Accession Number : AD1024812


Title :   A Model of Network Porosity


Descriptive Note : Technical Report


Corporate Author : MIT Lincoln Laboratory Lexington United States


Personal Author(s) : Riordan,James F ; Lippmann,Richard P ; Neumayer,Sebastian J ; Wagner,Neal


Full Text : https://apps.dtic.mil/dtic/tr/fulltext/u2/1024812.pdf


Report Date : 09 Nov 2016


Pagination or Media Count : 51


Abstract : Compartmentalization is one of the standard mechanisms used by defenders to secure enterprise networks. Unfortunately, the compartmentalization process from a security standpoint remains more of an art than a science. Even when well executed, the ongoing evolution of the network may violate initial, security-critical design assumptions. Toward improving operational security, MIT Lincoln Laboratory has produced a collection of metrics that can be used to continuously assess risk within the context of cyber security. One important security metric in this collection is a measure for managing network boundaries and filters or network porosity. This metric computes the risk inherent to a given network architecture. This report describes the model that underlies the network porosity metric, and a simulation implementing the model.


Descriptors :   computer security , computing system architectures , malware , boundaries , simulations , Algorithms , information transfer , network security techniques


Subject Categories : Computer Systems
      Computer Systems Management and Standards


Distribution Statement : APPROVED FOR PUBLIC RELEASE