Specification for the asset reporting format 1.1

Halbardier, Adam; Waltermire, David; Johnson, M. Eric

doi:10.6028/nist.ir.7694

Cited by 3 publications

(3 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [22], a model of data exchange format expression for aggregated assets is introduced. Asset summary reporting may be used as a part of an asset reporting format document [23]. In [23], a data model of data exchange format expression for assets and relationships between them and reports is introduced.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Automation of Asset Inventory for Cyber Security: Investigation of Event Correlation-Based Technique

et al. 2022

View full text Add to dashboard Cite

Asset inventory is one of the essential steps in cyber security analysis and management. It is required for security risk identification. Current information systems are large-scale, heterogeneous, and dynamic. This complicates manual inventory of the assets as it requires a lot of time and human resources. At the same time, an asset inventory should be continuously repeated because continuous modifications of system objects and topology lead to changes in the cyber security situation. Thus, a technique for automated identification of system assets and connections between them is required. The paper proposes a technique for automated inventory of assets and connections between them in different organizations. The developed technique is constructed based on event correlation methods, namely linking the system events to each other. The essence of the technique consists of the investigation of event characteristics and identifying the characteristics that arise solely together. This allows determining system assets via assigning event characteristics to specific asset types. The security risks depend on the criticality of the assets; thus, a discussion of automated calculation of the outlined assets’ criticality is provided. Outlined system objects and topology can be further used for restoring possible attack paths and security assessment. The applicability of the developed technique to reveal object properties and types is demonstrated in the experiments.

show abstract

Section: Related Workmentioning

confidence: 99%

“…Asset summary reporting may be used as a part of an asset reporting format document [23]. In [23], a data model of data exchange format expression for assets and relationships between them and reports is introduced. However, there is still an open question as to how to detect assets before their identification and reporting on them.…”

Section: Related Workmentioning

confidence: 99%

Automation of Asset Inventory for Cyber Security: Investigation of Event Correlation-Based Technique

et al. 2022

View full text Add to dashboard Cite

show abstract

“…The Incident Object Description Exchange Format (IODEF) defines a data model for reporting incident information and provides an XML schema, while the Extensible Configuration Checklist Description Format defines an XML schema on security configuration checklist. There are many other information structures, including the Asset Reporting Format, Common Attack Pattern Enumeration and Classification, Common Configuration Enumeration (CCE), Common Configuration Scoring System, Common Event Expression, Common Platform Enumeration (CPE), Common Vulnerability Reporting Framework (CVRF), Common Vulnerability Scoring System (CVSS), Common Weakness Enumeration, Common Weakness Scoring System, Cyber Observable Expression, Malware Attribute Enumeration and Characterization, Malware Metadata Exchange Format, Open Checklist Interactive Language, Open Vulnerability and Assessment Language (OVAL), Structured Threat Information Exchange, Software Identification, Web Services Agreement Specification, and Extensible Access Control Markup Language . These are useful for accumulating cybersecurity‐related information and building repositories.…”

Section: Related Workmentioning

confidence: 99%

Web of cybersecurity: Linking, locating, and discovering structured cybersecurity information

Takahashi

Panta

Kadobayashi

et al. 2017

Int J Communication

View full text Add to dashboard Cite

SummaryCybersecurity is one of the main concerns of many organizations today, and accessibility to cybersecurity information in a timely manner is crucial to maintaining cybersecurity. Various repositories of cybersecurity-related information are publicly available on the Internet. However, users are unaware of many of them, and it is impractical for them to keep track of all of them. Cybersecurity information stored in these repositories must be able to be located and accessed by the parties who need it. To address this issue, this paper proposes a mechanism of linking, locating, and discovering various cybersecurity information to improve its accessibility in a timely manner. This mechanism allows us to locate various cybersecurity information having different schemata by generating metadata with which a list of cybersecurity information is managed. The information structure incorporated in this mechanism is unique, and it makes our mechanism flexible and extensible. The structure consists of categories and formats that are linked to each other. The mechanism can propagate information updates to minimize the risk of obsolete information. This paper also introduces a prototype of the mechanism to demonstrate its feasibility, and it analyzes the mechanism's extensibility, scalability, and information credibility. Through this study, we aim to improve the accessibility of cybersecurity information on the Internet and facilitate information sharing beyond organizational borders, with the eventual goal of creating a web of cybersecurity.

show abstract

Reference Ontology for Cybersecurity Operational Information

Takahashi

Kadobayashi

2014

The Computer Journal

View full text Add to dashboard Cite

Specification for the asset reporting format 1.1

Cited by 3 publications

References 0 publications

Automation of Asset Inventory for Cyber Security: Investigation of Event Correlation-Based Technique

Automation of Asset Inventory for Cyber Security: Investigation of Event Correlation-Based Technique

Web of cybersecurity: Linking, locating, and discovering structured cybersecurity information

Reference Ontology for Cybersecurity Operational Information

Contact Info

Product

Resources

About