CERT Virtual Flow Collection and Analysis

Save this PDF as:
 WORD  PNG  TXT  JPG

Size: px
Start display at page:

Download "CERT Virtual Flow Collection and Analysis"

Transcription

1 CERT Virtual Flow Collection and Analysis For Training and Simulation George Warnagiris 2011 Carnegie Mellon University

2 Report Documentation Page Form Approved OMB No Public reporting burden for the collection of information is estimated to average 1 hour per response, including the time for reviewing instructions, searching existing data sources, gathering and maintaining the data needed, and completing and reviewing the collection of information. Send comments regarding this burden estimate or any other aspect of this collection of information, including suggestions for reducing this burden, to Washington Headquarters Services, Directorate for Information Operations and Reports, 1215 Jefferson Davis Highway, Suite 1204, Arlington VA Respondents should be aware that notwithstanding any other provision of law, no person shall be subject to a penalty for failing to comply with a collection of information if it does not display a currently valid OMB control number. 1. REPORT DATE JAN REPORT TYPE 3. DATES COVERED to TITLE AND SUBTITLE CERT Virtual Flow Collection and Analysis: For Training and Simulation 5a. CONTRACT NUMBER 5b. GRANT NUMBER 5c. PROGRAM ELEMENT NUMBER 6. AUTHOR(S) 5d. PROJECT NUMBER 5e. TASK NUMBER 5f. WORK UNIT NUMBER 7. PERFORMING ORGANIZATION NAME(S) AND ADDRESS(ES) Carnegie Mellon University,Software Engineering Institute,Pittsburgh,PA, PERFORMING ORGANIZATION REPORT NUMBER 9. SPONSORING/MONITORING AGENCY NAME(S) AND ADDRESS(ES) 10. SPONSOR/MONITOR S ACRONYM(S) 12. DISTRIBUTION/AVAILABILITY STATEMENT Approved for public release; distribution unlimited 13. SUPPLEMENTARY NOTES FloCon 2011, in Salt Lake City, Utah, on January 10-13, ABSTRACT 11. SPONSOR/MONITOR S REPORT NUMBER(S) 15. SUBJECT TERMS 16. SECURITY CLASSIFICATION OF: 17. LIMITATION OF ABSTRACT a. REPORT unclassified b. ABSTRACT unclassified c. THIS PAGE unclassified Same as Report (SAR) 18. NUMBER OF PAGES 14 19a. NAME OF RESPONSIBLE PERSON Standard Form 298 (Rev. 8-98) Prescribed by ANSI Std Z39-18

3 2011 Carnegie Mellon University NO WARRANTY THIS MATERIAL OF CARNEGIE MELLON UNIVERSITY AND ITS SOFTWARE ENGINEERING INSTITUTE IS FURNISHED ON AN AS-IS" BASIS. CARNEGIE MELLON UNIVERSITY MAKES NO WARRANTIES OF ANY KIND, EITHER EXPRESSED OR IMPLIED, AS TO ANY MATTER INCLUDING, BUT NOT LIMITED TO, WARRANTY OF FITNESS FOR PURPOSE OR MERCHANTABILITY, EXCLUSIVITY, OR RESULTS OBTAINED FROM USE OF THE MATERIAL. CARNEGIE MELLON UNIVERSITY DOES NOT MAKE ANY WARRANTY OF ANY KIND WITH RESPECT TO FREEDOM FROM PATENT, TRADEMARK, OR COPYRIGHT INFRINGEMENT. This presentation may be reproduced in its entirety, without modification, and freely distributed in written or electronic form without requesting formal permission. Permission is required for any other use. Requests for permission should be directed to the Software Engineering Institute at This work was created in the performance of Federal Government Contract Number FA C-0003 with Carnegie Mellon University for the operation of the Software Engineering Institute, a federally funded research and development center. The government of the United States has a royalty-free government-purpose license to use, duplicate, or disclose the work, in whole or in part and in any manner, and to have or permit others to do so, for government purposes pursuant to the copyright license under the clause at CERT is a registered mark owned by Carnegie Mellon University. 2

4 Software Engineering Institute Carnegie Mellon Un S Acquisition Support CERT Research Technology and Systems Solutions Software Engineering Process Enterprise and Workforce Development Digital Investigations and Intelligence Cyber Threat and Vulnerability Analysis Secure Software and Systems 3

5 Software Engineering Institute CERT Enterprise and Workforce Development Digital Investigations and Intelligence Cyber Threat and Vulnerability Analysis Secure Software and Systems Immersive Learning Technologies XNET Network Situational Awareness 4

6 CERT Network Situational Awareness ( NetSA ) Among other work: Applied Research and Development Maintains the SiLK tool suite Analysis Pipeline Operational Analysis Private Network Analysis Network Profiling of Waladec-Infected IP Space Capacity Building Open source software and publications In person and online training 5

7 NetSA Online Training Modules Network Flow SiLK Beginning Flow Analysis rwfilter Counting Tools: rwcount, rwstats, rwuniq rwappend-rwsplit rwfileinfo-rwglob rwcut and rwcat rwsort Sets Prefix Maps (pmaps) Advanced SiLK Tools: Bags Using Tuples with SiLK LAB: SiLK Training 6

