Speaker
Dr
Takashi SUGIMOTO
(Japan Synchrotron Radiation Research Institute)
Description
SPring-8 experimental user network is aimed at controlling experimental instruments and data acquisition.
For users' convenience such as web browsing, users can connect internet via the user network.
Web browsers use HTTP(s) to access WWW servers.
But nowadays, HTTP is used as many other protocol tunneling.
On the user network, protocol tunnelings via HTTP are often found,
and SPring-8 control system is threatened by tunneling applications:
bandwidth exhaustion by media streaming such as YouTube, P2P file sharing,
unauthorized instrumental control from outside of experimental area via VPN, and so on.
Moreover, during web-browsing, many virus infections had been occurred on the user network.
To prevent threats from the control system,
we installed PaloAlto firewall system, which recently called "next generation firewall".
The PaloAlto firewall can detect many applications and viruses including tunneling protocols.
We report results of application/virus detection and prevention using the firewall.
Author
Dr
Takashi SUGIMOTO
(Japan Synchrotron Radiation Research Institute)
Co-authors
Ms
Miho ISHII
(Japan Synchrotron Radiation Research Institute)
Dr
Ryotaro TANAKA
(Japan Synchrotron Radiation Research Institute)
Mr
Tatsuaki SAKAMOTO
(Japan Synchrotron Radiation Research Institute)
Dr
Toru OHATA
(Japan Synchrotron Radiation Research Institute)
