Software Defined Networks – Four Years Later – Ivan Pepeljnjak (ipSpace)

Four years ago, the Software Defined Networking hype erupted with the formation of Open Networking Foundation. In the meantime, SDN became as meaningless as Cloud, as individual vendors and foundations started redefining the term to suit their particular needs.

This presentation will show the state of the SDN landscape, describe most popular SDN product implementation strategies, and review major production-grade products.

Obvladovanje dolgotrajnejših phishing napadov – Gorazd Božič (SI-CERT)

Zadnji teden januarja se je na komitente šestih slovenskih bank izvajal do sedaj najbolj vztrajen phishing napad. Na SI-CERT smo izvajali številne ukrepe za zamejitev napada in onesposabljanje phishing strani, kot zelo pomembno pa se izkaže tudi sodelovanje s slovenskimi operaterji in upravitelji poštnih strežnikov. V predavanju je prikazan potek incidenta in nauki, ki smo jih lahko iz njega izvlekli.

Yet Another Next Generation – Marko Tišler (NIL)

Pri upravljanju z omrežji In omrežnimi elementi navadno uporabljamo kombinacijo različnih vmesnikov npr. SNMP protokol, ukazno vrstico in različne spletne vmesnike.
IETF že od leta 2003 dela na novem protokolu za upravljanje omrežij imenovanem NETCONF, ki bi presegel omejitve razdrobljenega pristopa in hkrati poenotil način konfiguriranja naprav različnih proizvajalcev. V ta namen je bil jezik modeliranja in opisa konfiguracij omrežja in naprav ločen od transportnega protokola in poimenovan YANG.

V kratkem predavanju bodo predstavljene praktične izkušnje uporabe NETCONF in YANG ter različne posledice, ki jih imata na problematiko upravljanja z omrežij, kot jo poznamo danes.

RIPE Atlas – Vesna Manojlovic (RIPE NCC)

RIPE Atlas (https://atlas.ripe.net) is an active measurements platform, used by network
operators for real-time performance monitoring, customized measurements and integration
with network monitoring systems (such as Icinga). In this talk new and advanced features
of RIPE Atlas will be covered, in order to help SINOG participants in their day-to-day
work with the “view form the outside” given by RIPE Atlas.

Ivan Pepelnjak – ipSpace

Ivan Pepelnjak je naš daleč najbolj prodoren in ustvarjalen vrhunski strokovnjak s področja omrežnih tehnologij tako na področju WAN in LAN omrežij. Z omrežnimi tehnologijami se ukvarja že od leta 1985. Je eden prvih v svetu in nasploh slovenskih inženirjev, ki so si pridobili najprestižnejšo certifikacijo v industriji Cisco Certified Internetwork Expert (CCIE 1354). Ivan je znan je po številnih knjigah, člankih in objavah. Je redni pisec spletnega dnevnika ipSpace, kot tudi avtor svetovno znanih istoimenskih webinarjev s področja omrežne in strežniške virtualizacije, oblačnih storitev, SDN, VPN, IPv6 in arhitekture podatkovnih centrov. Kot dolgoletni strokovnjak in odličen poznavalec omrežnih tehnologij je zelo zaželjen in iskan po vsem svetu bodisi kot predavatelj ali kot svetovalec pri postavitvi novih podatkovnih centrov ali designa omrežij. Ivan je tudi gostujoči profesor na Fakulteti za računalništvo in informatiko Univerze v Ljubljani (FRI), kjer poučuje razvoj in design spletnih aplikacij, v svojem prostem času pa znan kot zagrizen športnik in ljubitelj alpinizma, kolesarjenja in turnega smučanja.

Frédéric Donck – ISOC

Frédéric Donck has in-depth experience as a negotiator and advocate in the telecommunications and Internet industry. Much of his work has been to bridge the interests of the public and private sector to negotiate policy solutions to the benefit of all parties.

During ten years of international public policy work within the European Commission, in particular with Directorate-General for Information Society and the Directorate-General for Enterprise, Frédéric developed and advocated for numerous European policies and decisions in the convergent e-communications sector. In this position, he also contributed to the launching and management of European-wide projects in the advanced television broadcasting and information and communications technology sectors as well as projects intended to create international clusters of small and medium-size enterprises.

During the past eight years, Frédéric has also been an adviser to corporate executives and boards in the telecommunications sector. He has, in particular, designed overall public and institutional policy as well as corporate reputation campaigns for major listed companies, including several of the world’s largest electronic communications companies. A former Head of European regulatory affairs for Belgacom Group, Frédéric also worked for five years as a Member of the Executive Board of the European Association of Telecom Operators (ETNO).