8 NetSA Online Virtual Lab I Find ~ Software Engineering Institute Table of Contents 2 Introduction 1. 1 Lau ToJJology 1.2 Description of data in the lnb repo~ i t o rie3 1.3 Tips on using th9 SiLKNTE lab systgms SILKIVTE Lab Exercises 2.1 Lab Section 1 Bcginring 1\nalysit E ~ orci coc Lab Conm~cti ng to and logging onto thq SiLK lab Lab Determine d ata repository's dates, classes and sensors Lab 1.3- Explore the rapository 2.2 Lab Section 2 - rwfilter Exercises Lab2.1 - Explore rwt:lter Options Lab 2.2 T ack an ind ii id~al 3ddrocs or individual ad:lrctc block Lab Categorizing Traffic with rw: 11 :er Lab T ending T ralfic Lab2.5 - Olaining r wfil:er Commands Together 2.3 Lab Se<tion 3 - Printing ard Sortirg T~ Lab R>rmattirg OUtput Lab 32- F nding Specific Behavior 2.4 l ab Se<tion 4 - Other - ools _ab Llsif11< Other Too s to Find &havior Lab4.2 - numq and the IJesllnabon If' Utstnc1 reature l ab 4.3- [xplcring Lw(llda!v 2.5 lab Section 5 - Se:s Lab Llsi f11< Block lists Lab 5.2- Takirg Network lnvento1ies 2.o Lab Sec~ on o- Bags Lab F ud DNS Clieuts 2.7 Lab SG>ction 7 - Prgfix I.Aaps Lab Experimenting with pma,os Lab pmaps and ICMP {c;) I Software Engineering Institute I CarnegieMellon 7

9 NetSA Online Virtual Lab Time Remainin!l: 2:56 Extend I I'm Done. I Restart Lab I!::m.!J!. I {c;) I.. Software Engineering Institute I Carnegie Mellon 8

10 New Training Modules in 2010 Introduction to isilk Overview of PySiLK Basic PySiLK Objects 9

11 Modules Proposed for

12 Virtual Training Environment ( VTE ) Training from anywhere with a web browser and Internet connection Recorded lectures on a variety of topics Hands-on training labs Narrated demonstrations XXX modules and counting! Topics range from CompTIA Network+ to Malware Analysis 11

13 Next Generation: VTE3 Courses Create a New Course Ghare )'OUI ~:no-.vledge end e:q:erierc~. Search: Gea c1 1-1uo t;jres.. ms tou1a. 1 2~:!.~ Wireless Comms an<l Wireless Network Security Th s class ~ov3rs sign;~l theo'y RF' pdp;g;~tion antennas, ;me wirp. P.~~ np.1\vnr< 'Y'l;:j:lpinc ~lllhf w~ytn lhp. l=tn? 11 nrntnr.nl ~t:rit:l'::, :ita:u iij ifflfjiitelijii~ Lf'Nft:!'ltn>~ r t:l'.wulkir y, l:h lj IJt:n>l practices. S~L:fiuus: 0 NF!tnltP.r~: r Vulni!ralltltty Ass>'!ssment ana Remi!atatton Vu nerability'.o..s~essment :;~nc Remedieti)n Sections: 1 Netnher~: 1 VI3WOela IS Using SilK tor Ni!tvlork Traffic Analy~is llsirg Cill< for Netvtcrk -rafic Ana ysis Oescriotion S~L:fiuus: 0 Netnher~: C {c;) I.. Software Engineering Institute I CarnegieMellon 12

14 VTE3 New site design Faster, more robust Authoring environment Labs based on the next generation of VMWare Communities Social networking 13

15 CERT Exercise Network ( XNET ) New site design Faster, more robust Authoring environment Labs based on the next generation of VMWare Communities Social networking 14

Exploring the Interactions Between Network Data Analysis and Security Information/Event Management

Exploring the Interactions Between Network Data Analysis and Security Information/Event Management Exploring the Interactions Between Network Data Analysis and Security Information/Event Management Timothy J. Shimeall CERT Network Situational Awareness (NetSA) Group January 2011 2011 Carnegie Mellon

More information

Network Analysis with isilk

Network Analysis with isilk Network Analysis with isilk Presented at FloCon 2011 Ron Bandes CERT Network Situational Awareness (NetSA) Group 2011 Carnegie Mellon University 2011 Carnegie Mellon University NO WARRANTY THIS MATERIAL

More information

2012 CyberSecurity Watch Survey

2012 CyberSecurity Watch Survey 2012 CyberSecurity Watch Survey Unknown How 24 % Bad is the Insider Threat? 51% 2007-2013 Carnegie Mellon University 2012 Carnegie Mellon University NO WARRANTY THIS MATERIAL OF CARNEGIE MELLON UNIVERSITY

More information

Report Documentation Page

Report Documentation Page (c)2002 American Institute Report Documentation Page Form Approved OMB No. 0704-0188 Public reporting burden for the collection of information is estimated to average 1 hour per response, including the

More information

Monitoring Trends in Network Flow for Situational Awareness

Monitoring Trends in Network Flow for Situational Awareness Monitoring Trends in Network Flow for Situational Awareness SEI CERT NetSA 2011 Carnegie Mellon University NO WARRANTY THIS MATERIAL OF CARNEGIE MELLON UNIVERSITY AND ITS SOFTWARE ENGINEERING INSTITUTE

More information

Network Monitoring for Cyber Security

Network Monitoring for Cyber Security Network Monitoring for Cyber Security Paul Krystosek, PhD CERT Network Situational Awareness 2006 Carnegie Mellon University What s Coming Up The scope of network monitoring Cast of characters Descriptions

More information

An Application of an Iterative Approach to DoD Software Migration Planning

An Application of an Iterative Approach to DoD Software Migration Planning An Application of an Iterative Approach to DoD Software Migration Planning John Bergey Liam O Brien Dennis Smith September 2002 Product Line Practice Initiative Unlimited distribution subject to the copyright.

