Data Center Facility/Operation Technology and Security: Difference between revisions

From OpenCompute
Jump to navigation Jump to search
No edit summary
 
(31 intermediate revisions by 6 users not shown)
Line 16: Line 16:
====Incubation Committee Representative====
====Incubation Committee Representative====


:- TBD (Rackspace)
:- [mailto:justin.steadman@ocproject.net Justin Steadman] (Rackspace)


====Project Lead====
====Project Lead====
:- [mailto:rob.coyle@ocproject.net Rob Coyle] (PCX)
:- [mailto:bret.lehman@ocproject.net Bret Lehman] (PCX)
:- [mailto:anand.ramesh@ocproject.net Anand Ramesh] (Google)
:- [mailto:madhusudan.iyengar@ocproject.net Madhusudan Iyengar] (Google)


====Sub-project Leads====
====Sub-project Leads====
:- [mailto:joey.arato@ocproject.net Joey Arato] (Facebook)
:- [mailto:ikechukwu.mezu@ocproject.net Ikechukwu Mezu] (Meta)
:- [mailto:jon.littell@ocproject.net Jon Littell] (Google)
:- [mailto:ejwong@google.com Eehern Wong] (Google)


==Documents==
==Documents==


:- [https://drive.google.com/file/d/1LJRY7_N7HXIGW6eXTR_wf-MfwGuim_HS/view?usp=sharing OTS Background]
:- [https://drive.google.com/file/d/1wLRTIugtGmVp2IcoYGulZsYCP7UPHAEv/view?usp=sharing '''OTS Background''']


==== Current Workstreams ====
==== Current Workstreams ====


To start we are focusing on what a baseline physical security standard would look like for a data center, what types of communications standards and protocols would best enable secure comms of this equipment and how we best monitor it for security issues.  
To start we are focusing on what a baseline physical security guideline would look like for a COLO or data center, what types of communications standards and protocols would best enable secure comms of this equipment and how we best monitor it for security issues.  


Construction Security Workstream <br>
·        Workstream Leads - [mailto:jmarcelo.campos@roxtec.com Marcelo Campos] (Roxtec)


Monitoring & Logging Workstream <br>  
'''Physical Security Workstream''' <br>
·        Workstream Leads -   [mailto:ejwong@google.com Eehern Wong] (Google)
* Workstream Lead - [mailto:caj@fb.com Cliff Jones] (Meta)
* [https://www.opencompute.org/documents/open-for-comment-ocp-physical-security-white-paper-1-pdf Data Center Physical Security Guidelines White Paper]
* [https://drive.google.com/corp/drive/folders/18ZmXe8U2Letf7YLt35xyAzrWo3c8cErJ Shared Drive]
* [https://docs.google.com/document/d/1T3RTXcyqAnRCBMyZehfMevgyZISWzECa7rnCJCqmm6I/edit Meeting Notes]


Communication Standards Workstream <br>
'''Monitoring & Logging Workstream''' <br>
·        Workstream Lead -  [mailto:sascott@fb.com Steve Scott] (Facebook)
* Workstream Lead -  [mailto:todd.leblanc@se.com Todd Leblanc] (Schneider Electric)
* [https://drive.google.com/corp/drive/folders/1_x6ej0JGPw1wo3AaepHvRIa7U1jIV6so Shared Drive]
* [https://docs.google.com/document/d/1mTpNg14PoQxZIKBx8r3_ZgrOCEUUODeBEf1Rhj7Jcv4/edit#heading=h.rs62xi78jhyt Meeting Notes]
* [https://www.opencompute.org/documents/ocp-ots-monitoring-and-logging-white-paper-v2-2-pdf Monitoring and Logging Guidelines (Part 1) White Paper]
* [https://www.youtube.com/watch?v=pdbuwmZmlUY OCP Summit 2021 - Data Center Operation Technology: Monitoring and Logging for Security]
* [https://www.youtube.com/watch?v=RQElcXn_wRk OCP Summit 2022 - Data Center Facility Security Framework for Monitoring and Logging]
 
'''Secure Communication Guidelines Workstream''' <br>
* Workstream Lead -  [mailto:sascott@fb.com Steve Scott] (Meta)
* [https://drive.google.com/corp/drive/folders/1SXAWPjQ_57-9lcLUQN7fGemn0g3xo6FO Shared Drive]
* [https://docs.google.com/document/d/1GYu7O1a61UKGbmVyiN4RuMm1HSHDopPmYqVN-iaWr0M/edit Meeting Notes]
 
 
 
----
*''If you would like to participate in any of the above workstreams, please reach out to the corresponding workstream lead.'' 
 
