Malicious Activity Simulation Tool (MAST) and Trust

Abstract

Malicious Activity Simulation Tool (MAST) provides an on-the-job-training medium for information system operators to practice responding to cyber threats simulated on the operational information systems that they manage day-to-day. Because MAST has the capability to simulate various cyber attacks, it is important to measure the risk the system poses to the information systems on which it will operate. This thesis analyzes MAST s security posture and proposes potential solutions to any vulnerability discovered in that analysis. The analysis is based on a Security Control Assessment (SCA) utilizing the Defense Information Systems Agency Application Security and Development Security Technical Implementation Guide. Following the SCA, a threat model is used to determine mitigations to technical findings. Outputs from this research will enable a more secure implementation of MAST.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jun 01, 2015
Accession Number
ADA632325

Entities

People

  • Brian J. Diana

Organizations

  • Naval Postgraduate School

Tags

Communities of Interest

  • C4I
  • Cyber
  • Ground and Sea Platforms

DTIC Thesaurus Topics

  • Application Software
  • Command And Control
  • Computer Access Control
  • Computer Programming
  • Computer Programs
  • Computers
  • Cyberattacks
  • Cybersecurity
  • Denial Of Service Attack
  • Information Assurance
  • Information Processing
  • Information Systems
  • Network Protocols
  • Operating Systems
  • Risk Analysis
  • Security
  • Vulnerability

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Instructional Design and Training Evaluation.
  • Maritime and Naval Warfare Studies

Technology Areas

  • Cyber