Topological Vulnerability Analysis
Predicting all possible paths of vulnerability
Overview
Cyber security is a global issue of growing importance. Cyber espionage can affect technical, military, political and economic interests anywhere. Attacks are no longer direct – they are increasingly sophisticated and stealthy. Cyber security is mission critical.
Network security concerns are highly interdependent; each machine’s susceptibility to attack depends critically on vulnerabilities and connectivity across the network. To protect critical networks, management must understand not only individual system vulnerabilities, but also their interdependencies.
The Problem
Configurations may change, but vulnerabilities evolve and mutate. Currently, network administrators must rely on labor-intensive processes for tracking network configurations and vulnerabilities, which requires a great deal of expertise and is error prone because of the complexity, volume, and frequent changes in security data and network configurations. The organization of networks and the interdependencies of vulnerabilities are so complex as to make traditional vulnerability analysis inadequate.
The Right Tool
Gathering information is just the first step. Network vulnerability scanners have become common tools to help network administrators discover and patch security holes on enterprise networks. Analysis of vulnerability reports can be accomplished with reasonable effort on smaller networks. However, analysis of larger networks is much more difficult because of the size and the potential for error. Depending on the extent of a security breach and the data that has been compromised, errors in vulnerability analysis have the potential to be costly.
Are you using the right tool for the right job?
Come to this meeting for a demonstration of CAULDRON – a technology developed by GMU with funding primarily from Homeland Security specifically for the correlation and visualization of vulnerabilities within an enterprise.
John Williams
John Williams has 26 years of CEO experience, specifically P&L and Balance Sheet responsibility in various areas of technology. Mr. Williams has over 30 years experience in sales, management and product development in computer retailing, computer aftermarket retailing, electronic publishing, Internet publishing, Internet communities, Digital Rights Management, identity/privacy technology, video surveillance technology, and computer security. Most business models have patents as a business foundation. Other relevant experience includes the following:
- Successful founder of multiple technology companies
- Early investor in successful technology companies
- Experienced professional
- The ability to “thinks outside the box.”
|