*''OCP community membership is required for participation in individual workstreams, however, we would like to encourage anyone who is interested in this work, to attend the monthly call, which is open to the larger community.
 
----
 
==Published Contributions==
:- [https://www.opencompute.org/contributions?refinementList%5Bproject%5D%5B0%5D=Data%20Center%20Facility%20%3E%20Operation%20Technology%20Security&configure%5BfacetFilters%5D%5B0%5D=archived%3Afalse Operational Technology Security (OTS): Monitoring and Logging White Paper]


==Get Involved==
==Get Involved==
Line 51: Line 74:
==Regular Project Calls==
==Regular Project Calls==


TBD
This project meets every second Wednesday of every month at 10:30am ET
 
- [https://global.gotomeeting.com/join/490785413 '''Call Link''' ]


==Recordings from Past Calls==
==Recordings from Past Calls==
:- [https://www.youtube.com/watch?v=f3z7IfXHTGg January 11, 2023]
:- [https://www.youtube.com/watch?v=EGVow2ZN3Ms October 13th, 2021]
:- September Call Not Recorded
:- August Call Not Recorded
:- [https://www.youtube.com/watch?v=IQHXPpfEv4g July 14th, 2021]
:- [https://www.youtube.com/watch?v=VrSfRYcxwEU June 9th, 2021]
:- [https://www.youtube.com/watch?v=WsDss5dcURQ April 14th, 2021]
:- [https://www.youtube.com/watch?v=yzm_XAg-V0E February 10th, 2021]

Latest revision as of 15:45, 15 February 2023

OCP-datacenter-v1-17a3x.png

Welcome[edit]

Welcome to the OCP Operation Technology and Security Sub-Project. The Industrial Control Systems (ICS) that run our data centers are frequently designed with availability as the focus rather than mitigation of security risk or vulnerability. This has presented a unique security challenge across multiple industries from manufacturing to datacenters. We find this type of equipment is often lacking security fundamentals. Security fundamentals such as modern communication, authentication and authorization mechanisms that we would expect in critical equipment attached to a network are often missing.

Security issues with this type of equipment are not unique to data centers but are present in multiple industries such as manufacturing and energy. By combining efforts across multiple organizations and industries we can begin to drive a marked increase in the security of these systems and environments. The project's scope is focused on communications, authentication, monitoring and management.


This Project is open to the public and we welcome all those who would like to be involved.
Disclaimer: Please do not submit any confidential information to the Project Community. All presentation materials, proposals, meeting minutes and/or supporting documents are published by OCP and are open to the public in accordance to OCP's Bylaws and IP Policy. This can be found on the OCP OCP Policies page. If you have any questions please contact OCP.

Project Leadership[edit]

Incubation Committee Representative[edit]

- Justin Steadman (Rackspace)

Project Lead[edit]

- Bret Lehman (PCX)
- Madhusudan Iyengar (Google)

Sub-project Leads[edit]

- Ikechukwu Mezu (Meta)
- Eehern Wong (Google)

Documents[edit]

- OTS Background

Current Workstreams[edit]

To start we are focusing on what a baseline physical security guideline would look like for a COLO or data center, what types of communications standards and protocols would best enable secure comms of this equipment and how we best monitor it for security issues.


Physical Security Workstream

Monitoring & Logging Workstream

Secure Communication Guidelines Workstream



  • If you would like to participate in any of the above workstreams, please reach out to the corresponding workstream lead.
  • OCP community membership is required for participation in individual workstreams, however, we would like to encourage anyone who is interested in this work, to attend the monthly call, which is open to the larger community.

Published Contributions[edit]

- Operational Technology Security (OTS): Monitoring and Logging White Paper

Get Involved[edit]

- OTS Mailing List
- DCF Mailing List
- OCP DCF Website
- OCP Projects Calendar

Regular Project Calls[edit]

This project meets every second Wednesday of every month at 10:30am ET

- Call Link

Recordings from Past Calls[edit]

- January 11, 2023
- October 13th, 2021
- September Call Not Recorded
- August Call Not Recorded
- July 14th, 2021
- June 9th, 2021
- April 14th, 2021
- February 10th, 2021