Frédéric holds a LLD (Law Degree), from the Catholic University of Louvain-La-Neuve (UCL) as well as a Masters in European law (LLM) from the State University of Ghent (Gand). He is currently conducting post-graduate work in “Strategic and Problem-Solving Therapy” from the Gregory Bateson Institute, the European extension of the Mental Research Institute of Palo Alto.

Frédéric is based in Geneva and Brussels, Switzerland and Belgium

Marko Tišler – NIL

Marko Tišler se v podjetju NIL Data Communications ukvarja z brezžičnimi komunikacijami, na tem področju pa je pridobil naziv neodvisnega strokovnjaka Certified Wireless Network Expert, ki ga podeljuje organizacija CWNP, za katero nastopa tudi v vlogi certificiranega inštruktorja.
Njegovo delo obsega poučevanje, načrtovanje, implementacijo, testiranje in analizo brezžičnih omrežij. Ukvarja se tudi s širšim naborom storitev, ki jih taka omrežja ponujajo, kot so lokacijske storitve, sledenje v realnem času in vključitvijo WiFi radijskega dostopa v okolje mobilnih operaterjev. Poleg brezžičnih omrežij v zadnjem času posega tudi na področje programsko definiranih omrežij.

Gorazd Božič – SI-CERT

Gorazd Božič je vodja nacionalnega odzivnega centra za omrežne incidente SI-CERT (Slovenian Computer Emergency Response Team), ki že od leta 1995 preiskuje vdore v računalnike, okužbe z računalniškimi virusi in pomaga uporabnikom pri raznovrstnih drugih zlorabah na internetu. Od leta 2000 do leta 2008 je predsedoval evropski skupini odzivnih centrov TF-CSIRT in je predstavnik Slovenije v upravnem odboru Evropske agencije za omrežno in informacijsko varnost ENISA. SI-CERT je del javnega zavoda Arnes, letos bodo na odzivnem centru praznovali 20 let od pričetka dela, torej od prve prijave incidenta. V študentskih časih je Gorazd delal v Laboratoriju za naravni jezik Inštituta Jožef Stefan, kjer je bil eden od soavtorjev programa za izdelavo konkordanc besedila OKUS. Takrat je opravljal tudi sistemsko administracijo za VAX/VMS in Unix sisteme laboratorija in pričel brati o lovu na Kevina Mitnicka in prvih hekerskih napadih na internetu. Da bodo računalniki tisto, kar ga bo zanimalo, se je pokazalo poleti leta 1980 na takratni Fakulteti za elektrotehniko, ko je spoznal PDP-11 računalnik in knjigo Egona Zakrajška o programskem jeziku FORTRAN.

Vesna Manojlovic – RIPE NCC

Vesna Manojlovic is the Senior Community Builder with a focus on measurement tools.
She joined the RIPE NCC as a Trainer in 1999. In 2003, she took responsibility for developing and delivering advanced courses, such as RPSL, Routing Registry, DNSSEC and IPv6. In 2008, she lead efforts to establish IPv6 RIPEness as a measure of IPv6 deployment among LIRs. In 2011, she joined the Science Division as Manager of the Measurements Community Building team.

Vesna also takes part in and gives presentations at many technical conferences and workshops.
Vesna received a BS in Computer Science and Informatics from the School of Electrical Engineering, University of Belgrade. She has three children

Program SINOG2 srečanja 10. junij 2015:

	Program	Predavatelj	Video
08:30 - 9:00	Registracija
09:00 - 9:15	Pozdravni govori
09:15 - 10:00	Keynote - How Internet Policy affects real life of NOGs/operators— an EU perspective	Frederic Donck (Internet Society)
10:00 - 10:45	Software Defined Networks: Four Years Later	Ivan Pepelnjak (ipSpace)
10:45 - 11:15	Coffee break
11.15 - 11:45	Model-based programmable networks	Ignas Bagdonas
11:45 - 12:15	DANE/TLS/DNSSEC for email servers testing and results from Go6 Lab	Jan Žorž
12:15 - 12:45	FFO - fracking fiber optic	Thomas Weible (Flexoptix GmbH)
12:45 - 14:00	Kosilo
14:00 - 14:30	Phishing slovenskih bank	Gorazd Božič (SI-CERT)
14:30 - 15:00	RIPE ATLAS	Vesna Manojlović (RIPE-NCC)
15:00 - 15.30	YANG and NetConf	Marko Tišler - NIL
15:30 - 16.00	Žrebanje nagrad in hladna osvežitev (TBC)	sponzor nagrad in osvežitve: CHS d.o.o.

Povezava do 10. Slo IPv6 summit agende.

