MulVAL Extensions for Dynamic Asset Protection

Abstract

This paper documents research into extensions to the Multihost, Multistage Vulnerability Analysis (MulVAL) framework to support DRDC efforts to develop a feasible abstraction in the area of defensive posture technology. The results presented in this paper demonstrate that the MulVAL model is extensible and can be enhanced to include additional data representation and analysis features to tailor the model to meet the need of the DND defence community. The extensions evaluated in this effort have been shown to be both technically valid given the capabilities of logic-based programming and appropriate given the current model data representations. The primary extensions researched as part of this work are: improved representation of network path constructs and assignment of value to data assets in the model. This paper documents a substantial degree of progress in the development of each of the proposed MulVAL extensions.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Apr 01, 2006
Accession Number
ADA462897

Entities

People

  • Eugen Bacic
  • Glen Henderson
  • Michael Froh

Tags

Communities of Interest

  • C4I
  • Energy and Power Technologies
  • Space

DTIC Thesaurus Topics

  • Application Protocols
  • Artificial Intelligence
  • Commerce
  • Computer Access Control
  • Computer Network Security
  • Computer Networks
  • Computer Programming
  • Computer Programs
  • Computers
  • Computing System Architectures
  • Denial Of Service Attack
  • Network Architecture
  • Network Protocols
  • Network Topology
  • Operating Systems
  • Reasoning
  • Risk Management

Fields of Study

  • Computer science

Readers

  • Database Systems and Applications
  • Defense Technology Research and Development.
  • Operations Research