diff --git a/2021-11-18-NATO-MUG/Goals.png b/2021-11-18-NATO-MUG/Goals.png new file mode 100644 index 0000000..fb3ac35 Binary files /dev/null and b/2021-11-18-NATO-MUG/Goals.png differ diff --git a/2021-11-18-NATO-MUG/config.png b/2021-11-18-NATO-MUG/config.png new file mode 100644 index 0000000..e6a377a Binary files /dev/null and b/2021-11-18-NATO-MUG/config.png differ diff --git a/2021-11-18-NATO-MUG/connection_request.png b/2021-11-18-NATO-MUG/connection_request.png new file mode 100644 index 0000000..9d52651 Binary files /dev/null and b/2021-11-18-NATO-MUG/connection_request.png differ diff --git a/2021-11-18-NATO-MUG/connection_request2.png b/2021-11-18-NATO-MUG/connection_request2.png new file mode 100644 index 0000000..2d4e103 Binary files /dev/null and b/2021-11-18-NATO-MUG/connection_request2.png differ diff --git a/2021-11-18-NATO-MUG/content.tex b/2021-11-18-NATO-MUG/content.tex new file mode 100644 index 0000000..42a5f87 --- /dev/null +++ b/2021-11-18-NATO-MUG/content.tex @@ -0,0 +1,174 @@ +% DO NOT COMPILE THIS FILE DIRECTLY! +% This is included by the other .tex files. + +\begin{frame}[t,plain] +\titlepage +\end{frame} + +\begin{frame} + \frametitle{This session is meant to answer the following} + \begin{itemize} + \item (Re-)introduce Cerebrate + \item Brief summary over the tasks it is meant to accomplish + \item Cerebrate 1.0 release + \item Why should MISP users care? + \item Where are we headed? + \item Demo time! + \end{itemize} +\end{frame} + +\begin{frame} + \frametitle{What is Cerebrate?} + \begin{itemize} + \item Open source {\bf community management and orchestration} tool + \item Central tool for the Melicertes 2 project (Co-funded by the EU as a CEF project) + \begin{itemize} + \item Project for the CSIRT network building a common set of tools and services for the national CSIRTs + \end{itemize} + \item Tight integration with various open-source tools + \item Planned as the primary MISP management tool + \item Test bed for the new tech stack and a host of new features coming to MISP + \end{itemize} +\end{frame} + +\begin{frame} + \frametitle{Selfish motivations from a MISP perspective} + \begin{itemize} + \item {\bf Deficiencies} in our current tool chain + \begin{itemize} + \item Do I really have to jump through hoops and long e-mail chains to {\bf onboard new members}? + \item How do I {\bf find trusted information} on who an organisation is in MISP? + \item How can I {\bf manage a large cluster of MISPs} without tedious manual labour? + \item If I run a community through MISP, how can I reuse my member information for other community tasks such as mailing lists? + \item Information signing has been on the MISP roadmap for a long time - where do we get ground truths for a community from? + \end{itemize} + \end{itemize} +\end{frame} + +\begin{frame} + \frametitle{What issues is it trying to tackle?} + \begin{itemize} + \item Community management + \begin{itemize} + \item {\bf Repository} of organisations and individuals + \item Management of {\bf sharing groups} + \item {\bf Exchange} of contact and sharing group information + \item Cryptographic key lookup for {\bf information signing} + \end{itemize} + \item Local tool management + \begin{itemize} + \item Instrumentation of {\bf local tool interconnections} + \item Local tool {\bf fleet management} + \item {\bf Feeding} the local tools with Cerebrate data + \end{itemize} + \end{itemize} +\end{frame} + + +\begin{frame} +\frametitle{Interconnections} +\includegraphics[scale=0.4]{objectives.png} +\end{frame} + +\begin{frame} + \frametitle{Cerebrate 1.0 release} + \begin{itemize} + \item {\bf Released} as October 23 + \item Initial version has the {\bf essential functionalities} to get going included + \item We highly encourage everyone to {\bf get involved} ASAP and help us mold the tool + \item {\bf Easy to set up}, low requirements (native or docker installs available) + \end{itemize} +\end{frame} + +\begin{frame} + \frametitle{Cerebrate 1.0 features} + \begin{itemize} + \item {\bf Contact database} \- information on organisations and individuals + \item {\bf Public key store} for information validation and secure communications + \item Centralised {\bf sharing group management} + \item Cerebrate to Cerebrate {\bf synchronisation} + \item Local integration {\bf module system} + \item Currently with a {\bf MISP module} included + \end{itemize} +\end{frame} + + +\begin{frame} + \frametitle{Cerebrate 1.0 features} + \begin{itemize} + \item Cerebrate to Cerebrate {\bf local tool interconnection} + \item Local tool {\bf fleet management} features + \item {\bf Ingestion tools} for community specific {\bf contact database mappings} + \begin{itemize} + currently supporting ENISA's and FIRST.org's mappings + \end{itemize} + \item Tight integration with {\bf Keycloak} (optional) + \end{itemize} +\end{frame} + +\begin{frame} +\frametitle{MISP