Embed Size (px)
Citation preview
InfraGard Update
SSA John V. Gillies
SA Matthew E. Morin
Overview
Role of InfraGard and NIPC Update on InfraGard Activities Future Plans for InfraGard Membership Options On-line Demonstration of Services Advisory
National Infrastructure Protection Center (NIPC) and InfraGard
“As part of a national warning and information sharing system, the President authorizes … a full scale National Infrastructure Protection Center (NIPC)...”
PDD-63
“This organization shall serve as a national critical infrastructure threat assessment, warning, vulnerability, and law enforcement and response entity...”
PDD-63 (cont.)
“In addition, it will establish its own relations directly with others in the private sector and with any information and analysis entity that the private sector may create...”
“All executive departments shall also share with the NIPC information about threats and warning of attacks and about actual attacks on critical government and private sector infrastructures to the extent permitted by law...”
h
Other Government
Agencies
NIPC
SectorLead Agencies
Federal, State, Local
Law Enforcement
InfrastructureOwners & Operators
IntelligenceCommunity
Department ofDefense
Warnings
Threats & Incidents
Info. Analysis and Warning
Mechanism for Receiving and Disseminating Information
Mechanism for Receiving and Disseminating Information
Incident InformationSubmitted to NIPCIncident InformationSubmitted to NIPC
emailFAX
telephoneSecure Web Server (InfraGard)
NIPCPROCESSING
NIPCPROCESSING
Dissemination of NIPCWarning Products
Dissemination of NIPCWarning Products
ClassifiedClassified Declassified orSanitized/Sensitive
Declassified orSanitized/Sensitive
Unclassified/Non-sensitive
Unclassified/Non-sensitive
-Autodin-STU-3-Secure FAX
-Secure Web-Server-Trusted Partner Channels- ISAC
-NIPC Public Web-Server-ANSIR-ISAC
NIPC Director
Deputy Director
Computer Investigations andOperations Section (CIOS)
Analysis and Warning Section (AWS)
Computer Investigations Unit
Special Technologies Applications Unit
Cyber Emergency Support Team
Analysis and Information Sharing Unit
Watch and Warning Unit
Training, Outreach and Strategy Section (TOSS)
Training and Continuing Education Unit
Strategic Planning Unit
Outreach and Field Support Unit
NIPC OrganizationNIPC Organization
InfraGardOur Code of Ethics
Public – Private partnership to protect U.S. critical infrastructures
Belief in sharing knowledge Serve Infragard and public in a diligent, loyal,
honest manner, and not commit illegal acts Maintain confidentiality of fellow members Protect and respect privacy rights, civil rights,
and physical and intellectual property of others
Local and NationalInfraGard Update
Hawaii InfraGard Chapter (HIGC)Yearly Report
Kickoff Conference in March 2000 4 Quarterly Meetings Guest Speakers
– Jed Haile (Snort – intrusion detection system)– Omer Poirier (United States Attorney’s Office)– Det. Chris Duque (Honolulu Police Department)– Jodi Ito (Implementing Security Policies)
Raised InfraGard Awareness
HIGCYearly Report (cont.)
17 members– 9 Secure– 8 Unsecure
Provisional Board Leadership– Sterling Yee (HEI)– Lester Nakamura (State of Hawaii)– Jodi Ito (University of Hawaii)– Janice Reitzel (Naval Criminal Investigative Service)
National InfraGard ProgramYearly Report
Attorney General Announcement
All 56 FBI Field Offices Participating
Leadership from Provisional National Executive Committee
Membership Opportunities– SANS 30% discount good through June, 2001
National InfraGard ProgramYearly Report (cont.)
National Public Website Operational– http://www.infragard.net
National Secure Website Operational– https://www.infragard.org
Several Chapter Websites Operational– http://www.hawaii.edu/infragard (work in progress)
The Futureof
InfraGard
HIGCOur Goals
Defining our Goals– Increase membership in InfraGard– Transition leadership to members– Enhance local reporting to NIPC– Enhance liaison between members– Serve community through public service
HIGCOur Plans
Change in Meeting Format– Monthly Member Meetings
Emphasis on “working” roundtable to address infrastructure security issues
Begin with report from FBI on significant events Time to address local and national InfraGard business To be held at FBI field office on set date
– Periodic Meetings Open to Public Designed to enhance public awareness of InfraGard Feature presentations related to protecting the information
infrastructure.
HIGCFuture Plans
Formation of Committees– Advisory
Officers Chapter by-laws Organization
– Outreach Plan meetings Communications Manage local website
– Public Service
National InfraGard ProgramElection of Board *
The National InfraGard Board will consist of seven members and will replace the Provisional National Executive Committee
Each chapter can nominate one member to serve Each chapter can vote for up to seven unique
nominees The seven nominees with the most votes will be
appointed
* The process for the election has not been finalized.
National InfraGard ProgramFirst National Conference
To be held on 6/11-14/2001 in San Diego, California
Each local chapter is funded to send InfraGard Coordinator and one delegate
Order of business includes election of National InfraGard Board
Membership Options
InfraGard Membership
Three Options
None (no affiliation) Membership Secure Membership
Membership is by organization, not individual
InfraGardMembership - None
Can attend periodic meetings that are open to the public
Can receive periodic information on InfraGard– Mostly periodic meeting announcements
InfraGardMembership - Member
Requires execution of membership agreement Requires agreement to Code of Ethics Can participate in monthly meetings Can vote in local and national elections Can serve as an officer, committee member FBI check NOT conducted Allows for participation of multiple individuals
from one organization
InfraGard SecureMemberhip - Member
Requires execution of Secure Access Agreement (SAA)– Provides legal framework for information sharing– SAA must be signed by “Authorized Binding Official”
Requires execution of Designated Representative (DR) Information form (DR)– Designates individual in organization who will have
access to the secure server FBI check conducted on DR and organization DR has all privileges of member
InfraGardMembership - Disclosure
FBI policy not to disclose identify of members Members may disclose affiliation Local members will be asked if they would like
to be listed in a membership directory Membership directory distributed to members
only and use must be consistent with Code of Ethics
On-Line Demonstrationof Services
Advisories