More information

Overview Presented by: Boyd L. Summers

Overview Presented by: Boyd L. Summers Overview Presented by: Boyd L. Summers Systems & Software Technology Conference SSTC May 19 th, 2011 1 Report Documentation Page Form Approved OMB No. 0704-0188 Public reporting burden for the collection

More information

Merging Network Configuration and Network Traffic Data in ISP-Level Analyses

Merging Network Configuration and Network Traffic Data in ISP-Level Analyses Merging Network Configuration and Network Traffic Data in ISP-Level Analyses Timothy J. Shimeall, Ph.D. Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213 Presentation Title

More information

DEFENSE CONTRACT AUDIT AGENCY

DEFENSE CONTRACT AUDIT AGENCY DEFENSE CONTRACT AUDIT AGENCY Fundamental Building Blocks for an Acceptable Accounting System Presented by Sue Reynaga DCAA Branch Manager San Diego Branch Office August 24, 2011 Report Documentation Page

More information

Asset Management- Acquisitions

Asset Management- Acquisitions Indefinite Delivery, Indefinite Quantity (IDIQ) contracts used for these services: al, Activity & Master Plans; Land Use Analysis; Anti- Terrorism, Circulation & Space Management Studies; Encroachment

More information

Software Security Engineering: A Guide for Project Managers

Software Security Engineering: A Guide for Project Managers Software Security Engineering: A Guide for Project Managers Gary McGraw Julia H. Allen Nancy Mead Robert J. Ellison Sean Barnum May 2013 ABSTRACT: Software is ubiquitous. Many of the products, services,

More information

73rd MORSS CD Cover Page UNCLASSIFIED DISCLOSURE FORM CD Presentation

73rd MORSS CD Cover Page UNCLASSIFIED DISCLOSURE FORM CD Presentation 73rd MORSS CD Cover Page UNCLASSIFIED DISCLOSURE FORM CD Presentation 21-23 June 2005, at US Military Academy, West Point, NY 712CD For office use only 41205 Please complete this form 712CD as your cover

More information

John Mathieson US Air Force (WR ALC) Systems & Software Technology Conference Salt Lake City, Utah 19 May 2011

John Mathieson US Air Force (WR ALC) Systems & Software Technology Conference Salt Lake City, Utah 19 May 2011 John Mathieson US Air Force (WR ALC) Systems & Software Technology Conference Salt Lake City, Utah 19 May 2011 Report Documentation Page Form Approved OMB No. 0704-0188 Public reporting burden for the

More information

Guide to Using DoD PKI Certificates in Outlook 2000

Guide to Using DoD PKI Certificates in Outlook 2000 Report Number: C4-017R-01 Guide to Using DoD PKI Certificates in Outlook 2000 Security Evaluation Group Author: Margaret Salter Updated: April 6, 2001 Version 1.0 National Security Agency 9800 Savage Rd.

More information

Supply-Chain Risk Management Framework

Supply-Chain Risk Management Framework Supply-Chain Risk Management Framework Carol Woody March 2010 Scope of SEI Work Context Significantly reduce the risk (any where in the supply chain) that an unauthorized party can change the behavior

More information

Overview. CMU/SEI Cyber Innovation Center. Dynamic On-Demand High-Performance Computing System. KVM and Hypervisor Security.

Overview. CMU/SEI Cyber Innovation Center. Dynamic On-Demand High-Performance Computing System. KVM and Hypervisor Security. KVM and Hypervisor Security David Shepard and Matt Gaston CMU/SEI Cyber Innovation Center February 2012 2012 by Carnegie Mellon University. Published SEI PROPRIETARY INFORMATION. Distribution: Director

More information

Software Vulnerabilities in Java

Software Vulnerabilities in Java Software Vulnerabilities in Java Fred Long October 2005 CERT Unlimited distribution subject to the copyright. Technical Note CMU/SEI-2005-TN-044 This work is sponsored by the U.S. Department of Defense.

More information

Headquarters U.S. Air Force

Headquarters U.S. Air Force Headquarters U.S. Air Force I n t e g r i t y - S e r v i c e - E x c e l l e n c e Air Force Technology Readiness Assessment (TRA) Process for Major Defense Acquisition Programs LtCol Ed Masterson Mr

More information

DEFENSE LOGISTICS AGENCY AMERICA S COMBAT LOGISTICS SUPPORT AGENCY. DoD DMSMS Certificate Program: Establishing a Qualified DMSMS Workforce

DEFENSE LOGISTICS AGENCY AMERICA S COMBAT LOGISTICS SUPPORT AGENCY. DoD DMSMS Certificate Program: Establishing a Qualified DMSMS Workforce DEFENSE LOGISTICS AGENCY AMERICA S COMBAT LOGISTICS SUPPORT AGENCY DoD DMSMS Certificate Program: Establishing a Qualified DMSMS Workforce Mr. Mitchell Canty 2011 DMSMS and Standardization Conference WARFIGHTER

More information

DCAA and the Small Business Innovative Research (SBIR) Program

DCAA and the Small Business Innovative Research (SBIR) Program Defense Contract Audit Agency (DCAA) DCAA and the Small Business Innovative Research (SBIR) Program Judice Smith and Chang Ford DCAA/Financial Liaison Advisors NAVAIR 2010 Small Business Aviation Technology

More information

Using the Advancement Degree of Difficulty (AD 2 ) as an input to Risk Management

Using the Advancement Degree of Difficulty (AD 2 ) as an input to Risk Management Using the Advancement Degree of Difficulty (AD 2 ) as an input to Risk Management James W. Bilbro JB Consulting International Huntsville, AL Multi-dimensional Assessment of Technology Maturity Technology