Organizatorji dogodka si pridružujejo pravico spremembe programa.

Strokovna konferenca o omrežnih tehnologijah, varnosti in internetni skupnosti

Kje: Tehnološki park Ljubljana-Brdo, Tehnološki park 19 (Google Maps)
Organizatorji: SINOG, Zavod go6, LTFE in Arnes
Kdaj: 10. junij 2015
Cena udeležbe: brezplačno
Omejitev udeležencev: 120 (v primeru prezasedenosti dvorane imajo prednost pri udeležbi sponzorji, člani SINOG foruma in člani Zavoda go6)

• Agenda
• Predavatelji
• Sponzorji
• Vsebina predavanj
• Vabilo (PDF)

Dogodek je namenjen internetni skupnosti ter omrežnim strokovnjakom, ki jih zanimajo nove tehnologije ter novosti, ki se dogajajo na internetnem parketu. Celodnevna konferenca je že druga vrsti in nadaljuje uspešne serije preteklih tematskih delavnic. Program bo obravnaval novosti na področju razvoja programskih omrežij SDN, obravnavani bodo pretekli phishing napadi, predstavljen bo projekt RIPE NCC o ATLAS sondah in še veliko drugega.

Dogodek hkrati tematsko nadaljuje IPv6 summit, ki bo dan pred tem v istih prostorih.

Fortinet protects the most valuable assets of some of the largest enterprise, service provider and government organizations across the globe. The company’s fast, secure and global cyber security solutions provide broad, high-performance protection against dynamic security threats while simplifying the IT infrastructure. They are strengthened by the industry’s highest level of threat research, intelligence and analytics. Unlike pure-play network security providers, Fortinet can solve organizations most important security challenges, whether in networked, application or mobile environments – be it virtualized/cloud or physical. More than 210,000 customers worldwide, including some of the largest and most complex organizations, trust Fortinet to protect their brands.

Martijn Duijm  – DDOS – Size isn’t everything

According to Verisign’s Distributed Denial of Service Trends Report Q4-2014 the average attack size has grown with 14% over Q3-2014 to 7.39Gbps in Q4-2014. 42% percent of the attacks where over 1Gbps, which means that, 58% of the attacks currently are below the 1Gbps. These variations in attacks need a new method of detection and blocking of attacks. Fortinet’s FortiDDOS device has been built from the ground up to block all kinds of DDOS attacks from below 1Mbps to 38Gbps per device. Martijn Duijm from Fortinet will explain how FortiDDos differs from most DDOS solutions and will help you block even the most sophisticated attacks to your environment.

Marco Gioanola – Ten years of DDoS attacks in the data of Arbor Networks’ Worldwide Security Report and ATLAS

Arbor Networks has been publishing its Worldwide Infrastructure Security Report since 2004; the tenth edition of the survey was 180 questions long and hundreds of organizations worldwide provided an invaluable amount of information about DDoS attacks and their overall approach to security. Arbor’s ATLAS is the largest global effort in sharing and analysis of Internet traffic trends, currently monitoring a peak of more than 100Tbps.

• The presentation will describe the contents of the Security Report especially with respect to:
  the evolution in size and type of DDoS attacks in the last ten years;
• the year 2014 in detail: attack vectors, mitigation techniques, level of preparedness of organizations.

Based on the evidence and experience from more than ten years of DDoS mitigation with major global ISPs, the following topics will then be discussed:

• the do’s and don’ts of DDoS mitigation countermeasures;
• the need for a multi-layer approach and what role the different stakeholders can play against DDoS attacks.

Jernej Porenta  – Pristopi k reševanju neželene elektronske pošte

Neželena elektronska pošta je po mnenju mnogih stvar preteklosti, a na žalost v praksi ni
tako. Pošiljatelji neželene pošte so namreč vedno korak pred tistimi, ki se trudimo
doseči pravilno razporejanje elektronske pošte. V predstavitvi bom predstavil, kako se s
tem ubadamo na Arnesu, kateri so pristopi, ki so se izkazali za uspešne in kaj lahko
naredite sami, da bo vaša elektronska pošta pravilno razvrščena.

Mitja Jenček  – Postopki in metode odbijanja DDoS napadov v praksi

Ponudniki se dnevno srečujemo incidenti , kot so DDOS napadi, ki predstavljajo resne grožnje za uporabnike, predvsem poslovnim uporabnikom lahko omenjeni incidenti povzročajo veliko škodo saj jim omejujejo poslovanje.
V predavanju bo predstavljen način kak se ponudniki borimo proti tovrstnim grožnjam in katere postopke uporabljamo v Telekomu Slovenije za preprečevanje tovrstnih DDOS napadov.

Mark Martinec  – Filtriranje e-pošte z Amavis in SpamAssassin

Kaj sta Amavis in SpamAssassin? Njuna umestitev v sistem e-pošte. Kratek pregled metod, ki jih Amavis in SpamAssassin uporabljata pri klasifikaciji sporočil. Avtentičnost in zasebnost pri prenosu sporočil (DKIM, DMARC, TLS/DANE). Dober glas seže v deveto vas (domain reputation). Podpora internacionalizaciji poštnih sporočil in naslovov (SMTPUTF8, IDNA). Novosti, ki jih prinašata SpamAssassin 3.4.1 in Amavis. Strukturirani dnevniški zapisi in iskanje po njih z Elasticsearch/Kibana.

Martijn Duijm – Fortinet

Martijn Duijm has been working in various positions in the security industry for 19 years, specializing in Application Security and DDoS solutions. In his current role as Director of Sales Engineering at Fortinet Inc., he is a senior advisor to corporate product management for three Advanced Technologies in the Fortinet portfolio: FortiWeb, FortiDB and FortiDDoS. Martijn frequently speaks on security issues at various conferences across the globe.

Marco Gioanola – Arbor Networks

Marco Gioanola graduated in 1997 with a thesis on PGP and Public Key Criptography. He then worked as a consultant for major banks on Certificate Authority and Internet Banking projects. In 2000, he partecipated in the start up of one of the first Managed Security Services companies in Italy. In 2003 he followed the fist implementations of DDoS Detection and Mitigation solutions at major Italian Internet Service Providers. He joined Arbor Networks in 2006 and since then helped ISP and enterprise customers design and implement their anti-DDoS solutions in a large number of markets, from Italy to the Balkans, Greece, Turkey and the Middle East. Since 2013, he is Subject Matter Expert for Arbor Cloud, Arbor’s provider agnostic DDoS Mitigation service. He is currently assisting customers with anti-DDoS and anti-APT solutions as a Senior Consulting Engineer.

Jernej Porenta – Arnes

Jernej Porenta je diplomiral na Fakulteti za računalništvo in informatiko Univerze v
Ljubljani in na Arnesu skrbi za delovanje poštnih strežnikov, sistemov za označevanje
neželene elektronske pošte ter ostala opravila sistemskih administratorjev.

Mitja Jenček – Telekom Slovenije

Mitja Jenček je zaposlen na Telekomu Slovenije v Ljubljani v Sektorju za konvergentno jedrno omrežje.

V Telekomu Slovenije in prej v Siol-u je zadolžen za upravlja IP/MPLS hrbteničnega omrežja, sodeluje pri razvoju in implementaciji omrežnih rešitev znotraj skupine Telekoma Slovenije. Prosti čas pa posveča 15 mesečnemu sinu.

Mark Martinec – Institut Jožef Stefan

Diplomiral na Fakulteti za elektrotehniko, računalništvo in informatiko v Ljubljani. Na Institutu Jožef Stefan je sodeloval pri razvoju strojne in programske opreme na več projektih s področij računalniške grafike, CAD, stavljenja besedila. Na univerzi Cambridge
je sodeloval pri načrtovanju in preverjanju integriranih vezij za omrežje Cambridge ring. Zaposlen je na IJS v skupini za omrežno infrastrukturo kot sistemski inženir. Že od leta 1996 aktivno sodeluje v odprtokodnih projektih (ANU-News, NTP, …). Od leta 2002 posveča znaten del svojega časa razvoju programa Amavis za potrebe IJS in v dobrobit odprtokodne skupnosti. Je član upravnega odbora (PMC) projekta Apache SpamAssassin od leta 2008 in aktivni razvijalec na tem projektu

	Program	Predavatelj	Video
15:30 - 16:00	Registracija udeležencev
16:00 - 16:10	Pozdravni nagovor organizatorja in glavnega sponzorja
16:10 - 16:40	DDoS - size isn't everything	Fortinet - Martijn Duijm
16:40 - 17:10	Ten years of DDoS attacks in the data of Arbor Networks’ Worldwide Security Report and ATLAS	Arbor Networks - Marco Gioanola
17:10 - 17:40	Postopki in metode odbijanja DDoS napadov v praksi	Telekom Slovenije - Mitja Jenček
17:40 - 18:05	Minute za sponzorje
18:05 - 18:25	Coffee Break
18:25 - 18:55	Filtriranje e-pošte z Amavis in SpamAssassin	Mark Martinec - IJS
18:55 - 19:25	Pristopi k reševanju neželene elektronske pošte	Jernej Porenta - Arnes

Programski odbor SINOG si pridružujejo pravico spremembe programa.