TY - GEN
T1 - SCAP based configuration analytics for comprehensive compliance checking
AU - Alsaleh, Mohammed Noraden
AU - Al-Shaer, Ehab
PY - 2011
Y1 - 2011
N2 - Computing systems today have large number of security configuration settings that are designed to offer flexible and robust services. However, incorrect configuration increases the potential of vulnerability and attacks. Security Content Automation Protocol provides a unified mean to automate the process of checking the desktop system compliance using standard interfaces. However, misconfiguration can be identified only if global checking that includes network and desktop configuration is performed, as many of these configurations are highly interdependent. In this work we present a SCAP-based tool that integrates host and network configuration compliance checking in one model and allows for executing comprehensive analysis queries in order to verify security and risk requirements across the end-to-end network as a single system. Our proposed tool translates XCCDF reports generated from SCAP tools into logical objects that can be further composed to create global logical analysis using more advanced security analytic tools such as ConfigChecker and PROLOG-based tools. This project also shows the value of building on the effort of standard tools to improve the state of the art.
AB - Computing systems today have large number of security configuration settings that are designed to offer flexible and robust services. However, incorrect configuration increases the potential of vulnerability and attacks. Security Content Automation Protocol provides a unified mean to automate the process of checking the desktop system compliance using standard interfaces. However, misconfiguration can be identified only if global checking that includes network and desktop configuration is performed, as many of these configurations are highly interdependent. In this work we present a SCAP-based tool that integrates host and network configuration compliance checking in one model and allows for executing comprehensive analysis queries in order to verify security and risk requirements across the end-to-end network as a single system. Our proposed tool translates XCCDF reports generated from SCAP tools into logical objects that can be further composed to create global logical analysis using more advanced security analytic tools such as ConfigChecker and PROLOG-based tools. This project also shows the value of building on the effort of standard tools to improve the state of the art.
UR - https://www.scopus.com/pages/publications/84855846625
U2 - 10.1109/SafeConfig.2011.6111674
DO - 10.1109/SafeConfig.2011.6111674
M3 - Conference contribution
AN - SCOPUS:84855846625
SN - 9781467304016
T3 - 2011 4th Symposium on Configuration Analytics and Automation, SAFECONFIG 2011
BT - 2011 4th Symposium on Configuration Analytics and Automation, SAFECONFIG 2011
T2 - IEEE 4th Symposium on Configuration Analytics and Automation, SAFECONFIG 2011
Y2 - 31 October 2011 through 1 November 2011
ER -