Security Services

  • What are HEAnet’s Security Services?

    HEAnet offers a range of services to help limit the vulnerability of clients’ systems to exploitation and attack.

  • Service Profile
          What are Security Services?

HEAnet also offers services to assist client institutions in the event of an incursion (CERT) – helping to resist, recover and ultimately learn from an attack incident. All HEAnet security services are provided on a not-for-profit basis.

These measures range from SSL website certification and anti- spam blacklisting services, to more pro-active website auditing and scanning engagements, which actively seek out and uncover potential weaknesses in client systems before they can be exploited.

  • Specific Services

    Security Auditing – HEAnet’s in-depth auditing service, this is a comprehensive examination of an institution’s systems.

    Vulnerability Scanning – HEAnet’s in-depth scanning service which will comprehensively “crawl” an institution’s network in order to discover any vulnerabilities or flaws.

    HEAnet-CERT – HEAnet’s active incident service, providing real-time advice and recommendations to any HEAnet client suffering an intrusion.

    HEAnet TCS (Trusted Certificate Service) – HEAnet’s no-cost website SSL certificate service, essential for website traffic encryption and data protection.

    Real-time Blacklisting Service – This Blacklisting service acts as a powerful component to any active anti-spam strategy, providing a list of suspect IPs.

  • Client Needs

    The worse-case security scenarios for HEAnet clients are a highly disruptive attacks, DDoS incidents, hijacking of client servers or systems, or any incident of data loss.

    Such malicious attacks can cause major disruption to end-users and institution staff, resulting in extensive costs and a negative perception of an institution’s IT security.

    Even minor intrusions can incur significant costs and consume staff time in dealing with the problem.

    The proliferation of malware, and the range of “direct” online attacks has brought a need for institutions to continually patch, strengthen and assess their own online security.

    Through pro-active scanning and auditing, institutions can ascertain their readiness for such an incident, and such actions could have a hugely positive effect in limiting potential damage.

  • Screen Shot 2016-04-05 at 14.27.30

     

    SSL Certificate Service

    Screen Shot 2016-04-05 at 14.23.18SSL website certification is a service, which ensures HEAnet clients’ websites are encrypted and have a base level of security.

    The across-the-board roll-out of certification is being driven by an increased awareness of the need for encrypted channels, and the proliferation of authentication and authorisation middleware.

    HEAnet’s TCS (Trusted Certificate Service) is providing server certificates valid for three years to our clients at no cost. These certificates are essential for the security of everything from institutional websites, to sub-sites for research groups, student societies, etc.

    The server certificates can be used for institution services, including web (HTTPS), email (IMAPS), server authentication and any number of SSL or TLS based services that require trusted certificates.

    This service can be expanded to additional areas of certification including document certification, allowing an institution or department to digitally sign, and thus protect, written content.

    This can also be expanded to certifying programmes and developed applications, ensuring that ownership and development rights are protected.

  • HEAnet Cert Service

    Screen Shot 2016-04-05 at 14.30.51CERT is HEAnet’s single contact point for clients dealing with computer security incidents. In an instance where a client is concerned they may be experiencing an intrusion or attack, CERT rapidly provides support, advice and expertise.

    To report an active security concern, please contact the HEAnet CERT service via cert@heanet.ie

    If a security concern arises out-of-hours, please contact the Jisc service desk at: +44 3300 300 2212

    This CERT mailbox is monitored by HEAnet to promptly provide support, and is supported out of hours by the Janet Network CSIRT (UK), who will help and advise HEAnet clients in any security situation.

    CERT provides the following to all HEAnet clients:

    • Technical assistance as to what to do in the case of an incident
    • The collection, analysis and reporting of statistics on incidents
    • Notifications to sites that they may have been the source, intermediary or target of an attack, as they can often be unaware.

    CERT is also ready to assist all HEAnet clients who wish to pro-actively seek support for any perceived security issues and vulnerabilities.

    Real-time Blacklisting Service

    Screen Shot 2016-04-05 at 14.31.03This is a useful service for clients who wish to cut off email contact with servers that are associated with extensive spamming.

    This is an especially useful service for clients who run their own mail servers, as it gives the server the power to shield itself against highly troublesome IP ranges.

    To prevent these servers from interacting with a client’s mail server, a range of IP addresses are supplied to client institutions, who can then block these ranges. This results in the refusal of incoming emails from this range of suspect IPs, ensuring no contact is possible.

    This service is offered in partnership with TrendMicro.com and SpamHaus.org