6

Release of the LACNOG-M3AAWG Joint Best Current Operational Practices (BCOP) Lucimara Desiderá LAC-AAWG chair

Release of the LACNOG-M3AAWG Joint Best Current

Download PDF Report

Upload
others
View
2
Download
0

Embed Size (px)

Citation preview

Page 1: Release of the LACNOG-M3AAWG Joint Best Current

Release of the LACNOG-M3AAWG Joint Best Current

Operational Practices (BCOP) LucimaraDesiderá

LAC-AAWGchair

Page 2: Release of the LACNOG-M3AAWG Joint Best Current

Official release on 08 May 2019 LACNOGandM3AAWGjointBCOP

MinimumSecurityRequirementsforCustomerPremisesEquipment(CPE)Acquisition.

https://www.lacnog.net/docs/lac-bcop-1

https://www.m3aawg.org/CPESecurityBP

Comingsoon–Translationto:•  SpanishandPortuguese

•  JapaneseandKorean(JP-AAWG)

Page 3: Release of the LACNOG-M3AAWG Joint Best Current

Official release on 08 May 2019

Page 4: Release of the LACNOG-M3AAWG Joint Best Current

Why care about CPE Security?

Businessandoperationalimpacts•  Compromisingoftheprovider'snetwork

-  Someoneelseisusingyourresources• Degradationorunavailabilityofservices

-  Youcanloseclients•  Technicalsupportandrepairwork

-  Youarelosingmoney•  ProtectthereputationofyourISP

-  Customers,partnersandblacklists

Page 5: Release of the LACNOG-M3AAWG Joint Best Current

Problems the BCOP addresses

• Standardcredentialsforalargenumberofdevices• Credentialsthatcannotbechanged(hard-coded)• Useofobsoleteandinsecureprotocolsandalgorithms

• Undocumentedaccesses(backdoors)• Lackofautomatedandsecureupdatemechanismstoaddresssecurityissues

• Unnecessaryand/orinsecureservicesenabledbydefault

• Servicesthatcannotbedisabled•  Insecureremotemanagement

Page 6: Release of the LACNOG-M3AAWG Joint Best Current

What is inside? Areferencechecklistforhardwaredecisions→  Let’saskvendorsforbetterproductswhileimprovingournetworks!😀

AAWG DMARC Training Series...M3AAWG DMARC Training Series Mike Adkins, Paul Midgen DMARC.org October 22, 2012 M3AAWG 26th General Meeting | Baltimore, October 2012 Segment 1 What is

AAWG DMARC Training Series...M3AAWG DMARC Training Series Mike Adkins, Paul Midgen DMARC.org October 22, 2012 M3AAWG 26th General Meeting | Baltimore, October 2012 Segment 1 What is

Documents

NIST Email Security Improvements - M3AAWG · NIST Email Security Improvements William C. Barker and Scott Rose October 22, 2015 M3AAWG 35th General Meeting M3AAWG 35th General Meeting

NIST Email Security Improvements - M3AAWG · NIST Email Security Improvements William C. Barker and Scott Rose October 22, 2015 M3AAWG 35th General Meeting M3AAWG 35th General Meeting

Documents

DEC “ 3 2018.pdfby the City of Tabuk, Province of Kalinga. SEC. 3. Barangay Officials. The first set of officials of Barangay Lacnog West shall be appointed by the Provincial Governor

DEC “ 3 2018.pdfby the City of Tabuk, Province of Kalinga. SEC. 3. Barangay Officials. The first set of officials of Barangay Lacnog West shall be appointed by the Provincial Governor

Documents

M3AAWG Trust in Email Begins with Authentication · 2015. 6. 3. · M3AAWG Messaging, Malware and Mobile Anti-Abuse Working Group P.O. Box 29920 San Francisco, CA 94129-0920 info@M3AAWG.org

