Military Communications and Information Technology: A Trusted ...

22.01.2015 Views
414 Military Communications and Information Technology... [9] L. Bernaille, R. Teixeira, and K. Salamatian, “Early application identification,” in Proceedings of the 2006 ACM Conference on emerging Networking eXperiments and Technologies, 2006. [10] M. Crotti, M. Dusi, F. Gringoli, and L. Salgarelli, “Traffic Classification Through Simple Statistical Fingerprinting,” in ACM SIGCOMM Computer Communication Review, 2007. [11] M. Dusi, M. Crotti, F. Gringoli, and L. Salgarelli, “Detection of Encrypted Tunnels Across Network Boundaries,” in Proceedings of the 2008 IEEE International Conference on Communications, 2008. [12] H. Stern, “The rise and fall of Reactor Mailer,” in Proceedings of the 2009 MIT Spam Conference, 2009. [13] G. Maier, F. Schneider, and A. Feldmann, “NAT Usage in Residential Broadband Networks,” in Passive and Active Measurement, ser. Lecture Notes in Computer Science, N. Spring and G. Riley, Eds., vol. 6579, 2011. [14] R. Beverly and S. Bauer, “The Spoofer Project: Inferring the extent of source address filtering on the Internet,” in Proceedings of the 2005 USENIX Workshop on Steps to Reducing Unwanted Traffic on the Internet, 2005. [15] E. Cauich, R. Gómez Cárdenas, and R. Watanabe, “Data Hiding in Identification and Offset IP Fields,” in Advanced Distributed Systems, ser. Lecture Notes in Computer Science, F. Ramos, V. Larios Rosillo, and H. Unger, Eds, vol. 3563, 2005. [16] J. Calvet, C.R. Davis, and P.-M. Bureau, “Malware authors don’t learn, and that’s good!” in Proceedings of the 2009 International Conference on Malicious and Unwanted Software (MALWARE), 2009. [17] “W32.Duqu: The precursor to the next Stuxnet, Version 1.4,” Technical Report published by Symantec, 2011. [18] N. Falliere, “Sality: Story of a peer-to-peer viral network,” Technical Report published by Symantec, 2011. [19] D. Plohmann and E. Gerhards-Padilla, “Case Study of the Miner Botnet,” in Proceedings of the 4th International Conference on Cyber Conflict, 2012 (in press). [20] C. Zhang and V. Paxson, “Detecting and Analyzing Automated Activity on Twitter,” in Passive and Active Measurement, ser. Lecture Notes in Computer Science, N. Spring and G. Riley, Eds., vol. 6579, 2011. [21] “Waikato Internet Traffic Storage Website.” Available: www.wand.net.nz/wits

Methodology for Gathering Data Concerning Incidents in Cyberspace Adam Flizikowski 1, 2 , Jan Zych 2 , Witold Hołubowicz 2 1 University of Technology and Life Sciences, Bydgoszcz, Poland, adamfli@utp.edu.pl 2 ITTI Sp. z o. o., Poznań, Poland, {holub, jan.zych}@itti.com.pl Abstract: This paper introduces a cyber incident observation sheet. It is meant to support the process of gathering cyber incident data from attacks targeted against military missions. An effective method of gathering factual data is in the authors’ opinion one of the biggest challenges and show-stoppers in the process of learning adhering to a lessons learnt paradigm (especially considering negative experiences). While developing Cyber Tool with the aim of cyber threats modeling in the frame of EDA (Europe Defense Agency) Athena project, authors have identified a serious need to introduce a well shaped and structured observation form in order to enable and foster data analysis and automated processing in subsequent steps. In contrary to civil world, cyber incidents against military systems are not reported publically, nor traced back to unveil the actual vulnerabilities that have been exploited by an attack. Authors describe a formal point of view in the area of factual data collection in the area of cyber- -attacks on communication resources. The proposed method (and recommendations) of collecting information about incidents can be a valuable input into the process of continuous improvement of security level in the cyberspace. Keywords: EDA, Athena project, factual data, data acquisition, sensors, cyber threats, asymmetric threats 1 , cyber attacks I. Introduction The EDA ATHENA project is a research project responding to the JIP-FP (Joint Investment Programme on Force Protection) call in the area of mission planning and modeling of asymmetric threats. Aside from ITTI (Poland) there are five other participants from four member countries of the European Union: TNO – the leader (Netherlands), FFI (Finland), Cassidian (France), TUT (Estonia) and WAT (Military University of Technology) (Poland). Undoubtedly such composition of consortium partners with great research potential, experience 1 “Asymmetry” – this term describes different forms of disproportion, differentiation and disharmony, which are naturally or intentionally coexist in the environment of opposite realities. In the area of military conflicts, asymmetric operations appear in tandem with terrorists attacks. Today’s military systems are equipped with electronics and information technologies to such an extent, that cyber attacks seem to pose significant threats to military missions’ success.

Page 1 and 2: Military Communications and Informa

Page 3 and 4: Contents Foreword .................

Page 5: Contents 5 Methodology for Gatherin

Page 8 and 9: 8 Military Communications and Infor

Page 11 and 12: Building a Layered Enterprise Archi

Page 13 and 14: Chapter 1: Concepts and Solutions f




Page 21 and 22: Applying NAF for Performance Analys








Page 37 and 38: Openness in Military Systems Jessic






Page 49 and 50: The Concept of Integration Tool for






Page 61 and 62: CFBLNet: A Coalition Capability Ena





Page 71 and 72: Selected Aspects of Effective RCIED





Page 81: Chapter 1: Concepts and Solutions f

Page 84 and 85: 84 Military Communications and Info








Page 100 and 101: 100 Military Communications and Inf

Page 103: Chapter 2 Communications and Inform






















Page 149 and 150: Use of Cross Domain Guards for CoNS

Page 151 and 152: Chapter 2: Communications and Infor




Page 159: Chapter 2: Communications and Infor



















Page 199: Chapter 3 Information Technology fo



















Page 239 and 240: Run-Time Ontology on the Basis of E

Page 241 and 242: Chapter 3: Information Technology f






Page 253 and 254: A Robust and Scalable Peer-to-Peer






Page 265 and 266: Automatic Exploitation of Multiling








Page 281 and 282: Information Fusion Under Network Co






Page 293: Chapter 3: Information Technology f





Page 305 and 306: Commanding Multi-Robot Systems with






Page 317 and 318: Application of CID Server in Decisi







Page 331 and 332: Managing Lessons Learnt from Daily






Page 343: Chapter 3: Information Technology f

Page 347 and 348: Federated Cyber Defence System - Ap

Page 349 and 350: Chapter 4: Information Assurance &




Page 357: Chapter 4: Information Assurance &









Page 377 and 378: Development of High Assurance Guard









Page 395 and 396: Network Traffic Characteristics for




















Page 439 and 440: On Multi-Level Secure Structured Co








Page 455 and 456: Generation of Nonlinear Feedback Sh














Page 485 and 486: Modern Usage of “Old” One-Time












Page 511 and 512: A Abut Fatih 161 Akcaoglu Ismail 11

communications

nato

communication

architecture

interoperability

cyber

networks

defence

processing

analysis

wil.waw.pl

Military Communications and Information Technology: A Trusted ...

Military Communications and Information Technology: A Trusted ... ... View more Military Communications and Information Technology: A Trusted ...

Delete template?

Save as template ?

Military Communications and Information Technology: A Trusted ... Military Communications and Information Technology: A Trusted ...