Accession Number:

AD1024812

Title:

A Model of Network Porosity

Descriptive Note:

Technical Report

Corporate Author:

MIT Lincoln Laboratory Lexington United States

Report Date:

2016-11-09

Pagination or Media Count:

51.0

Abstract:

Compartmentalization is one of the standard mechanisms used by defenders to secure enterprise networks. Unfortunately, the compartmentalization process from a security standpoint remains more of an art than a science. Even when well executed, the ongoing evolution of the network may violate initial, security-critical design assumptions. Toward improving operational security, MIT Lincoln Laboratory has produced a collection of metrics that can be used to continuously assess risk within the context of cyber security. One important security metric in this collection is a measure for managing network boundaries and filters or network porosity. This metric computes the risk inherent to a given network architecture. This report describes the model that underlies the network porosity metric, and a simulation implementing the model.

Subject Categories:

  • Computer Systems
  • Computer Systems Management and Standards

Distribution Statement:

APPROVED FOR PUBLIC RELEASE