comStar Firewall alert - PhaseThrough

Recommendations

Info

systeM security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62 A chain is only as strong as its weakest link. This goes doubly for computer systems, which can be attacked at three points: the physical device, the virtual node, and the legitimate user. A hacker only needs to find a single chink in the armor to completely take over a system. This chapter discusses principles and practices by which a system can be secured, from the lowliest PAN to the greatest nexus. pHYSicaL SecUritY An attacker that can reach the physical device of a system has more power over that device than a hacker trying to reach it via the Matrix. Keeping an attacker out is more than just guards and cameras. There are a number of physical practices that a facility can use to help bolster its Matrix defenses. pHYSicaL faciLitieS The physical security of a facility is necessary to protect the integrity of any Matrix system housed there. Most physical security can be handled by established techniques (Security Systems, p. 251, SR4). There are more specific measures that can be taken with regard to Matrix security. Landscaping for Signal attenuation When all of your devices are wireless, it is important to take steps to keep the signal from leaking too far from a controlled area. Proper landscaping can create greater attenuation, or signal loss, than would otherwise be present. Hills and other earthen features usually contain compounds of iron or other metals, which cause attenuation and reduce effective Signal ratings by 2 to 5 per meter of thickness, depending on metallic content. Water also causes rapid attenuation, especially salt water. Every 10 cm of fresh water and every 1 cm of salt water reduces the effective Signal of a device by 1. Flora also reduces the effective Signal of devices, mostly because of the water held in plants. For every ten meters of foliage or five meters of dense foliage, reduce Signal ratings by 1. wireless negation Wireless negation (p. 256, SR4) is a highly useful tool that absorbs some of the wireless signals coming from either side of the surface it covers. It is available as both wallpaper and paint in several different colors and textures, all with a dull, dead look that is despised by decorators and artists. Faraday cages are a more extreme form of wireless negation. A Faraday cage is an enclosed structure made entirely of a conductive material, usually metal. The walls of a Faraday cage may be solid or take the form of a narrow mesh. When the cage is closed and electromagnetic waves hit the outside (or inside) of the cage, the energy from the wave is dispersed across the surface of the outside (or inside) of the cage. In practical terms, a Faraday cage prevents wireless signals and other electromagnetic waves (as from HERF guns or EMP effects) from penetrating either from the outside or the inside. telematics infrastructure Telematics Infrastructure (TI, pronounced “tie”) is a tracking system for vehicles, drones, and personnel. It works via a network of TI programs running on individual commlinks, devices, and even RFID tags. It combines sensor data, GPS information, and wireless scanning to detect and track all individuals within its boundaries and report anomalies. TI will automatically detect and report any wireless device in Active or Passive mode that enters its coverage area. Various parts of the network also scan for Hidden nodes; use the rules for Detecting Wireless Nodes as an Extended Test (p. 225, SR4) except that the TI system makes only (Rating) rolls per minute and scans its entire coverage area. The information generated by the TI network can be fed to a TacNet (p. 125) or any other user or device that is “TI’d into the system.” This information includes the position, direction, and speed of any wireless device within the coverage area, along with its access ID and any public data offered by the device. acceSSiBiLitY Another way to keep a system secure is to simply keep people from getting to it. This is more difficult in a wireless world, especially when more and more people are finding the thought of office professionals with datajacks in their heads to be quaint. Still, there are effective ways to increase security without losing utility. cabling One of the ways to escape the hazards of wireless networking is to take the wireless out of the network. Devices that have their wireless capability disabled can be connected via fiber optic cables. These cables have the advantage of being invulnerable to wireless attack, although it removes the ability to move devices or to easily replace them. Another consideration is the ubiquity of wireless among the users of a facility. Employees, customers, soldiers, and other personnel will very likely have their own commlinks, and expect to work with the system via wireless AR or VR. Training personnel that expect to be able to walk into a room and use its systems Wireless Negation Availability Cost Wireless Negating Paint, per can (30 m2 coverage) Rating Rating x 20¥ Wireless Negating Wallpaper, per 10 m2 strip Rating Rating x 5¥ Faraday Cage, per m3 4 100¥ Telematics Infrastructure Software Availability Cost Telematics Infrastructure (Rating 1–3) (Rating x 2)R Rating x 400¥ Telematics Infrastructure (Rating 4–6) (Rating x 2)R Rating x 800¥ Unwired Simon Wentworth (order #1132857) 9
