构建网络防御:领先的网络参考架构和框架的调查

2017 IEEE 4th International Conference on Cyber Security and Cloud Computing (CSCloud) Pub Date : 2017-06-01 DOI:10.1109/CSCloud.2017.37

Risa Savold, Natalie Dagher, Preston Frazier, D. McCallam

{"title":"构建网络防御:领先的网络参考架构和框架的调查","authors":"Risa Savold, Natalie Dagher, Preston Frazier, D. McCallam","doi":"10.1109/CSCloud.2017.37","DOIUrl":null,"url":null,"abstract":"The rapid development of cyber threats and intelligence challenges the traditional design of static cyber defense platforms. This paper discusses the need for an agile structure to inform the development of cybersecurity solutions that are not only widely adaptable to unknown threats, specific business practices, and technical requirements, but are also efficiently translatable to products. It employs a systems engineering approach in the evaluation of several Reference Architectures for cyber defense that were gathered from the both the public and private sector. The Northrop Grumman Cyber Defense Reference Architecture is introduced in this paper to go beyond basic cyber hygiene by focusing on cognitive tasks through functional implementations of advanced analytics and automation. The limitations of frameworks, design patterns, and security control checklists in comparison to reference architectures are also discussed.","PeriodicalId":436299,"journal":{"name":"2017 IEEE 4th International Conference on Cyber Security and Cloud Computing (CSCloud)","volume":"48 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":"{\"title\":\"Architecting Cyber Defense: A Survey of the Leading Cyber Reference Architectures and Frameworks\",\"authors\":\"Risa Savold, Natalie Dagher, Preston Frazier, D. McCallam\",\"doi\":\"10.1109/CSCloud.2017.37\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The rapid development of cyber threats and intelligence challenges the traditional design of static cyber defense platforms. This paper discusses the need for an agile structure to inform the development of cybersecurity solutions that are not only widely adaptable to unknown threats, specific business practices, and technical requirements, but are also efficiently translatable to products. It employs a systems engineering approach in the evaluation of several Reference Architectures for cyber defense that were gathered from the both the public and private sector. The Northrop Grumman Cyber Defense Reference Architecture is introduced in this paper to go beyond basic cyber hygiene by focusing on cognitive tasks through functional implementations of advanced analytics and automation. The limitations of frameworks, design patterns, and security control checklists in comparison to reference architectures are also discussed.\",\"PeriodicalId\":436299,\"journal\":{\"name\":\"2017 IEEE 4th International Conference on Cyber Security and Cloud Computing (CSCloud)\",\"volume\":\"48 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2017-06-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"6\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2017 IEEE 4th International Conference on Cyber Security and Cloud Computing (CSCloud)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CSCloud.2017.37\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 IEEE 4th International Conference on Cyber Security and Cloud Computing (CSCloud)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CSCloud.2017.37","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 6

摘要

网络威胁和情报的快速发展对传统的静态网络防御平台设计提出了挑战。本文讨论了对敏捷结构的需求，以告知网络安全解决方案的开发，这些解决方案不仅可以广泛地适应未知威胁、特定的业务实践和技术需求，而且还可以有效地转化为产品。它采用系统工程方法评估了从公共和私营部门收集的几种网络防御参考架构。本文介绍了诺斯罗普·格鲁曼网络防御参考架构，通过高级分析和自动化的功能实现，重点关注认知任务，从而超越基本的网络卫生。与参考体系结构相比，还讨论了框架、设计模式和安全控制检查表的局限性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Architecting Cyber Defense: A Survey of the Leading Cyber Reference Architectures and Frameworks

The rapid development of cyber threats and intelligence challenges the traditional design of static cyber defense platforms. This paper discusses the need for an agile structure to inform the development of cybersecurity solutions that are not only widely adaptable to unknown threats, specific business practices, and technical requirements, but are also efficiently translatable to products. It employs a systems engineering approach in the evaluation of several Reference Architectures for cyber defense that were gathered from the both the public and private sector. The Northrop Grumman Cyber Defense Reference Architecture is introduced in this paper to go beyond basic cyber hygiene by focusing on cognitive tasks through functional implementations of advanced analytics and automation. The limitations of frameworks, design patterns, and security control checklists in comparison to reference architectures are also discussed.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2017 IEEE 4th International Conference on Cyber Security and Cloud Computing (CSCloud)

自引率

0.00%

发文量