• Home
  • Et Cetera

Infosecurity.US

NSA Cauldron Now In Private Sector Vulnerability Analysis Recipe

By Marc Handelman on May 29th, 2009

DO

News, of the United States National Security Agency’s CAULDRON security tool move into private practice… The vulnerability research product system has now moved into the private sector. Originally developed by researchers at George Mason University under contract to the Agency and United States Air Force. Essentially, the product is a vulnerability aggregator, correlating output from a variety of scanners with other vulnerability database systems. More information, including a short snippet of the original DarkReading post, appears after the jump.

From the original DarkReading blog post by Kelly Higgins Jackson: “NSA-Funded ‘Cauldron’ Tool Goes Commercial”

Vulnerability analysis tool aggregates, correlates, and visually maps attack patterns and possibilities
A vulnerability analysis tool used by the National Security Agency (NSA) and U.S. Department of Homeland Security is now commercially available for enterprises that want to either make sense of their reams of vulnerability data or trace an actual data breach.
The Cauldron tool, which was developed by George Mason University’s Center for Secure Information Systems (CSIS) under a research grant by the NSA and Air Force Research Labs, automates the analysis of all of a network’s potential attack paths, from the network to the application level. It takes in vulnerability data from scanners, aggregating and correlating that data with vulnerability databases.
The so-called Topological Vulnerability Analysis (TVA) technology also provides graphical representations of exploit sequences and paths that attackers can use to break into a network or application. “The [GMU] project looked at ways to improve on the efficiency of reviewing vulnerabilities and trying to focus on what vulnerabilities should be resolved first — with tons of network scans and data,” says Oscar Fuster, vice president of marketing for Epok, a software and integration firm that is offering Cauldron to its clients as well as for direct sale. “That’s what the product does: It aggregates these globs of data and different scans, and correlates and maps it so you can visually see what an attack pattern might look like — and not just an attack from the outside.”

Reblog this post [with Zemanta]

Categories: National Security, National Security Agency, National Vulnerability Database, Network Security
Tags: Features, George Mason University, National Security, National Security Agency, NSA, TVA, United States, United States Air Force, United States Department of Homeland Security

One Response to “NSA Cauldron Now In Private Sector Vulnerability Analysis Recipe”

  1. vincent zimmer
    Dec 13th, 2009 at 03:09

    RT @mhandelman NSA Cauldron Now In Private Sector Vulnerability Analysis Recipe http://bit.ly/3I68IW

« Dilbert: Bitspew Wondermark: Punch 2 »
  • Latest
  • Random
  • Bookmarks
  • Archives
  • Oracle Patches Critical WebLogic Flaw
  • Lisa Benson: Beanstalk
  • USB Electronic Key Impressioner – Open Sesame
  • Sherffius: Bacterial-Laden
  • Firefox Malware Extensions Discovered
  • Holbert: Trillion Dollar Stuck Pedal
  • But Wait, There’s More – 13 Critical Security Patches Queued For Microsoft’s PatchTuesday
  • Thach Bui: Monumental Upgrades
  • New, Critical Internet Explorer Vulnerability – Nearly All Versions Affected
  • Lisa Benson: Health Care Reform R.I.P.
  • Luckovich: Sending Biden
  • IMDB, Amazon Fall Victim To DDoS
  • Black Hat DC 2009 Briefings Now Available Online
  • Holey Secure Sockets!
  • Dogbert The Somali Pirate
  • Ah Yes…Good News To End The Day..Thunderbird 2.0.0.14 Released
  • XKCD: More Accurate
  • Wondermark: Crack
  • Malware Author Toys With Microsoft Defender Group
  • Breen: The Jackson Five…
  • Apple
  • BSD
  • Closson
  • Darknet
  • Debian
  • Finnigan
  • ha.ckers
  • Hoff
  • Insecure
  • Krebs
  • Layer8
  • MSRC
  • Network Security Blog
  • NSA SEL
  • openSUSE
  • RedHat
  • SANS
  • Schneier
  • Security Eunoia
  • Securosis
  • Shimel
  • February 2010
  • January 2010
  • December 2009
  • November 2009
  • October 2009
  • September 2009
  • August 2009
  • July 2009
  • June 2009
  • May 2009
Subscribe

Featured Blog - Blogs.com SANS Security Reading Room KnotOriginal: fine art to hang on your body and walls Member - Security Bloggers Network

Dilbert

Sponsored Links

KnotOriginal

Featured Video

RSS Cryptography

  • Making packet processing more efficient with network-optimized multicore designs: Part 2 2010/02/08
  • New Attack on Threefish 2010/02/07
  • So I deleted it without reading it. 2010/02/06
  • Kaspersky: Google hack takes spotlight from Russia 2010/02/05
  • IP Cores, Inc. Announces an Update of its Elliptic Curve Crypto Accelerator 2010/02/05
  • SMIC, SSHIC deliver smart card IC using 0.162 m EEPROM 2010/02/04
  • Revere Security Appoints Co-Inventor of Public-Key Cryptography... 2010/02/03
  • Data defenders: Researchers try to ward off increasingly sophisticated cyber attacks 2010/02/02
  • IP Cores Selects Phoenix Technologies for Israel 2010/02/02
  • Hackers Crack Cell Phone Encryption 2010/02/02