More information

AFRL-RX-WP-TP-2008-4023

AFRL-RX-WP-TP-2008-4023 AFRL-RX-WP-TP-2008-4023 HOW KILLDEER MOUNTAIN MANUFACTURING IS OPTIMIZING AEROSPACE SUPPLY CHAIN VISIBILITY USING RFID (Postprint) Jeanne Duckett Killdeer Mountain Manufacturing, Inc. FEBRUARY 2008 Final

More information

EAD Expected Annual Flood Damage Computation

EAD Expected Annual Flood Damage Computation US Army Corps of Engineers Hydrologic Engineering Center Generalized Computer Program EAD Expected Annual Flood Damage Computation User's Manual March 1989 Original: June 1977 Revised: August 1979, February

More information

The CERT Approach to Cybersecurity Workforce Development

The CERT Approach to Cybersecurity Workforce Development The CERT Approach to Cybersecurity Workforce Development Josh Hammerstein Christopher May December 2010 TECHNICAL REPORT CMU/SEI-2010-TR-045 ESC-TR-2010-110 Enterprise and Workforce Development Unlimited

More information

DoD Software Migration Planning

DoD Software Migration Planning DoD Software Migration Planning John Bergey Liam O Brien Dennis Smith August 2001 Product Line Practice Initiative Technical Note CMU/SEI-2001-TN-012 Unlimited distribution subject to the copyright. The

More information

U.S. Forces in Iraq. JoAnne O Bryant and Michael Waterhouse Information Research Specialists Knowledge Services Group

U.S. Forces in Iraq. JoAnne O Bryant and Michael Waterhouse Information Research Specialists Knowledge Services Group Order Code RS22449 Updated September 2, 27 U.S. Forces in Iraq JoAnne O Bryant and Michael Waterhouse Information Research Specialists Knowledge Services Group Summary Varying media estimates of military

More information

Elasticsearch, Logstash, and Kibana (ELK)

Elasticsearch, Logstash, and Kibana (ELK) Elasticsearch, Logstash, and Kibana (ELK) Dwight Beaver dsbeaver@cert.org Sean Hutchison shutchison@cert.org January 2015 2014 Carnegie Mellon University This material is based upon work funded and supported

More information

Boeing When Agile Software Development and Software Architecture Collide

Boeing When Agile Software Development and Software Architecture Collide Boeing When Agile Software Development and Software Architecture Collide Don O Connell BOEING is a trademark of Boeing Management Company. 1 Report Documentation Page Form Approved OMB No. 0704-0188 Public

More information

Cyber Intelligence Workforce

Cyber Intelligence Workforce Cyber Intelligence Workforce Troy Townsend Melissa Kasan Ludwick September 17, 2013 Agenda Project Background Research Methodology Findings Training and Education Project Findings Workshop Results Objectives

More information

ELECTRONIC HEALTH RECORDS. Fiscal Year 2013 Expenditure Plan Lacks Key Information Needed to Inform Future Funding Decisions

ELECTRONIC HEALTH RECORDS. Fiscal Year 2013 Expenditure Plan Lacks Key Information Needed to Inform Future Funding Decisions United States Government Accountability Office Report to Congressional July 2014 ELECTRONIC HEALTH RECORDS Fiscal Year 2013 Expenditure Plan Lacks Key Information Needed to Inform Future Funding Decisions

More information

VoIP in Flow A Beginning

VoIP in Flow A Beginning VoIP in Flow A Beginning Nathan Dell CERT/NetSA 2013 Carnegie Mellon University Legal Copyright 2013 Carnegie Mellon University This material is based upon work funded and supported by the Department of

More information

U.S. Forces in Iraq. JoAnne O Bryant and Michael Waterhouse Information Research Specialists Knowledge Services Group

U.S. Forces in Iraq. JoAnne O Bryant and Michael Waterhouse Information Research Specialists Knowledge Services Group Order Code RS22449 Updated April 13, 27 U.S. Forces in Iraq JoAnne O Bryant and Michael Waterhouse Information Research Specialists Knowledge Services Group Summary Varying media estimates of military

More information

Mr. Steve Mayer, PMP, P.E. McClellan Remediation Program Manger Air Force Real Property Agency. May 11, 2011

Mr. Steve Mayer, PMP, P.E. McClellan Remediation Program Manger Air Force Real Property Agency. May 11, 2011 Mr. Steve Mayer, PMP, P.E. McClellan Remediation Program Manger Air Force Real Property Agency May 11, 2011 Report Documentation Page Form Approved OMB No. 0704-0188 Public reporting burden for the collection

More information

Copyright 2014 Carnegie Mellon University The Cyber Resilience Review is based on the Cyber Resilience Evaluation Method and the CERT Resilience

Copyright 2014 Carnegie Mellon University The Cyber Resilience Review is based on the Cyber Resilience Evaluation Method and the CERT Resilience Copyright 2014 Carnegie Mellon University The Cyber Resilience Review is based on the Cyber Resilience Evaluation Method and the CERT Resilience Management Model (CERT-RMM), both developed at Carnegie

More information

RT 24 - Architecture, Modeling & Simulation, and Software Design

RT 24 - Architecture, Modeling & Simulation, and Software Design RT 24 - Architecture, Modeling & Simulation, and Software Design Dennis Barnabe, Department of Defense Michael zur Muehlen & Anne Carrigy, Stevens Institute of Technology Drew Hamilton, Auburn University

More information

2010 2011 Military Health System Conference

2010 2011 Military Health System Conference 2010 2011 Military Health System Conference Population Health Management The Missing Element of PCMH Sharing The Quadruple Knowledge: Aim: Working Achieving Together, Breakthrough Achieving Performance

More information

Contracting Officer s Representative (COR) Interactive SharePoint Wiki

Contracting Officer s Representative (COR) Interactive SharePoint Wiki Contracting Officer s Representative (COR) Interactive SharePoint Wiki James Smith Andy Boyd Software Solutions Conference 2015 November 16 18, 2015 Copyright 2015 Carnegie Mellon University This material

More information

U.S. Forces in Iraq. JoAnne O Bryant and Michael Waterhouse Information Research Specialists Knowledge Services Group

U.S. Forces in Iraq. JoAnne O Bryant and Michael Waterhouse Information Research Specialists Knowledge Services Group Order Code RS22449 Updated July 2, 27 U.S. Forces in Iraq JoAnne O Bryant and Michael Waterhouse Information Research Specialists Knowledge Services Group Summary Varying media estimates of military forces

More information

Pay Attention! What are Your Employees Doing?

