerberos

HTTP
SQL Net
CITRIX
FTP
LPR (print)
SMTP (e-mail)
SSH
Acis.as. cmu.edu (Sun Sparc Cluster)
SCP
Oracle Connection Mgr.
CAMPUS NETWORK
Chinook (Backup)
HTTPS

SSH
O. DB
O. Listener
O. Forms

HTTP
SQL Net
CITRIX
FIBER
Tandem
LPR (print)
SMTP (e-mail)
FTP
LPR (print)
SMTP (e-mail)
SSH
SSH
Cyert Computer Center
6555 Penn Ave
7
Essential Components 1
  • Acis.as.cmu.edu
  • Cluster of Sun Sparc Servers
  • Public Access Points
  • Support services
  • Oracle Connection Manager
  • HTTP, Telnet, FTP, HTTPS(some Kerberos
    authenticated)
  • SCP (Secure Copy Protocol unix)
  • SSH
  • Web DB, Big Brother (Monitoring software),

8
Essential Components 2
  • Mistral Database Server
  • Hosts main Oracle Server
  • HTTP
  • Oracle Listeners, Names, Database
  • CITRIX Application Server
  • NFS(data sharing),
  • SMTP (e-mail)
  • LPR (printer) Fs (other printer)
  • SQL net, FTP, SSH(file upload)

9
Essential Components 3
  • Tandem
  • Print E-mail gateway
  • No user accounts on this machine
  • Services provided
  • SSH (Administrator Connections)
  • LPD (Printing)
  • SMTP (email)

10
Essential Components 4
  • Chinook
  • Disaster Recovery Machine standby database
  • Located offsite at 6555 Penn Ave.
  • Test Development machine
  • Mirroring of Development database every
    5-minutes
  • Existing passive fiber link between campus and
    this location.
  • Exact Same HW SW as Mistral

11
Essential Scenarios Budget Spreadsheet
Mistral (Databse Server)
Kerberos Domain Contriller
Kerberos
HTTP
O. Listener
CITRIX
(out)
O. DB
O. Forms
Acis.as. cmu.edu (Sun Sparc Cluster)
HTTPS
Oracle Connection Mgr.
CAMPUS NETWORK
SCP
Tandem
LPR (print)
SMTP (e-mail)
SSH
12
Essential Scenarios Feeder System
Mistral (Database Server)
Kerberos Domain Contriller
Kerberos
Secure Directory
HTTP
O. Listener
LPR (print)
O. DB
O. Forms
Acis.as. cmu.edu (Sun Sparc Cluster)
SMTP (e-mail)
HTTPS
Oracle Connection Mgr.
CAMPUS NETWORK
SCP
Tandem
LPR (print)
SMTP (e-mail)
SSH
13
Essential Components DB Mirroring
Mistral (Database Server)
Chinook (Backup)
O. DB
O. DB
O. Mirroring Software
O. Mirroring Software
Automatic mirroring of development database
changes every 5-minutes
14
Ongoing Steps
  • Client Users
  • 3rd client meeting to verify essential services
    and components
  • On-going interviews of Business Managers with and
    w/o feeder systems
  • Within Our Group
  • Development of potential intrusion detection
    scenarios attacker profiles
  • Identify compromisable components
  • Physical visit to 6555 Penn Ave. Backup facility

15
A potential security threat
  • Business Managers
  • 30 business managers
  • SCS, MCS, CIT, etc
  • Determine exactly who is able to obtain various
    forms of access to areas of the oracle financial
    system
  • For example, MCS
  • College Manager
  • 7 Business Managers
  • Provide access to 2-3 individuals (regular users)
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2025 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Survivable Network Analysis" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!