M3AAWG Trust in Email Begins with Authentication · 2015. 6. 3. · M3AAWG Messaging, Malware and Mobile Anti-Abuse Working Group P.O. Box 29920 San Francisco, CA 94129-0920 [email protected]

Documents

Shoulder joint, sterno clavicular joint, acromio-clavicular joint (2)

Shoulder joint, sterno clavicular joint, acromio-clavicular joint (2)

Education

The Enduring Challenges of Traffic Analysis M3AAWG 34 11:00-12:00, Thursday, June 11, 2015 Dublin, Ireland Joe St Sauver, Ph.D. (stsauver@fsi.io) M3AAWG

The Enduring Challenges of Traffic Analysis M3AAWG 34 11:00-12:00, Thursday, June 11, 2015 Dublin, Ireland Joe St Sauver, Ph.D. ([email protected]) M3AAWG

Documents

The Mobile Problem - M3AAWG · Fraud Harassment Network disruption • Growing internationalization of abuse and global homogenization of abuse technologies Toolkits Criminal economy

The Mobile Problem - M3AAWG · Fraud Harassment Network disruption • Growing internationalization of abuse and global homogenization of abuse technologies Toolkits Criminal economy

Documents

General Report LACNOG 2015

General Report LACNOG 2015

Engineering

The Bot Problem - M3AAWG€¦ · – Important not to make this seem to be an upsell for additional services – Need a prominent “free” remediation path – Often too complex

The Bot Problem - M3AAWG€¦ · – Important not to make this seem to be an upsell for additional services – Need a prominent “free” remediation path – Often too complex

Documents

SMTP Transport Security: Past, Present, Future€¦ · SMTP Transport Security: Past, Present, Future Viktor Dukhovni 2015/10/20 ... What occurs in a M3AAWG meeting cannot be shared

SMTP Transport Security: Past, Present, Future€¦ · SMTP Transport Security: Past, Present, Future Viktor Dukhovni 2015/10/20 ... What occurs in a M3AAWG meeting cannot be shared

Documents

Charcot joint / Neuropathic Joint

Charcot joint / Neuropathic Joint

Health & Medicine

The Community and Operation of DNSWL communications and/or public or semi-public social media. In accordance with applicable law, M3AAWG prohibits sexual harassment and harassment

The Community and Operation of DNSWL communications and/or public or semi-public social media. In accordance with applicable law, M3AAWG prohibits sexual harassment and harassment

Documents

Pervasive Monitoring SIG - M3AAWG › system › files › m3aawg-35-keys... · SMTP Transport Security: Past, Present, Future 10/20/2015 1:00 pm – 2:00 pm Keys Under Doormats 10/20/2015

Pervasive Monitoring SIG - M3AAWG › system › files › m3aawg-35-keys... · SMTP Transport Security: Past, Present, Future 10/20/2015 1:00 pm – 2:00 pm Keys Under Doormats 10/20/2015

Documents

Collaborative policy development at M3AAWG VTASIG and LAP DNC

Collaborative policy development at M3AAWG VTASIG and LAP DNC

Documents

Knuckle Joint & Cotter Joint

Knuckle Joint & Cotter Joint

Documents

Upper Extremities Parts Shoulder Girdle Shoulder Joint Elbow Joint Radioulnar Joint Wrist Joint

Upper Extremities Parts Shoulder Girdle Shoulder Joint Elbow Joint Radioulnar Joint Wrist Joint

Documents

GLENOHUMERAL JOINT (SHOULDER JOINT)

GLENOHUMERAL JOINT (SHOULDER JOINT)

Documents

Bolt-Pro - Bolting Calculator Joint-Pro - Complete Joint …Joint-Pro - Complete Joint Integrity Management System Joint-Pro, HTL Worldwide’s joint integrity database management

Bolt-Pro - Bolting Calculator Joint-Pro - Complete Joint …Joint-Pro - Complete Joint Integrity Management System Joint-Pro, HTL Worldwide’s joint integrity database management