RSS Security Bloggers Network

  • Cop Or Scam Artist? 2010/02/08 Cynical Reporter
  • The Customer is Clueless – Not! 2010/02/08 Dan Lohrmann
  • Google Chrome leaves old versions behind when updated? 2010/02/08 sandi
  • #Superbowl #infosec: #colts ki… 2010/02/08 Ken Belva
  • A couple snow pictures 2010/02/07 Joel
  • Manifest for a Standard of Priorities Order [/dev/random] 2010/02/07 Belgian Security Blognetwork
  • Liquidmatrix Immortalized In LEGO 2010/02/07 Dave Lewis
  • Is Your BlackBerry App Spying on You? 2010/02/07 Chris Eng

RSS SANS ISC

  • When is a 0day not a 0day? Fake OpenSSh exploit, again. , (Mon, Feb 8th) 2010/02/08
  • Mandiant Mtrends Report, (Sun, Feb 7th) 2010/02/07
  • LANDesk Management Gateway Vulnerability, (Sat, Feb 6th) 2010/02/06
  • tweaked ISC layout. Please submit screen shot and browser details if things don't look right., (Sat, Feb 6th) 2010/02/06
  • Oracle WebLogic Server Security Alert, (Sat, Feb 6th) 2010/02/06
  • New version of Andreas Schuster's Evtx Parser released http://computer.forensikblog.de/en/2010/02/evtx_parser_1_0_2.html, (Sat, Feb 6th) 2010/02/06
  • Memory Analysis - time to move beyond XP, (Fri, Feb 5th) 2010/02/06
  • WordPress iframe injection?, (Fri, Feb 5th) 2010/02/05
  • More MiFi Fun. Consistent Authentication Matters! http://appsecstreetfighter.com, (Fri, Feb 5th) 2010/02/05

RSS Oracle

  • UN/CEFACT ATG and TMG face to face Meeting 2010/02/08
  • Well Fancy that! 2010/02/08
  • Data Warehouse Fault Tolerance Part 1: Resuming 2010/02/08
  • Oracle acquires Amberpoint 2010/02/08
  • Daily Roundup of News, Tips and Tricks for 2010-02-08 2010/02/08
  • Oracle BI ve Bellek Parametreleri 2010/02/08
  • Why do they call it a Data Warehouse and not a Data Bookshelf or Data Cubby Hole? 2010/02/08

RSS MySQL

  • A deep look at MySQL 5.5 partitioning enhancements 2009/12/24
  • Sun "Tech Days" Conference World Tour Kicks Off in Brazil 2009/12/07
  • Tino Rachui: Using MySQL Cluster in Sun's Virtual Desktop Infrastructure 2009/11/10
  • MySQL Database Analytics with InfiniDB from Calpont – Part 2 2009/10/28
  • MySQL Database Analytics with InfiniDB from Calpont – Part 1 2009/10/27
  • What's New in the MySQL Enterprise Fall 2009 Release? - Interview with Mark Matthews and Andy Bang 2009/09/08
  • Introducing the MySQL Librarian 2009/07/14

RSS Linux

  • Windows on the Mac - Computerworld 2010/02/08
  • One Dad's Take: Why Windows Could be Worse Than Teen Dating - ITworld.com 2010/02/08
  • The summer of Taiwan tech independence - SmartPlanet.com (blog) 2010/02/08
  • UK hardware maker pokes fun at iPad name, launches the 'iTablet' - International Business Times Australia 2010/02/08
  • Archos Offers Android-Deleting Update - Phandroid.com 2010/02/08

RSS MAC OSX

  • Geekbench spots Core i7 MacBook Pro in the wild 2010/02/08 John Brownlee
  • Was the iPad Supposed to Be a TV? 2010/02/08 Ed Sutherland
  • Macworld 2010 Sans Apple: What Can You Expect ? 2010/02/08 Ed Sutherland
  • Monday Twitter Giveaway: SyncMate 2010/02/08 Tim Cox
  • Opinion: MacBook, or iMac + iPad? 2010/02/08 Giles Turnbull
  • Review: EA’s Madden NFL 10 On Sale For The Superbowl 2010/02/07 Eli Milchman
  • In Depth: 30 Days with the Nexus One 2010/02/07 Leigh McMullen

RSS Microsoft

  • February 2010 Bulletin Release Advance Notification 2010/02/04 MSRCTEAM
  • Security Advisory 980088 Released 2010/02/03 MSRCTEAM
  • January 2010 Out-of-Band Security Bulletin Webcast 2010/01/22 MSRCTEAM
  • Bulletin MS10-002 Released 2010/01/21 MSRCTEAM
  • Security Advisory 979682 Released 2010/01/21 MSRCTEAM
  • Advance Notification for Out-of-Band Bulletin Release 2010/01/20 MSRCTEAM
  • Security Advisory 979352 – Going out of Band 2010/01/19 MSRCTEAM

RSS Network

  • Europe lagging behind on fibre broadband adoption 2010/02/08
  • LG NAS N4B1 review 2010/02/08
  • VoIP patent under review by Patent Office 2010/02/08
  • YouTube now supports IPv6 2010/02/08
  • Where do web giants stand on IPv6? 2010/02/05
  • Intel details vPro for Core i5, i7 processors 2010/02/05
  • Microsoft IE still popular, researcher says 2010/02/05

Daily Posts

February 2010
S M T W T F S
« Jan    
 123456
78910111213
14151617181920
21222324252627
28  
Creative Commons License
The Infosecurity.US Blog is licensed under a Creative Commons Attribution-Share Alike 3.0 United States License.

Find the best blogs at Blogs.com.

Creative Commons Attribution-Share Alike 3.0 U.S. License ©2010 Infosecurity.US

Subscribe