to MISP connection request} +\includegraphics[scale=0.3]{connection_request.png} +\end{frame} + +\begin{frame} +\frametitle{MISP to MISP connection request} +\includegraphics[scale=0.28]{connection_request2.png} +\end{frame} + + + +\begin{frame} + \frametitle{Further tangible benefits for MISP} + \begin{itemize} + \item MISP's software stack could use a refresher + \item Cerebrate and MISP share a large part of their code-base and supporting libraries + \item The similarities in many aspects are no co-incidence + \item We use Cerebrate to prepare the tooling and gradually shift the MISP code-base to a new stack + \item CRUD functionalities, UI generation, ACL, API handling are all modernised MISP libraries + \end{itemize} +\end{frame} + +\begin{frame} + \frametitle{So what will this give MISP once we port it to Cerebrate's codebase?} + \begin{itemize} + \item {\bf Modern stack} (CakePHP 4.x, PHP7.4/8+, Bootstrap 5) + \item Better {\bf performance} (in large part due to CakePHP 4.x's database handling improvements) + \item Complete {\bf new}, modern, responsive, themeable {\bf UI} + \item A chance to {\bf clean up} a host of {\bf mistakes} we've made over the years + \item {\bf Reworked} internal {\bf database} (for example much improved indexing) + \item A new upgrade and configuration system with a host of improvements + \end{itemize} +\end{frame} + +\begin{frame} + \frametitle{Cerebrate 1.1} + \begin{itemize} + \item Release is planned for {\bf next week} + \item Main new features + \begin{itemize} + \item Reworked meta-field system (validation, filtering, etc) + \item Audit system (port of Jakub Onderka's implementation from MISP) + \item Mailing list management and instrumentation + \item Improved organisation self-management + \end{itemize} + \end{itemize} +\end{frame} + +\begin{frame} + \frametitle{What are we working on besides that?} + \begin{itemize} + \item Obviously moving MISP to the same feature-set / tech stack + \item Further integrations with other tools + \item Fleshing out the MISP monitoring and management + \item Setting up trusted, community centric Cerebrate nodes + \item Improving a long list of functionalities + \end{itemize} +\end{frame} + +\begin{frame} + \frametitle{Enough blabla} + \begin{itemize} + \item {\bf Demo time!} + \end{itemize} +\end{frame} diff --git a/2021-11-18-NATO-MUG/interconnection.png b/2021-11-18-NATO-MUG/interconnection.png new file mode 100644 index 0000000..3d410ee Binary files /dev/null and b/2021-11-18-NATO-MUG/interconnection.png differ diff --git a/2021-11-18-NATO-MUG/local_tool_settings.png b/2021-11-18-NATO-MUG/local_tool_settings.png new file mode 100644 index 0000000..bbeb8d4 Binary files /dev/null and b/2021-11-18-NATO-MUG/local_tool_settings.png differ diff --git a/2021-11-18-NATO-MUG/logo.png b/2021-11-18-NATO-MUG/logo.png new file mode 100644 index 0000000..82bcaab Binary files /dev/null and b/2021-11-18-NATO-MUG/logo.png differ diff --git a/2021-11-18-NATO-MUG/misp_orgs.png b/2021-11-18-NATO-MUG/misp_orgs.png new file mode 100644 index 0000000..6067b48 Binary files /dev/null and b/2021-11-18-NATO-MUG/misp_orgs.png differ diff --git a/2021-11-18-NATO-MUG/objectives.png b/2021-11-18-NATO-MUG/objectives.png new file mode 100644 index 0000000..bea1d9d Binary files /dev/null and b/2021-11-18-NATO-MUG/objectives.png differ diff --git a/2021-11-18-NATO-MUG/org.png b/2021-11-18-NATO-MUG/org.png new file mode 100644 index 0000000..661027f Binary files /dev/null and b/2021-11-18-NATO-MUG/org.png differ diff --git a/2021-11-18-NATO-MUG/sharing_group.png b/2021-11-18-NATO-MUG/sharing_group.png new file mode 100644 index 0000000..290a214 Binary files /dev/null and b/2021-11-18-NATO-MUG/sharing_group.png differ diff --git a/2021-11-18-NATO-MUG/slide.tex b/2021-11-18-NATO-MUG/slide.tex new file mode 100644 index 0000000..938b1bc --- /dev/null +++ b/2021-11-18-NATO-MUG/slide.tex @@ -0,0 +1,23 @@ +\documentclass{beamer} +\usetheme[numbering=progressbar]{focus} +%\definecolor{main}{RGB}{83, 31, 117} +%\definecolor{textcolor}{RGB}{0, 0, 0} +%\definecolor{background}{RGB}{215, 212, 227} + +\usepackage[utf8]{inputenc} +\usepackage{tikz} +\usepackage{listings} +\usetikzlibrary{positioning} +\usetikzlibrary{shapes,arrows} + +\author{\small{\input{../includes/authors.txt}}} +\title{Cerebrate} +\subtitle{1.0 Release} +\institute{} +\titlegraphic{\includegraphics[scale=0.2]{logo.png}} +\date{\input{../includes/location.txt}} + +\begin{document} +\include{content} +\end{document} + diff --git a/2021-11-18-NATO-MUG/sync.png b/2021-11-18-NATO-MUG/sync.png new file mode 100644 index 0000000..956f05a Binary files /dev/null and b/2021-11-18-NATO-MUG/sync.png differ diff --git a/2021-11-18-NATO-MUG/updates.png b/2021-11-18-NATO-MUG/updates.png new file mode 100644 index 0000000..fb4deee Binary files /dev/null and b/2021-11-18-NATO-MUG/updates.png differ