• No results found

Enhanced Security Update

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Enhanced Security Update"

Copied!
17
0
0

Loading.... (view fulltext now)

Download now ( 17 Page )

Full text

(1)

Enhanced Security Update

Informational Webex

Foluso Afelumo

Project Manager

9/21/2015

(2)

PJM©2015 2

Purpose

Present information relevant to the implementation of PJMs

enhanced security initiative

– Why the change

– What is changing

– What are the impacts

Provide answers to any questions

(3)

Why

Cybersecurity is important to PJM.

– Security of member data

– Security of member interaction

PJM is working to implement industry best practices around

security.

We are making changes toward a long-term solution that will

(4)

PJM©2015 4

Scope

Implement strong access controls

– User credentials/privileges

– System accounts

– Self-service enhancements

– Multi-factor authentication

(5)

Scope

Implement enhanced security for PJM Tools

– Implement enterprise-wide single sign-on capability

– Provide enhanced user identity and access management

– Provide standardized security policies across applications

(6)

PJM©2015 6

Definition of terms

Browserless

– Indicates accessing an application without the use of a browser

PJM CLI

– Command line interface. Also known as pjm-cli.

MFA

– Multi factor authentication. Mechanism whereby access to a tool is

granted with a combination of user/name password and a

(7)

Definition of terms

System Account/Id

– An account (username/password) used to access PJM tools to

perform automatic uploads/downloads of data. Does not require

human interaction via web browser. Also known as accounts for

browserless access.

User Account/Id

– An account (username/password) used to access PJM tools via a

web browser.

Single Sign on (SSO)

– Implementation of authentication mechanism where a single log

on allows access to multiple tools without re-authentication.

(8)

PJM©2015 8

Details of changes

What:

– SSO upgrade for Gas Pipeline, Bulletin Board, Messages

Impact:

– You will have to log into these applications separately from the other refreshed applications. – Current way of browserless authentication will stop working.

Actions To Take:

– Update custom browserless code according to specifications. – Update to latest version of PJM CLI.

Implementation Timeline:

– Train/Sandbox: 7/30/2015

(9)

Details of changes

What:

– System Account Designation/Creation.

Impact:

– Will need to have 10 character password length minimum. – Will not be required to change passwords every 128 days.

– Will not be able to access tools through browsers starting Q1 2016.

Actions To Take:

– Designate accounts as System Ids whose passwords should not change every 128 days.

Implementation Timeline:

– Train/Sandbox: 8/11/2015

(10)

PJM©2015 10

Details of changes

What:

– Password Policy

Impact:

– Minimum password length increased to 10 characters.

– User accounts are required to change passwords every 128 days.

– System accounts should change passwords once to meet requirement.

Actions To Take:

– Change passwords every 128 days for user accounts.

– Designate/create system Ids with minimum password length to avoid impact.

Implementation Timeline:

– Train/Sandbox: 9/17/2015

(11)

Details of changes

What:

– Self Service Password Reset

Value Add:

– Allow users to reset their passwords without requiring CAM intervention.

Actions To Take:

– Answer 5 questions on profile page.

Implementation Timeline:

– Train/Sandbox: 9/30/2015

(12)

PJM©2015 12

Details of changes

What:

– SSO upgrade for Account Manager, Data Viewer, Data Miner, Exschedule, InSchedule, Power Meter, Resource Tracker, PCLLRW , ToolsHome

Impact:

– This is the balance of SSO upgrades for refreshed applications. – All refreshed applications will function on same SSO.

– Current way of browserless authentication will stop working.

Actions To Take:

– Update custom browserless code according to specifications. – Update to latest version of PJM CLI.

Implementation Timeline:

– Train/Sandbox: 10/1/2015

(13)

Details of changes

What:

– SSO upgrade for legacy eSuite applications (eMKT, eFTR, eRPM, OASIS …)

Impact:

– You will be unable to log into these applications by logging into eSuite. – User interface to log into these applications will be different.

– SSO will work across all PJM tools.

Actions To Take:

– None.

Implementation Timeline:

– Train/Sandbox: 11/17/2015 – Production: 12/15/2015

(14)

PJM©2015 14

Details of changes

What:

– Timeout restrictions

Impact:

– Inactivity on screens will lead to timeout and re-authentication.

Actions To Take:

– None.

Implementation Timeline:

– Train/Sandbox: 11/17/2015 – Production: 12/17/2015

(15)

Details of changes

What:

– Multi Factor Authentication (MFA)

Impact:

– Access to account manager by CAMs will require providing an extra factor for authentication.

Actions To Take:

– None.

Implementation Timeline:

– Train/Sandbox: 12/2/2015

(16)

PJM©2015 16

Details of changes

What:

– Disable Inactive Accounts

Impact:

– Accounts that haven’t accessed any PJM tools within 6 months will be disabled.

Actions To Take:

– Use accounts to access PJM tools at least once every 6 months.

Implementation Timeline:

– Train/Sandbox: Q2 2016

(17)

More Information

FAQs:

http://pjm.com/~/media/etools/security/faqs-pjm-tools-security-enhancements.ashx

Browserless authentication specification:

– http://pjm.com/~/media/etools/pjm-browserless-authentication-guide.ashx

Latest PJM CLI

– http://pjm.com/~/media/etools/exschedule/pjm-command-line-interface-java-6.ashx

Account Manager user guide:

– http://pjm.com/~/media/etools/account-manager/account-manager-user-guide.ashx

References

Download now ( PDF - 17 Page - 187.39 KB )

Related documents

OWLS 2012 PROGRAM. OWLS Genoa, 4-6 July 2012 Program Page 1

Alberto Diaspro, Istituto Italiano di Tecnologia and University of Genoa, Italy Francesco Baldini, National Research Council, Florence, Italy.. Paolo Bianchini, Istituto Italiano

Two Civic Center Plaza El Paso, TX (915)

Velazquez explained, per the recommendations submitted by Commissioner Guzman and Vice-Chair Gardea, Staff and Commissioners will review the Administrative Review

MINUTES PLANNING & ZONING COMMISSION MARCH 4, 2013

On roll call the following members were present: Jane Boyle, Paul Stock, Jim Hessel, Daniel Call, Dick Weller and Lee Baranowski. Also present was Julia Bennett, Court Reporter

Subcellular localization for Gram Positive and Gram Negative Bacterial Proteins using Linear Interpolation Smoothing Model

The proposed approach extracts features from syntactical information in protein sequences to build probabilistic pro fi les using dependency models, which are used in

Some free earnings figures A paper by Rodney Stinson, downloaded from

  Relations acquired unpublished earnings statistics for use in its Job Outlook database on  http://joboutlook.gov.au/, this year and in earlier years. 

A Monthly Volatility Index for. the US Economy

Given a set of monthly indicators sampled from 1968 to 2006, we extend the seminal model of Stock and Watson (1991) and we estimate a monthly index for the volatility of the US

Q-RAE PLUS PGM-2000/2020 MULTI-GAS MONITOR

Authorized users can calibrate the monitor, change the measurement gas, change the alarm limits, change site ID, user ID, datalogging interval, real time clock, etc.. Note: The

PROCUREMENT PLAN. Procurement of Goods and Works Method Threshold Comments

Goods and Works Package Number General Description Estimated Value Number of Contracts Procur ement Method Review (Prior/ Post) Bidding Procedure Advertisement Date