Pay Attention! What are Your Employees Doing? Pay Attention! What are Your Employees Doing? Dawn M. Cappelli http://www.cert.org/insider_threat/ 2006 Carnegie Mellon University Report Documentation Page Form Approved OMB No. 0704-0188 Public reporting

More information

CAPTURE-THE-FLAG: LEARNING COMPUTER SECURITY UNDER FIRE

CAPTURE-THE-FLAG: LEARNING COMPUTER SECURITY UNDER FIRE CAPTURE-THE-FLAG: LEARNING COMPUTER SECURITY UNDER FIRE LCDR Chris Eagle, and John L. Clark Naval Postgraduate School Abstract: Key words: In this paper, we describe the Capture-the-Flag (CTF) activity

More information

In June 1998 the Joint Military Intelligence. Intelligence Education for Joint Warfighting A. DENIS CLIFT

In June 1998 the Joint Military Intelligence. Intelligence Education for Joint Warfighting A. DENIS CLIFT Defense Intelligence Analysis Center, home of JMIC. Intelligence Education for Joint Warfighting Courtesy Joint Military Intelligence College By A. DENIS CLIFT In June 1998 the Joint Military Intelligence

More information

FIRST IMPRESSION EXPERIMENT REPORT (FIER)

FIRST IMPRESSION EXPERIMENT REPORT (FIER) THE MNE7 OBJECTIVE 3.4 CYBER SITUATIONAL AWARENESS LOE FIRST IMPRESSION EXPERIMENT REPORT (FIER) 1. Introduction The Finnish Defence Forces Concept Development & Experimentation Centre (FDF CD&E Centre)

More information

$100 SiLK Network Flow Sensor

$100 SiLK Network Flow Sensor $100 SiLK Network Flow Sensor Ron Bandes John Badertscher Dwight Beaver 1 Copyright 2014 Carnegie Mellon University This material is based upon work funded and supported by the Department of Defense under

More information

Moving Target Reference Implementation

Moving Target Reference Implementation CYBER SECURITY DIVISION 2014 R&D SHOWCASE AND TECHNICAL WORKSHOP Moving Target Reference Implementation Software Engineering Institute, Carnegie Mellon University Andrew O. Mellinger December 17, 2014

More information

AUSTRALIAN INNOVATIONS

AUSTRALIAN INNOVATIONS AUSTRALIAN INNOVATIONS Recent Developments in Australian EVM Practices Jim Muir & Kirsty McLean October 1998 REPORT DOCUMENTATION PAGE Form Approved OMB No. 0704-0188 Public reporting burder for this collection

More information

Electricity Subsector Cybersecurity Capability Maturity Model (ES-C2M2) (Case Study) James Stevens Senior Member, Technical Staff - CERT Division

Electricity Subsector Cybersecurity Capability Maturity Model (ES-C2M2) (Case Study) James Stevens Senior Member, Technical Staff - CERT Division Electricity Subsector Cybersecurity Capability Maturity Model (ES-C2M2) (Case Study) James Stevens Senior Member, Technical Staff - CERT Division James Stevens is a senior member of the technical staff

More information

Cancellation of Nongroup Health Insurance Policies

Cancellation of Nongroup Health Insurance Policies Cancellation of Nongroup Health Insurance Policies Bernadette Fernandez Specialist in Health Care Financing Annie L. Mach Analyst in Health Care Financing November 19, 2013 Congressional Research Service

More information

Award Number: MIPR 3GD3DJ3078. TITLE: Outcome Analysis Tool for Army Refractive Surgery Program. PRINCIPAL INVESTIGATOR: Kraig S. Bower, M.D.

Award Number: MIPR 3GD3DJ3078. TITLE: Outcome Analysis Tool for Army Refractive Surgery Program. PRINCIPAL INVESTIGATOR: Kraig S. Bower, M.D. AD Award Number: MIPR 3GD3DJ3078 TITLE: Outcome Analysis Tool for Army Refractive Surgery Program PRINCIPAL INVESTIGATOR: Kraig S. Bower, M.D. CONTRACTING ORGANIZATION: Walter Reed Army Medical Center

More information

Issue Paper. Wargaming Homeland Security and Army Reserve Component Issues. By Professor Michael Pasquarett

Issue Paper. Wargaming Homeland Security and Army Reserve Component Issues. By Professor Michael Pasquarett Issue Paper Center for Strategic Leadership, U.S. Army War College May 2003 Volume 04-03 Wargaming Homeland Security and Army Reserve Component Issues By Professor Michael Pasquarett Background The President

More information

Pima Community College Planning Grant For Autonomous Intelligent Network of Systems (AINS) Science, Mathematics & Engineering Education Center

Pima Community College Planning Grant For Autonomous Intelligent Network of Systems (AINS) Science, Mathematics & Engineering Education Center Pima Community College Planning Grant For Autonomous Intelligent Network of Systems (AINS) Science, Mathematics & Engineering Education Center Technical Report - Final Award Number N00014-03-1-0844 Mod.

More information

Assurance Cases for Design Analysis of Complex System of Systems Software

Assurance Cases for Design Analysis of Complex System of Systems Software Assurance Cases for Design Analysis of Complex System of Systems Software Presented at AIAA Infotech@Aerospace Conference Software Assurance Session 8 April 2009 Stephen Blanchette, Jr. Problem: SoS are

More information

Department of Homeland Security Cyber Resilience Review (Case Study) Matthew Butkovic Technical Manager - Cybersecurity Assurance, CERT Division

Department of Homeland Security Cyber Resilience Review (Case Study) Matthew Butkovic Technical Manager - Cybersecurity Assurance, CERT Division Department of Homeland Security Cyber Resilience Review (Case Study) Matthew Butkovic Technical Manager - Cybersecurity Assurance, CERT Division Matthew Butkovic is a Technical Manager Cybersecurity Assurance

More information

IISUP-. NAVAL SUPPLY SVSTE:MS COMMAND. Ready. Resourceful. Responsive!

IISUP-. NAVAL SUPPLY SVSTE:MS COMMAND. Ready. Resourceful. Responsive! ~ IISUP-. NAVAL SUPPLY SVSTE:MS COMMAND Ready. Resourceful. Responsive! Report Documentation Page Form Approved OMB No. 0704-0188 Public reporting burden for the collection of information is estimated

More information

DEFENSE BUSINESS PRACTICE IMPLEMENTATION BOARD

DEFENSE BUSINESS PRACTICE IMPLEMENTATION BOARD Defense Business Practice Implementation Board DEFENSE BUSINESS PRACTICE IMPLEMENTATION BOARD Report to the Senior Executive Council, Department of Defense MANAGEMENT INFORMATION TASK GROUP Report FY02-3

More information

Evaluating the Quality of Software Engineering Performance Data

Evaluating the Quality of Software Engineering Performance Data Evaluating the Quality of Software Engineering Performance Data James Over Software Engineering Institute Carnegie Mellon University July 2014 Copyright 2014 Carnegie Mellon University This material is

More information

Interagency National Security Knowledge and Skills in the Department of Defense

Interagency National Security Knowledge and Skills in the Department of Defense INSTITUTE FOR DEFENSE ANALYSES Interagency National Security Knowledge and Skills in the Department of Defense June 2014 Approved for public release; distribution is unlimited. IDA Document D-5204 Log:

More information

Regional Field Verification Operational Results from Four Small Wind Turbines in the Pacific Northwest

Regional Field Verification Operational Results from Four Small Wind Turbines in the Pacific Northwest National Renewable Energy Laboratory Innovation for Our Energy Future A national laboratory of the U.S. Department of Energy Office of Energy Efficiency & Renewable Energy Regional Field Verification Operational

More information

Kurt Wallnau Senior Member of Technical Staff

Kurt Wallnau Senior Member of Technical Staff Engineering Realistic Synthetic Insider Threat (Cyber-Social) Test Data Kurt Wallnau Senior Member of Technical Staff Dr. Kurt Wallnau joined the SEI in 1993. He joined CERT Science of Cyber-Security (SoCS)

More information

Risk Management Framework

Risk Management Framework Risk Management Framework Christopher J. Alberts Audrey J. Dorofee August 2010 TECHNICAL REPORT CMU/SEI-2010-TR-017 ESC-TR-2010-017 Acquisition Support Program Unlimited distribution subject to the copyright.

More information

Extending AADL for Security Design Assurance of the Internet of Things

Extending AADL for Security Design Assurance of the Internet of Things Extending AADL for Security Design Assurance of the Internet of Things Presented by Rick Kazman, PhD Team: Carol Woody (PI), Rick Kazman, Robert Ellison, John Hudak, Allen Householder Software Engineering

More information

Advanced Micro Ring Resonator Filter Technology

Advanced Micro Ring Resonator Filter Technology Advanced Micro Ring Resonator Filter Technology G. Lenz and C. K. Madsen Lucent Technologies, Bell Labs Report Documentation Page Form Approved OMB No. 0704-0188 Public reporting burden for the collection

More information

Network Flow Analysis in Information Security Strategy

Network Flow Analysis in Information Security Strategy Network Flow Analysis in Information Security Strategy Timothy J. Shimeall, Ph.D. Situational Awareness Team January, 2015 2015 Carnegie Mellon University Copyright 2014 Carnegie Mellon University This

More information

Small PV Systems Performance Evaluation at NREL's Outdoor Test Facility Using the PVUSA Power Rating Method

Small PV Systems Performance Evaluation at NREL's Outdoor Test Facility Using the PVUSA Power Rating Method National Renewable Energy Laboratory Innovation for Our Energy Future A national laboratory of the U.S. Department of Energy Office of Energy Efficiency & Renewable Energy Small PV Systems Performance

More information

Achieving QoS for Aeronautical Telecommunication Networks Over Differentiated Services

Achieving QoS for Aeronautical Telecommunication Networks Over Differentiated Services NASA/TM 2001-210754 Achieving QoS for Aeronautical Telecommunication Networks Over Differentiated Services Haowei Bai and Mohammed Atiquzzaman The University of Dayton, Dayton, Ohio William Ivancic Glenn

More information

THE MIMOSA OPEN SOLUTION COLLABORATIVE ENGINEERING AND IT ENVIRONMENTS WORKSHOP

THE MIMOSA OPEN SOLUTION COLLABORATIVE ENGINEERING AND IT ENVIRONMENTS WORKSHOP THE MIMOSA OPEN SOLUTION COLLABORATIVE ENGINEERING AND IT ENVIRONMENTS WORKSHOP By Dr. Carl M. Powe, Jr. 2-3 March 2005 Report Documentation Page Form Approved OMB No. 0704-0188 Public reporting burden

More information

ASNE. Mr. Chris Deegan Executive Director PEO IWS. 10 February DISTRIBUTION STATEMENT A: Approved for Public Release: Distribution is Unlimited.

ASNE. Mr. Chris Deegan Executive Director PEO IWS. 10 February DISTRIBUTION STATEMENT A: Approved for Public Release: Distribution is Unlimited. ASNE Mr. Chris Deegan Executive Director PEO IWS 10 February 2012 1 Report Documentation Page Form Approved OMB No. 0704-0188 Public reporting burden for the collection of information is estimated to average

More information

Resolving Chaos Arising from Agile Software Development

Resolving Chaos Arising from Agile Software Development Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 523 Author Date High Level Alternatives Approach. Blame the Agile development process, fire the folks who are controlling it and

More information

Simulation of Air Flow Through a Test Chamber

Simulation of Air Flow Through a Test Chamber Simulation of Air Flow Through a Test Chamber by Gregory K. Ovrebo ARL-MR- 0680 December 2007 Approved for public release; distribution unlimited. NOTICES Disclaimers The findings in this report are not

More information

Dr. Gary S. E. Lagerloef Earth and Space Research, 1910 Fairview Ave E

Dr. Gary S. E. Lagerloef Earth and Space Research, 1910 Fairview Ave E Establishing a NOAA Operational Data Center for Surface Currents Derived from Satellite Altimeters and Scatterometers; Pilot Study for the Tropical Pacific Including the Hawaiian Islands and US Territorial

More information

Building Security Into Closed Network Design

Building Security Into Closed Network Design Building Security Into Closed Network Design George Warnagiris 2011 Carnegie Mellon University NO WARRANTY THIS MATERIAL OF CARNEGIE MELLON UNIVERSITY AND ITS SOFTWARE ENGINEERING INSTITUTE IS FURNISHED

More information

AFRL-RZ-WP-TM-2007-2138

AFRL-RZ-WP-TM-2007-2138 AFRL-RZ-WP-TM-2007-2138 ADVANCED PROPULSION CONCEPTS AND COMPONENT TECHNOLOGIES Jeffrey S. Stutrud Combustion Branch Turbine Engine Division JULY 2007 Approved for public release; distribution unlimited.

More information

NAVSUP FLC NORFOLK PHILADELPHIA OFFICE

NAVSUP FLC NORFOLK PHILADELPHIA OFFICE NAVSUP FLC NORFOLK PHILADELPHIA OFFICE Gerald Furey Deputy for Small Business Ready. Resourceful. Responsive! 1 Report Documentation Page Form Approved OMB No. 0704-0188 Public reporting burden for the

More information

Optical Blade Position Tracking System Test

Optical Blade Position Tracking System Test National Renewable Energy Laboratory Innovation for Our Energy Future A national laboratory of the U.S. Department of Energy Office of Energy Efficiency & Renewable Energy Optical Blade Position Tracking

More information

Architectural Implications of Cloud Computing

Architectural Implications of Cloud Computing Architectural Implications of Cloud Computing Grace Lewis Research, Technology and Systems Solutions (RTSS) Program Lewis is a senior member of the technical staff at the SEI in the Research, Technology,

More information

A Study of Systems Engineering Effectiveness. Building a Business Case for Systems Engineering

A Study of Systems Engineering Effectiveness. Building a Business Case for Systems Engineering Building a Business Case for Systems Engineering NO WARRANTY THIS CARNEGIE MELLON UNIVERSITY AND SOFTWARE ENGINEERING INSTITUTE MATERIAL IS FURNISHED ON AN AS-IS" BASIS. CARNEGIE MELLON UNIVERSITY MAKES

More information

GLONASS STATUS UPDATE

GLONASS STATUS UPDATE GLONASS STATUS UPDATE Y. Urlichich, G. Stupak, V. Dvorkin, and S. Karutin Federal Space Agency 53 Aviamotornay str. Moscow, 111250, Russia Tel: + 7 495 673 97 29, Fax: +7 495 673 28 15, E-mail: sergey.karutin@rniikp.ru

More information

Computer Forensics: Results of Live Response Inquiry vs. Memory Image Analysis

Computer Forensics: Results of Live Response Inquiry vs. Memory Image Analysis Computer Forensics: Results of Live Response Inquiry vs. Memory Image Analysis Cal Waits Joseph Ayo Akinyele Richard Nolan Larry Rogers August 2008 TECHNICAL NOTE CMU/SEI-2008-TN-017 CERT Program Unlimited

More information

Insider Threat Control: Using Centralized Logging to Detect Data Exfiltration Near Insider Termination

Insider Threat Control: Using Centralized Logging to Detect Data Exfiltration Near Insider Termination Insider Threat Control: Using Centralized Logging to Detect Data Exfiltration Near Insider Termination Michael Hanley Joji Montelibano October 2011 TECHNICAL NOTE CMU/SEI-2011-TN-024 CERT Program http://www.sei.cmu.edu

More information

mini w Requirements Analysis Defense Commissary Agency Credit Card Program Logistics Management Institute Credit Card Terminals and Printers v / i

mini w Requirements Analysis Defense Commissary Agency Credit Card Program Logistics Management Institute Credit Card Terminals and Printers v / i Logistics Management Institute Requirements Analysis Defense Commissary Agency Credit Card Program Credit Card Terminals and Printers CA303LN32 Andrew T. Rothstein ^^Mj^msmmnz mini w I v / i November 1995

