10 Air Force IDS Testing Pioneers


10

            Given this week’s lesson on Intrusion Detection Systems I thought it apt to discuss military testing of such systems.  In my research, I came across a paper written by Terrence Champion, a research scientist at the Air Force INFOSEC Research Lab in Hanscom, MA, and Robert Durst, a former Air Force security programmer turned research scientist for SenCom supporting the AFRL.  These two gentlemen are nothing more than pioneers in the way that military began testing IDS’s in the late nineties.  With the help of UC Santa Barbara, they were able to develop a test bed in which to test and analyze some of the early ID systems that were being introduced.  Their test bed consisted of a virtual network which simulated the complexities of a MAN and through the utilization of software, used to assign arbitrary source protocol addresses to individual sessions, were able to recreate the type of traffic “patterns” of a much larger network.  This process was vital to the test due to the isolated nature of the project and segregation from live network environments.  In the end, the immersive nature of their test set the foundation for similar test beds across the other forms of organizations.  It will be used evaluate DARPA ID systems and aide in the candidate selection process.  These candidates will be integrated into existing Information Assurance Automated Environments, which at the time of this article, were in production by the Defense Department.




References



Champion, T., & Durst, R. (n.d.). Air Force Intrusion Detection System and Evaluation Environment. Retrieved from raid-symposium.org: http://www.raid-symposium.org/raid99/PAPERS/Champion.pdf



Comments

Post a Comment

Popular posts from this blog

8 Department of Defense Cyber Strategy: My Impression

8      As of April 2015, we continue to see ongoing interest in building up defenses again cyber-attacks both domestic and foreign in nature.   This is a breath of fresh air for those of us who keep abreast of threats and potential threats to our national network infrastructure.   What’s even more of a “relief” is that there is an actual document, produced by the Department of Defense, which outlines measures and areas of concern in regards to our cyber strategy.   No longer are we left wondering about who is taking lead on this ever growing concern not just on a national, but global scale as well.      This 42 page report outlines goals, objectives, and strategy management.   Perusing through the contents I came upon one of the more interesting tenets of the report, goal III, the preparation of defenses of the U.S. homeland and vital interests from disruptive or destructive cyber attacks of significance consequence.   The goal is to work closely with inter-agency partners and
Read more

11 The Summary

11             The theme for my blog is/was cyber-security in the military.   I chose this theme for two reasons.   One, having experienced first-hand the efforts on the part of the military against cyber-threats, I found it intriguing.      Not to mention the fact that around the time we were establishing blogs there were two maritime collisions involving Naval warships.   And two, I wanted to explore the viability of the efforts being made to protect military networks, and examine for correlations between the collisions and any possible criminal activity by external actors seeking to cause dissention amongst the ranks.   My blog contains an eclectic mix of cyber-security related stories to those that have the potential to impact not only members of the military, but the private sector as well.   Also, my week 9 blog post was one of the more enjoyable posts to write having benefited from a similar program that allowed me to certify as CompTia Security +.   Without these types o
Read more

6 Don't Be THAT Guy

6 Ah, October is upon us.   Ugg boots, pumpkin spice everything, and the changing of the leaves.   But not everything is as it seems my dear readers.   In the shadows lie threats that can affect us all.   If you’ve been following the news, you know that former Equifax CEO and current pariah, Richard Smith was recently publicly chastised in front of Congress for his inept handling of the security breach that exposed over 140 million of us.   You also know that in true CEO fashion, this “upstanding citizen” passed the buck to ONE IT guy!   Here are some tips on how to not become the “fall” guy. Always secure your Common Access Card.   It does not matter if you are going to the printer four cubicles down or not.   Pull it out of the reader, ensure your PC locks, and go retrieve your document or do whatever it is you have to do.   An ounce of prevention is worth a pound of cure. Create a strong password of at least 15 characters and combining upper case, lower case, numbers, and
Read more