with their image links is an expense that many corporations, governments, and other entities see as unnecessary. Some facilities compromise with systems that are cabled except in wireless “safe rooms” protected by wireless negation. traffic and access The physical location of the devices in a system is another important security concern. Some placements are obvious: cameras should be placed at entrances, locks are installed into doors, etc. Standard nodes and nexi, on the other hand, can be placed almost anywhere, especially in a wireless environment. It is important, therefore, to give proper consideration to the placement of such devices, to deny physical access to any person that does not need to have access to them. By the same token, they should be kept away from the main flow of physical traffic in which most personnel work or travel. SecUritY networkS and rigging A facility’s physical defenses can be effective on their own, with autonomous devices and security sensors, but when combined with a security specialist, or spider, they can keep out all but the most tenacious intruder. The various security devices in a facility are joined together by one or more hub nodes into a security network, which is overseen by spiders. This section discusses security networks in practice; more information about the spiders that use this practice can be found later in this chapter. the Security network A security network is simply a network of devices that are assigned security roles. These devices usually include cameras and other sensors, locks, automated doors, drones, and automated systems such as gun emplacements or containment systems. Anything with a Device, System, or Pilot rating can be integrated into a security network, including agents, IC, and even the smartguns and cybereyes of security guards. These devices are then linked or slaved to one or more security hubs. A security hub is simply a device that acts as a focal point for command and control of the network. It can be a standard node or a nexus, or even a commlink. The spider on duty monitors the hub, and often uses it to run his persona. Any device or icon that is linked or slaved to the network is considered linked to all other devices in the network. In large installations, it is not uncommon to find multiple security hubs dividing the security. In some networks, the split is geographical, with different hubs controlling different areas of a facility. In others, the hubs are assigned to different types of security, with one hub handling drones, another handling locks and doors, another dealing with security personnel, and so forth. Security networks do not need to be installed in a permanent facility. They are installed in vehicles like semi-trailers, aircraft, and naval vessels. Security networks do not need to have physical bounds, and are found protecting police squads, military fire teams, and even shadowrunning groups. information operations The most basic function of a security network is to allow a spider to observe a large area from a single location. Devices in a security network send a constant stream of real-time data to Unwired the hub node, or to multiple hub nodes. Should a device detect a status change (e.g. a camera sees movement, a weapon is fired, a program in a node starts or stops, etc.), it automatically notifies the spider using a Free Action. The spider can then use the Observe in Detail action (p. 136, SR4) to investigate using the data feed from the specific device. remote command and control A security network allows a spider to do more than merely observe. A spider is empowered by her security network to take indirect or direct action against intruders and other security threats. The simplest way this is accomplished is through command and control, using the network to communicate orders and information. The spider can use the Issue Command action (p. 221, SR4) to send instructions to any automated device on the network. She may also use the Speak/Text Phrase action (p. 136, SR4) to direct security personnel, or if more detail is necessary, she can use the Transfer Data action (p. 219, SR4) to send a full situation report and orders. Another option for the spider is to use the Command program to control a subscribed device on the network (see Controlling Devices, p. 220, SR4). This can be done in AR or VR, and does not require any form of simsense. This option allows the spider to address a security breach in conventional ways, such as by firing an automated gun or controlling a drone, or unusual and creative ways, such as opening a door in an intruder’s face, changing the temperature in a room, or using the lights to flash a message in Morse code. A spider using VR can also jump into any device fitted with a rigger adaptation (p. 341, SR4). In most security networks, this is limited to drones. Some more creative security engineers add rigger adaptation to other devices, such as sensors, gun emplacements, and repair or medical facilities. It is possible to add a rigger adaptation to other devices, such as automated doors and windows, locks, and vending machines, but the utility of such a modification is rarely very great. For more info, see A Note on Commanding Devices, p. 104. Matrix SecUritY While the physical arrangement around a system is important to its security, most of the action happens in the Matrix. Security personnel called spiders act as hackers and/or riggers from within the system, guarding it against intrusion. Intrusion countermeasures (IC) are run on nodes to guard them from attackers, or to mount their own attack against trespassing hackers. Even the very shape of the system’s virtual layout can aid in its defense. aUtHentication The first line of security is authentication, the process by which a system determines whether the claimed identity of a user is genuine. The node must be reasonably certain that a user is who he says he is, and is therefore entitled to the account privileges listed for that user. There are several different ways for a system to authenticate a user. Some are more reliable and secure than others, although for the most part, the more secure an authentication method, the higher its overhead costs. Simon Wentworth (order #1132857) 9 63 systeM security . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Page 1 and 2:
TM Simon Wentworth (order #1132857
Page 3 and 4:
Simon Wentworth (order #1132857) 9
Page 5 and 6:
Malware 86 Agents 87 Botnets 88 the
Page 7 and 8:
JackPoint StatS___ 57 users current
Page 9 and 10:
Page 11 and 12:
AR transmissions are so easy to eav
Page 13 and 14: And I’m even happier when I can i
Page 15 and 16: tHe aUgMented worLd The augmented w
Page 17 and 18: people started cobbling together re
Page 19 and 20: While the cheaper commlinks are onl
Page 21 and 22: Matrix criMeS > I’ve downloaded a
Page 23 and 24: “protection rackets” against vi
Page 25 and 26: a general agreement that in order t
Page 27 and 28: Now, to operate in the sprawl, you
Page 29 and 30: capabilities and resources to do it
Page 31 and 32: popULar SoUSveiLLance videoS knight
Page 33 and 34: drug treatments during incarceratio
Page 35 and 36: Simon Wentworth (order #1132857) 9
Page 37 and 38: of more than one sprite at a time.
Page 39 and 40: intuitive Hacking Cost: 5 BP A char
Page 41 and 42: tweaking tHe rULeS Gamemasters and
Page 45 and 46: ‘link will s-l-o-w d-o-w-n, big t
Page 47 and 48: gram and a massive amount of time (
Page 49 and 50: . . . Matrix topoloGy . . . Hex was
Page 53 and 54: track programs are not able to dete
Page 55 and 56: node attributes like a metaphor or
Page 57 and 58: datatrail Every interaction on the
Page 59 and 60: a castle could represent a control
Page 61 and 62: Simsense can also be used for exper
Page 63: Simon Wentworth (order #1132857) 9
Page 67 and 68: To avoid detection, the hacker can
Page 69 and 70: aLertS Another important line of de
Page 71 and 72: B A R S C I L W ESS 3 2 3 2 3 4 4 3
Page 73 and 74: encryption on the access log of the
Page 75 and 76: filled with a high-rating Data Bomb
Page 77 and 78: You also need to choose the Matrix
Page 79 and 80: Sculpting: The node looks a lot lik
Page 81 and 82: Hardware: Saeder-Krupp Schwermetall
Page 85 and 86: Don’t call me a script kid Don’
Page 87 and 88: ight commands to bring those things
Page 89 and 90: drivers on my commlink before I tur
Page 91 and 92: what it sounds like: two or more ha
Page 93 and 94: Yep. You can also stick malware int
Page 95 and 96: gaMe inforMation The Hacker’s Han
Page 97 and 98: paYdata General rules for fencing p
Page 99 and 100: Pistons is researching the NeoNET A
Page 101 and 102: Spoofing commands from a user with
Page 103 and 104: to Mook or not to Mook? For some ch
Page 105 and 106: Issuing commands to a smartgun thro
Page 107 and 108: igger trickS Like hackers, riggers
Page 111 and 112: Server-Side prograMS Server-side pr
Page 113 and 114: cess (even if the agent tries to ha
Page 115 and 116:
worms). To match the opposition, ho
Page 117 and 118:
Mute Program Types: Common, Hacking
Page 119 and 120:
temporary degradation can be restor
Page 121 and 122:
advanced prograMMing taBLe Software
Page 123 and 124:
prone to degradation. This is in pa
Page 125 and 126:
dataworms Dataworms are a stealth t
Page 127 and 128:
military and police units, professi
Page 129 and 130:
them and plot them on a three-dimen
Page 131 and 132:
. . . technoMancers . . . The secur
Page 133 and 134:
Page 135 and 136:
attuning to a particular part of th
Page 137 and 138:
advanced tecHnoMancer rULeS The rec
Page 139 and 140:
Streams are still evolving and are
Page 141 and 142:
info Savants Fading: Intuition + Re
Page 143 and 144:
experience, induced by unfiltered e
Page 145 and 146:
don’t have to be strictly technom
Page 147 and 148:
new ecHoeS The following section ex
Page 149 and 150:
Sift Technomancers who possess this
Page 151 and 152:
Neuroleptic: This widget creates a
Page 153 and 154:
make are geared towards someone wit
Page 155 and 156:
Page 157 and 158:
Pilot Response Firewall Matrix INIT
Page 159 and 160:
traceroUte taBLe Subject Interacts
Page 161 and 162:
• It may raise one complex form i
Page 163 and 164:
. . . Matrix phenoMena . . . It’s
Page 165 and 166:
Page 167 and 168:
gaMe inforMation This section provi
Page 169 and 170:
(plus an additional box if the AI h
Page 171 and 172:
known aiS These are but a few examp
Page 173 and 174:
Uv nodeS—at tHe edge of reaLitY I
Page 175 and 176:
is something larger beyond the curt
Page 177 and 178:
the realm where the source code was
Page 179 and 180:
infektors The Infektors’ ultimate
Page 181 and 182:
corrupting it into a temporary diss
Page 183 and 184:
Pilot Response Firewall Matrix INIT
Page 185 and 186:
Page 187 and 188:
former prematurely and leave them o
Page 189 and 190:
playback gear On the most basic lev
Page 191 and 192:
y default can be used repeatedly an
Page 193 and 194:
to explain the missing time. Also,
Page 195 and 196:
compartmentalized pieces of informa
Page 197 and 198:
. . . Matrix Gear . . . Glitch was
Page 199 and 200:
Page 201 and 202:
eLectronicS Electronics follow all
Page 203 and 204:
Hacker ServiceS See Buying a Better
Page 205 and 206:
Software Suites Availability Cost H
Page 207 and 208:
SaMpLe nodeS (cont.) . . . . . . .
Page 209 and 210:
SaMpLe SpiderS (cont.) Security tec
show all

comStar Firewall alert - PhaseThrough

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?