Documents

LACNOG Sao Paolo October 2010 Mehmet Akcin · Signing the Root LACNOG Sao Paolo October 2010 Mehmet Akcin Tuesday, October 19, 2010. AS SEEN IN ROOT and my T-Shirt. IN DS 19036 8

LACNOG Sao Paolo October 2010 Mehmet Akcin · Signing the Root LACNOG Sao Paolo October 2010 Mehmet Akcin Tuesday, October 19, 2010. AS SEEN IN ROOT and my T-Shirt. IN DS 19036 8

Documents

The state of the Global IPv6 Internet (maybe a little history) Hurricane Electric IPv6 Native Backbone – Massive Peering! LACNOG 2011 Buenos Aires – 4th

The state of the Global IPv6 Internet (maybe a little history) Hurricane Electric IPv6 Native Backbone – Massive Peering! LACNOG 2011 Buenos Aires – 4th

Documents

Segment Routing Lacnog 16slides.lacnic.net/wp-content/themes/slides/docs/lacnic26/...IPv6 SPRING Use Cases (draft-ietf-spring-ipv6-use-cases) Segment Routing UseCases (draft-filsfils

Segment Routing Lacnog 16slides.lacnic.net/wp-content/themes/slides/docs/lacnic26/...IPv6 SPRING Use Cases (draft-ietf-spring-ipv6-use-cases) Segment Routing UseCases (draft-filsfils

Documents

B A-A VV G - M3AAWG · Acceptable Use Policy • Protects both the company and customers from abuse of services – Set clear standards for proper system use – Use language that

B A-A VV G - M3AAWG · Acceptable Use Policy • Protects both the company and customers from abuse of services – Set clear standards for proper system use – Use language that

Documents

LACNOG - Logging in the Post-IPv4 World

LACNOG - Logging in the Post-IPv4 World

Technology

M3AAWG Mobile Messaging Best Practices for Service ......account identifier and network address. It includes Person-to-Person (P2P) as well as Application-to-Person (A2P) messaging

M3AAWG Mobile Messaging Best Practices for Service ......account identifier and network address. It includes Person-to-Person (P2P) as well as Application-to-Person (A2P) messaging

Documents

M3AAWG Companion Document: Recipes for Encrypting ......• Click on the Terminal window running cloudflared proxy -dns, then hit control-C to kill that process. • Go to Mac OS System

M3AAWG Companion Document: Recipes for Encrypting ......• Click on the Terminal window running cloudflared proxy -dns, then hit control-C to kill that process. • Go to Mac OS System

Documents

M3AAWG Mobile Messaging Best Practices for Service Providers

M3AAWG Mobile Messaging Best Practices for Service Providers

Documents

Kinesiology. Humeroulnar Joint Humeroulnar Joint True hinge joint True hinge joint

Kinesiology. Humeroulnar Joint Humeroulnar Joint True hinge joint True hinge joint

Documents

CENTRAL JOINT AVIATION AUTHORITIES JOINT OPERATIONAL ... JOEB Report.pdf · CENTRAL JOINT AVIATION AUTHORITIES Joint Operati ... CENTRAL JOINT AVIATION AUTHORITIES JOINT OPERATIONAL

CENTRAL JOINT AVIATION AUTHORITIES JOINT OPERATIONAL ... JOEB Report.pdf · CENTRAL JOINT AVIATION AUTHORITIES Joint Operati ... CENTRAL JOINT AVIATION AUTHORITIES JOINT OPERATIONAL

Documents

5th Internet Infra Week Brazil by NIC.br - LACNOG

5th Internet Infra Week Brazil by NIC.br - LACNOG

Engineering

Internet Security Trends LACNOG 2011 Julio Arruda LATAM Engineering Manager

Internet Security Trends LACNOG 2011 Julio Arruda LATAM Engineering Manager

Documents