Security Posture Assessment Demonstrator and Experimenter – Application Tools to Support Security Research Testing

PDF

Authors
  1. Bacic, E.
  2. Henderson, G.
  3. Tremblay, L.
Corporate Authors
Defence R&D Canada - Ottawa, Ottawa ONT (CAN);Bell Canada, Ottawa ONT (CAN)
Abstract
There is a recognized need within the network defence community for analysis tools that can assist in the evaluation of networks for vulnerabilities and aid in the design of robust networks. This paper describes the initial design and development work to create a unified framework that can leverage research, commercial and academic security analysis tools in support of ongoing network defence analysis practices. An initial examination of network modeling and model manipulation techniques is provided, including: appropriate data representation, automated and interactive interfaces and necessary modeling capabilities. The analysis portion of the proposed framework is described both in terms of its overall pluggable architecture and in terms of sample modules that could be integrated within and leveraged by the overall analytical framework. The data storage mechanisms for model data is presented, not only for data generated through the analysis process, but also the means by which external data sources can be leveraged to provide near real time contextual data for the various analytical modules. To illustrate the framework in action, data flow and transformation for the use of a specific module, the MulVAL analysis engine, is described. A series of network models were tested against the framework and sample module showing the validity of the design approach.

Il y a un résumé en français ici.

Report Number
DRDC-OTTAWA-CR-2011-011 — Contractor Report
Date of publication
01 May 2011
Number of Pages
36
DSTKIM No
CA036137
CANDIS No
535706
Format(s):
Electronic Document(PDF)

Permanent link

Document 1 of 1

Date modified: