ESILUG Meetings of 2003

ESILUG FAQ

Schedule

E-mail List

Presentations

Contacts

History

Contents

• December 2, 2003
• September 23, 2003
• August 5, 2003
• March 25, 2003
• January 28, 2003

---

December 2, 2003

Topics:

• Digital Evidence Is Often Evidence of Nothing
• Security: Threats, Trends, and Management in Enterprise Networks

Digital Evidence Is Often Evidence of Nothing

Michael Caloyannides, Mitretek Systems

Abstract: Computers get subpoenaed or confiscated on a regular basis and forensically examined data is presented in court. Yet such data -- for which we can be held criminally liable -- can and does enter all of our computers without our knowledge or consent. Ways that incriminating data enters our computers includes web-browsing of sites that flash offensive images on the screen (which get cached in our disks), unsolicited emails (whose offensive attachments we never bother to overwrite), online hackings, wireless connectivity (Wi-Fi), letting others use our computers, etc., etc. Most juries, judges and defense lawyers are totally oblivious to this and one can end up in jail for content found in one's hard drive that one never put there.

About the Speaker: Michael Caloyannides earned his PhD from Caltech in Electrical Engineering, Applied mathematics and Philosophy. He subsequently worked on a number of classified efforts in the Aerospace industry for 13 years, during which time he was awarded a US patent on high speed modem design.

He subsequently worked as chief scientist for an agency of the US government, concentrating on developing techniques to enable US government employees to protect the confidentiality of their official computer files from unauthorized eyes. He also created a number of courses on this and related topics which were attended by thousands of federal employees. He was awarded the Scientist of the Year award for some classified work, and numerous Exceptional Accomplishment Awards.

He is now a Senior Fellow with Mitretek Systems, dealing with many aspects of information security. He has recently published two books on computer forensics and privacy, and is a regular columnist for the journal on Security and Privacy published by the IEEE Computer Society. He is regularly quoted on issues in security in the New York Times and in numerous technical publications.

Security: Threats, Trends, and Management in Enterprise Networks

Cy Ardoin, Mitretek Systems

Abstract: The presentation will review typical configurations for network security and present a structured model of the threat and means/motives for attacks. The talk will review methods to control and manage change in network security and basic functions that should be implemented by these controls. Ground rules for managing changes and technology are also addressed to illustrate the most pressing problems currently facing many organizations. Examples from Government and Industry will be used to illustrate many of the critical points during this presentation.

About the Speaker: Dr. Cy Ardoin, is the Sr. Manager for the INFOSEC Engineering Group at Mitretek Systems, Inc. He has many years of experience in the design, implementation, and assessment of computer security solutions in the telecommunications, military, healthcare, consulting, financial, and R&D industries. He has designed security programs for national and global networking environments and provides technical support on computer security to many organizations. Prior to joining Mitretek Systems, he was the Chief Security Consultant for Cypress Consulting and a member of the research staff at the Institute for Defense Analyses.

---

September 23, 2003

HP World 2003 Recap

Jim Becker and other conference attendees

What went on at HP World 2003 (August 11-15 in Atlanta)? What are the plans for next year's conference? This brief session will cover the highlights.

HP Enterprise Storage & Servers Portfolio Update

Ed Herold, HP Solutions Architect,
Randy Stapleton, StorageWorks Specialist

Do you want to know the latest about HP's ESS products? ESILUG's longtime HP Counterpart Ed Herold will cover the following topics:

• AlphaServer Roadmap
• HP Integrity Server Roadmap
• HP 9000 Server Roadmap
• OpenVMS Update
• Tru64 UNIX Update
• HP-UX Update
• Linux Update

Ed will dive deep or shallow into each topic according to the interests of those who attend the meeting.

Randy Stapleton will cover:

• HP StorageWorks Roadmap and Update

---

August 5, 2003

Cross-Platform Performance Monitoring Using OpenView

Chris Adams, HP

This session will cover the following topics...

What is OpenView?

