Security Posture Assessment Demonstrator and Experimenter – Network Architecture Scenarios for Security Research Testing

PDF

Authors
  1. Bacic, E.
  2. Henderson, G.
  3. Tremblay, L.
Corporate Authors
Defence R&D Canada - Ottawa, Ottawa ONT (CAN);Bell Canada, Ottawa ONT (CAN)
Abstract
In the process of creating and evaluating network analysis tools, it is necessary to first define a set of network models that can serve as a baseline template against which the tools can be assessed. These models can not only be a test environment by which these tools can be tested, but they can also identify previously unknown and unexpected behaviours in the tool set that might underlie flaws in the network analysis approach. This paper provides a definition and description of three network models, representing small, medium and large computing environments, respectively. These models were created using, as a basis, network environments that have origins in real world deployments so as to be an accurate depiction of a network, its processes and its user base. The large network environment uses templates and aggregation to build a complex multi-site sample network from a set of constituent components and sub models. Each model was developed and expressed in an XML format for ease of use. Additionally, each scenario is further defined with a relevant and valid attack scenario that utilizes the elements within the modeled network to stage a multi-hop attack. It is believed that these three network models will enable the development of effective network analysis tools.

Il y a un résumé en français ici.

Report Number
DRDC-OTTAWA-CR-2011-010 — Contractor Report
Date of publication
01 May 2011
Number of Pages
50
DSTKIM No
CA036138
CANDIS No
535707
Format(s):
Electronic Document(PDF)

Permanent link

Document 1 of 1

Date modified: