Download PDF
Los Alamos Replaces sudo with PowerBroker for Servers
Technology Category
- Cybersecurity & Privacy - Database Security
Applicable Industries
- National Security & Defense
Applicable Functions
- Discrete Manufacturing
Use Cases
- Cybersecurity
Services
- System Integration
The Challenge
In the fall of 2006, Los Alamos National Laboratory was tasked with performing an audit of their cyber security systems, including inspections of its safeguards and security functions. The audit aimed to ensure that the organization had a system in place that complied with federal regulations, including the Federal Information Security Management Act of 2002 (FISMA). The lab was using sudo, an open source software program that only tracked activity on a machine-by-machine basis. However, the audit revealed inefficiencies associated with using sudo for these purposes. IT administrators were spending an excessive amount of time managing every machine individually to extract and consolidate relevant information from various logs to illustrate compliance and ability to monitor and control privileged users’ activity. Around the same time, the lab learned that it would be inheriting the responsibility of administering about 200 additional UNIX and Linux systems. The staff agreed that it would be impossible to manage this complex heterogeneous environment using the current monolithic architecture of open source sudo.
About The Customer
Los Alamos National Laboratory (www.lanl.gov), located in Los Alamos, N.M., is a premier national security research institution, delivering scientific and engineering solutions for the nation’s most crucial and complex problems. The lab’s primary responsibility is ensuring the safety, security and reliability of the nation’s nuclear deterrent. In addition to being one of the largest multi-disciplinary institutions in the world, Los Alamos is also the second largest institution and employer in northern New Mexico, with more than 11,000 employees and contractors.
The Solution
After extensive review and analysis, BeyondTrust’s PowerBroker for Servers established itself as the most complete solution to provide centralized authorization management and reporting across the lab’s heterogeneous network of Unix and Linux hosts. PowerBroker for Servers provides granular delegation of root administrative privileges on Unix or Linux systems with a complete and secure audit trail of all delegated actions. PowerBroker for Servers increases productivity by directing all log files from each machine to a centralized log server for easy management. PowerBroker for Servers captures keystrokes, output and errors, and it can record and replay an entire user session, making it much easier to backtrack to identify the source and cause of a problem. The indelible audit trail can track activity by whom, what, when and where and then selectively query, extract and display information from the generated log files. This satisfies compliance requirements for the accountability required for access security.
Operational Impact
Related Case Studies.
Case Study
Data Capture for Afghanistan Forces
Electronic equipments on the field of Afghanistan provided information on the status of the vehicle and to identify potential threats surrounding it to the British Force. The monitoring and interpretation of this data requires robust and sophisticated digitization for data capture and communication.
Case Study
Major Aerospace Company Automates Asset Management
The O&M division of an aerospace and global security company was using spreadsheets to manually track more than 3,000 assets assigned to students and staff. Maintaining audit trails for this high volume of equipment became increasingly time-consuming and challenging. The chore involved knowing precisely what equipment was on hand, what had been issued, its location and the name of the custodial owner of each item. Every aspect of this task was carried owner of each item. Every aspect of this task was carried out by individuals with spreadsheets. Manually documenting the full lifecycle of each asset added to the burden. This included tracking maintenance requirements and records, incidents and damages, repairs, calibrations, depreciation, and end-of-life data.
Case Study
Securing a Large Data Center in the EMEA Region: An IoT Case Study
A leading data-center operator in the EMEA region, with multiple facilities spanning over 25,000 square meters, faced significant security challenges. The operator experienced interruptions in their internal IT network due to unsupervised work of third-party technicians. Despite having a high-end building control system that provided 24x7 monitoring and control to all the building’s infrastructure, the data center was vulnerable from a cyber perspective as it was connected to the IT network infrastructure. The operator launched an urgent OT cyber security project that included both IT-OT network segmentation and OT network asset mapping and anomaly detection. The main objectives were to harden the security of the server systems, secure the facility’s power supply and server cooling system, strengthen the segmentation between building and operational systems, create a visual OT network map, and set up a system for presenting supply-chain attacks that may threaten the data center through equipment vendors’ maintenance activities.
Case Study
Enhancing Security Precision with IoT: A Case Study of Guardsman Group
Guardsman Group, a leading security company in the Caribbean, faced a significant challenge in maintaining the security of its digital infrastructure. The company provides security equipment, personnel, and systems for various businesses across the region. However, one of its offices experienced a security incident that affected all communications at that location. The existing security tools were not sufficient to provide the necessary protection, and it took hours to identify the source of the issue. This incident highlighted the need for a dynamic solution that could proactively identify threats. The company's primary concern was any disruption to its business, as it manages a significant portion of Jamaica's money and cannot afford for its operations to go down.
Case Study
LoRaWAN - Helping citizens and organizations to reduce environmental impact
More and more, our world is becoming aware about the environmental print that comes with population growth, limitation of resources, climate change and the need for sustainability. The biggest challange here was to raise awareness among citizens and organizations about their environmental impact, and to help themto reduce it in a sustainable way with the help of Real time data.
Case Study
Enhancing City Security through IoT: A Case Study of Atlanta
The city of Atlanta, with a resident population of over 420,000 and a metropolitan area of more than five million people, faced the challenge of ensuring the safety and security of its citizens and visitors. As a leading tourist destination and a multicultural city attracting global investment, Atlanta had to deal with the complexities of managing safety and security incidents. Over the years, the city had invested in various surveillance systems, providing visual intelligence to law enforcement and security professionals. However, these systems operated independently and were spread across a wide geography. The city aimed to increase collaboration among government agencies and create a shared Video Integration Center (VIC). The challenge was the disparate nature of the video systems, which were based on proprietary technologies and were both analog and IP based. The city also wanted to leverage the numerous private cameras located across the city, further complicating the integration of all these systems into one common platform.