A brief discussion on the breadth and depth of the OpenView solution portfolio

What's new in Network Management?

A discussion on NNM 6.4/Extended Topology 2.0 and what's coming in NNM 7.0

Managing heterogeneous environments with OpenView Operations for Windows

A discussion on Operations for Windows as an enterprise console for managing a variety of systems and applications

Cross-Platform performance management

A discussion of the OpenView technologies used to collect, alarm, and report on system performance data

Service Management Overview

A discussion on the tools in the OpenView suite for service management, mainly Service Desk

---

March 25, 2003

How Storage Technologies Can Bring Higher Data Availability

Karen Fay, HP Senior Technical Consultant, Network Storage Solutions Customer Center (NSSCC) Colorado Springs, Colorado

There are many reasons for data loss or loss of access to the data. There are also many solutions to address each form of unavailability to your business. Not just one technology is necessarily appropriate. This discussion will outline when to use the appropriate technology and how hp Network Storage Solutions could benefit your business.

SAN Technology and Vision - HP's ENSA Vision and Virtualization discussion

Randy Stapleton, HP Network Storage Solutions Specialist

This session will cover HP's storage vision ENSA - i.e. how information is available to any user anytime and anywhere. Providing an adaptive storage infrastructure is what is required to deliver the storage utility model.

Virtualization technology is a key building block for an adaptive storage infrastructure and provides significant value to the IT organization.

HP Server Roadmap for Linux Solutions on Intel Servers

Ed Herold, HP Solution Architect

This short session will review the plans for Linux platform support across IA-32 and IA-64 server offerings by HP.

January 28, 2003

Location: HP Greenbelt, MD (our usual location)

Common Security Problems with Home Networks

This talk will discuss ways in which you can network your home (or home office) to take advantage of broadband (cable and DSL) Internet access. Options for wired and wireless networking will be discussed along with a description of hardware and software that can be used to share a single broadband Internet connection between several home computers. Common security problems with home networks will be described along with solutions for these problems. This is intended to be a practical, buzzword-free session that will help you avoid the common pitfalls.

Speaker: Rick Murphy is a Senior Principal Information Security Scientist in the Information Technology Services division of Mitretek Systems a not-for-profit public interest research and development firm. He works to help Federal and local government agencies improve their network and information security. In the past, he has worked as the product Architect for the Gauntlet Internet Firewall at Trusted Information Systems, and for nearly 20 years in Customer Support at Digital Equipment Corporation.

OpenVMS Security: Hackers and Crackers and Vice, Oh My!

Q: What has 64-bits, clustering and can't be hacked into? A: OpenVMS of course! Come and hear about OpenVMS's security battles over the past few years at the DEFCON9 hackers convention where it was declared cool and unhackable. You'll learn about numerous secure OpenVMS deployments in use across the Internet today!

OpenVMS Security is legendary in our Industry for being unhackable! This talk will compare OpenVMS to other systems and discuss hardening an already hard OpenVMS environment into an impregnable "Internet Bunker". OpenVMS keeps your data, web pages, and files secure from the dark forces that hunt weak prey on the Internet. Not one of the 100,000+ viruses ever to roam the net has ever compromised OpenVMS!

OpenVMS Security best practices will be discussed as well as the right tools and techniques for keeping your system safe functional, and available during the worst threats that hackers can bring to bear on a system connected to the internet.

Speaker: John Wisniewski has been with DEC/CPQ/HP for 15 years as an OpenVMS Ambassador, and a Solutions Architect for OpenVMS, Security, and OpenVMS Interoperablity. John was awarded the OpenVMS engineering Hall of Fame, has received the DECUS BoD pin, and is a regular speaker at both National and local DECUS/Encompass events. Together with the DFWLUG and OpenVMS Engineering, John helped launch the OpenVMS Hobbyist which now serves over 50,000 free licenses per year to VMS Hobbyists world-wide. His current book Linux and OpenVMS Interoperablity is now available from Digital Press.