Building Automation System Enumeration and Configuration (BASEC)

Abstract

The DoD requires a solution that efficiently evaluates system configurations for vulnerabilities and enforces secure configurations across multiple vendors and military installations. To be cost effective, the solution must integrate with existing network security practices and provide the flexibility to support military missions across DoD facilities. The Building Automation System Enumeration and Configuration (BASEC) tool protects organizations by providing a scalable means to identify, baseline, and certify the cyber security configuration for building automation systems. The innovative tool provides a secure means to examine device configurations, audit system settings, define security policies, and obtain reporting from anywhere in the world. BASEC reporting helps identify specific weaknesses associated with individual configuration files (e.g., weak passwords, missing security patches, insecure services, insecure default configurations and weak/insecure protocols in use).

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2021
Accession Number
AD1187377

Entities

People

  • Billy Rios
  • Jonathan Butts

Tags

Communities of Interest

  • Cyber
  • Energy and Power Technologies
  • Engineered Resilient Systems

DTIC Thesaurus Topics

  • Abstracts
  • Air Force
  • Computer Network Security
  • Computing System Architectures
  • Control Systems
  • Control Systems Engineering
  • Cost Reductions
  • Cybersecurity
  • Department Of Defense
  • Energy Systems
  • Engineering
  • Engineers
  • Environmental Security
  • Graphical User Interface
  • Information Systems
  • Infrastructure
  • Instructions
  • National Security
  • Risk Management
  • Vulnerability

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Systems Analysis and Design

Technology Areas

  • Cyber