Re: Disaster Recovery / Business Continuity

Now this is an interesting topic, given the threats today. After Katrina, oh no, did I just give my location away, there was mass communication problems in south Mississippi and south Louisiana. I'm fortunate enough to work for a company that deals in such things. We installed some comm equipment for an EOC, but we looked around and there were no trunks or T facilities, so basically, they had a kick ass intercom system. We were milling around when a gubberment employee asked if we were ready for the T connection, sure, we say, but Bellsouth ain't go no cable, cuz the poles were gone, as well as the c.o., so how we gonna connect a T to our switch? He comes back with this guy in a uniform, I think he was Air Force, I dunno, he hands me the end of a cable and says, here's your T!! I'm like, wtf, he says, you don't need to know. It goes out to some satellite the gov't uses, it was quite fascinating to actually see. Looking back, it was quite an experience to see how communications, both voice and data, were implemented in response to the disaster. Since then, the company I work for has put together these mobile commincation units. One can interconnect phone, data, radio, wi-fi, T-1's, copper trunks, satellite, etc., all through one switch set-up. Freakin' awesome!!! And it can fit in the back of an SUV. One can hop on a phone and contact an amateur radio operator out in the field, and can patch them through to anyone around the world, via traditional trunking or satellite. No more waiting on bell to get the damn trunks back working!! Any sort of data can be handled as well, IM, email, etc. It's just awesome how some have answered a need. I'm looking forward to seeing and hearing how tech will evolve to meet the needs after disasters.

Re: Disaster Recovery / Business Continuity

Last year was the start at a new venue. Things like P2G have to grow from the slime below, they do not just happen overnight. I believe that the Riv will one day spew forth it's own version of P2G.

Re: Disaster Recovery / Business Continuity

Given the experiences of last year, I do not think anyone has to worry about P2G any longer and that's a crying shame.

Re: Disaster Recovery / Business Continuity

A poolside chat sounds nice, akin to the Fireside chat of the FDR days. But FDR never had to worry about P2G. ;-)

Re: Disaster Recovery / Business Continuity

ok.. talk like that makes you insta-elected to the panel on stage in my books. I'm just a dork with a technical idea .. :p

Re: Disaster Recovery / Business Continuity

That would totally rock. I would really enjoy hearing what others have to say on the topic. Especially about deliniation of core critical processes. That was the most challenging thing I had to deal with -- and it took almost 3 years to get those processes mapped out. Want to hear what others have done to jump start that part of BC process.

theprez98 said:
Much good fortune to you. I hope you get in the mix and find the work interesting. Then you can share what you learn with the rest of us. :-)

Regards,

Valkyrie

sapere aude

Re: Disaster Recovery / Business Continuity

I just applied for a DHS/FEMA job "Continuity of Operations Specialist", might be interesting if I get into the interview process.

Re: Disaster Recovery / Business Continuity

At minimum we should organize a poolside chat. I really need to get my idea formalized and presentable so I can share it with folks, possibly pre-seed it amongst folks interested in hopping together on a CFP. Also should try to suck bascule into it, because he rocks much harder than I.

/me continues laundry list

Re: Disaster Recovery / Business Continuity

"Business continuity spending to rise this year
Three out of 10 midsize businesses lack a business continuity plan"

Here is an interesting article on the subject.

Re: Disaster Recovery / Business Continuity

Additional items related to this:

* Enabling encryption on tape, for offsite "security" of data while considering the history of implemented encryption in applications over a 5, 10 and 15 year period, for security failure. (Even if we assume we have an application using a cipher that is "100% secure" that doesn't mean the application's implementation is secure. Security holes can mean equivalent "plain-text" storage in remotely stored tapes if physical access to them should be broken.

* Single Point of Failure can lead to disaster when that single point fails:
Does your department, company, group have a single coder that knows everything? Do they have a backup?
Do you have a team of members that support your mission critical applications? Do they fly to presentations on the same jet? Travel in the same car?
Do you have replication of data to off-site locations for mission critical apps for failover like some businesses in the WTC during 9/11?

* Communication
Phone trees in place?
Contact lists?
Backup off-site DNS and MX for failover?
Disaster plan? Is it published? Do people know where to find it? Is is printed in hardcopy and updated?
Established chain of command for recovery? Local security? Police?
How is trust established and identity confirmed when infrastructure is gone?

* MSDS / checmical / information needed by fire department about chemicals stored on site and locations?

* When was the last time your had a fire drill, and established people meet at the locations they are supposed to meet, and the people responsible for clearing the building are available to clear a building?

This topic is so large, there could be multiple presentations with each providing focus on a different section.

It could also be fun to point out where points could be exploited during a disaster. (There are opportunists during times of disaster-- consider looters and people stealing from houses that are not occupied due to evacuation.)

Re: Disaster Recovery / Business Continuity

delurking here for a moment...

Since I've been dealing with a customer who's admins haven't been backing squat up, and one of their NFS servers died yesterday... recovery is definitely in my head right now.

This will be my first defcon and I don't really know anybody, but I'd certainly like to be part of an informal discussion on the topic. I've seen a lot of stuff *not* work, but it would be nice to discuss some options that *do*

Re: Disaster Recovery / Business Continuity

*me perks*

Since this is where I really got into the nuts and bolts of information assurance, I would welcome a round table discussion on this topic. I thought of it several years ago for BH/DC, but it didn't seem "sexy" enough. It's one of those day to day things that most cyber cowboys could really care less about. I have another fun thing that I am hoping to pull off for DC, but if anyone wishes to put together a formal or informal discussion regarding this, I would be all over it.

Just as a refresher...I was the DR/BC coordinator for a large Texas county government for 5 years. I think I did a pretty good job when I was there and learned quite a bit about the interesting things that come up when trying to coordinate plans for 27 different departments and 40 different office locales.

Let's play...I think this would be interesting...

Regards,

valkyrie

sapre aude

Re: Disaster Recovery / Business Continuity

I have some really good ideas for relatively secure and far more effective data backup and retention than anything that I'm aware exists today... taking a previously noted method I concocted and applying a current popular technology to automate and control it for even the layperson to make full use of.

It is actually something that could be developed .. with the right crew and time. It's something that would make an amazing commercial enterprise product, or a notable opensource tool.

If there are others interested, definitely hit me up in private somewhere .. I'd prefer a decent proof of concept release by con before doing a presentation .. and the downside is, a few months isn't a lot of time, so maybe next year. Or if folks want to drive on a panel, I'd be glad to toss the idea around to the masses, at risk of someone running with it first before select folks claimed ownership of the actual product/project.

Re: Disaster Recovery / Business Continuity

Along similar lines, consider "man-made" disasters, such as a vengeful, terminated employee (especially IT-related with prior access to critical systems) or a severed business relationship... They could do any manner of things that could create a man-made disaster if proper protocols are not in place or followed.

Re: Disaster Recovery / Business Continuity

I agree that disaster readiness is an excellent topic for a Defcon presentation. Many businesses/organizations are very misguided on the subject, focusing too much on the idea of “backup”, instead of the more important “recovery”. Many entities I have worked with are falsely assured that just having tape drive and tapes (such an archaic DR approach) with their data will somehow protect them in case of a disaster. As many of us know, recovery from tape, assuming it is even available on site and not your local Iron Mountain vault, may take hours or even days…In the current business world, when your clients expect access to information/services 24/7, any extended downtime may have catastrophic results. The dynamics have very much changed in the last several years and so did the available DR technologies.

Anyway, I am very much looking forward to someone talking about this at the conference.