More information

THE FLATWORLD SIMULATION CONTROL ARCHITECTURE (FSCA): A FRAMEWORK FOR SCALABLE IMMERSIVE VISUALIZATION SYSTEMS

THE FLATWORLD SIMULATION CONTROL ARCHITECTURE (FSCA): A FRAMEWORK FOR SCALABLE IMMERSIVE VISUALIZATION SYSTEMS THE FLATWORLD SIMULATION CONTROL ARCHITECTURE (FSCA): A FRAMEWORK FOR SCALABLE IMMERSIVE VISUALIZATION SYSTEMS Anton Treskunov, Jarrell Pair*, and Bill Swartout Institute for Creative Technologies University

More information

A Systematic Method for Big Data Technology Selection

A Systematic Method for Big Data Technology Selection A Systematic Method for Big Data Technology Selection John Klein Software Solutions Conference 2015 November 16 18, 2015 Copyright 2015 Carnegie Mellon University This material is based upon work funded

More information

A GPS Digital Phased Array Antenna and Receiver

A GPS Digital Phased Array Antenna and Receiver A GPS Digital Phased Array Antenna and Receiver Dr. Alison Brown, Randy Silva; NAVSYS Corporation ABSTRACT NAVSYS High Gain Advanced GPS Receiver (HAGR) uses a digital beam-steering antenna array to enable

More information

SOA for Healthcare: Promises and Pitfalls

SOA for Healthcare: Promises and Pitfalls SOA for Healthcare: Promises and Pitfalls Dennis B. Smith dbs@sei.cmu.edu SOA in Health Care Conference: Value in a Time of Change Chicago, IL USA June 3, 2009 Agenda Healthcare IT Challenges SOA: The

More information

Assurance in Service-Oriented Environments

Assurance in Service-Oriented Environments Assurance in Service-Oriented Environments Soumya Simanta Research, Technology, and System Solutions (RTSS) Program Software Engineering Institute Carnegie Mellon University Pittsburgh 15232 28 th October,

More information

Monitoring of Arctic Conditions from a Virtual Constellation of Synthetic Aperture Radar Satellites

Monitoring of Arctic Conditions from a Virtual Constellation of Synthetic Aperture Radar Satellites DISTRIBUTION STATEMENT A. Approved for public release; distribution is unlimited. Monitoring of Arctic Conditions from a Virtual Constellation of Synthetic Aperture Radar Satellites Hans C. Graber RSMAS

More information

THE NATIONAL SHIPBUILDING RESEARCH PROGRAM

THE NATIONAL SHIPBUILDING RESEARCH PROGRAM SHIP PRODUCTION COMMITTEE FACILITIES AND ENVIRONMENTAL EFFECTS SURFACE PREPARATION AND COATINGS DESIGN/PRODUCTION INTEGRATION HUMAN RESOURCE INNOVATION MARINE INDUSTRY STANDARDS WELDING INDUSTRIAL ENGINEERING

More information

CONTACTIN 4 AS A POSSIBLE AUTISM SUSCEPTIBILITY LOCUS

CONTACTIN 4 AS A POSSIBLE AUTISM SUSCEPTIBILITY LOCUS 2010 2011 Military Health System Conference CONTACTIN 4 AS A POSSIBLE AUTISM SUSCEPTIBILITY LOCUS The Quadruple Aim: Working Together, Achieving Success Sharing Knowledge: Achieving Breakthrough Performance

More information

Integrated Force Method Solution to Indeterminate Structural Mechanics Problems

Integrated Force Method Solution to Indeterminate Structural Mechanics Problems NASA/TP 2004-207430 Integrated Force Method Solution to Indeterminate Structural Mechanics Problems Surya N. Patnaik Ohio Aerospace Institute, Brook Park, Ohio Dale A. Hopkins and Gary R. Halford Glenn

More information

Addressing the Real-World Challenges in the Development of Propulsion IVHM Technology Experiment (PITEX)

Addressing the Real-World Challenges in the Development of Propulsion IVHM Technology Experiment (PITEX) NASA/CR 2005-213422 AIAA 2004 6361 Addressing the Real-World Challenges in the Development of Propulsion IVHM Technology Experiment (PITEX) William A. Maul, Amy Chicatelli, and Christopher E. Fulton Analex

More information

Autonomous Vehicles Panel 2011 Pacific Operations Science & Technology Conference

Autonomous Vehicles Panel 2011 Pacific Operations Science & Technology Conference Autonomous Vehicles Panel 2011 Pacific Operations Science & Technology Conference Dr. Grace Bochenek Director, U.S. Army RDECOM-TARDEC UNCLASSIFIED: Dist A. Approved for public release Report Documentation

More information

The CERT Top 10 List for Winning the Battle Against Insider Threats

The CERT Top 10 List for Winning the Battle Against Insider Threats The CERT Top 10 List for Winning the Battle Against Insider Threats Dawn Cappelli CERT Insider Threat Center Software Engineering Institute Carnegie Mellon University Session ID: STAR-203 Session Classification:

More information

7. PERFORMING ORGANIZATION NAME(S) AND ADDRESS(ES) 8. PERFORMING ORGANIZATION REPORT NUMBER

7. PERFORMING ORGANIZATION NAME(S) AND ADDRESS(ES) 8. PERFORMING ORGANIZATION REPORT NUMBER REPORT DOCUMENTATION PAGE Form Approved OMB No. 0704-0188 The public reporting burden for this collection of information is estimated to average 1 hour per response, including the time for reviewing instructions,

More information

Environmental Scenario Generator (ESG) IPR 5-17-00

Environmental Scenario Generator (ESG) IPR 5-17-00 http://www.aesmry.com/esg/ Environmental Scenario Generator (ESG) IPR 5-17-00 Richard Siquig Naval Research Laboratory siquig@nrlmry.navy.mil REPORT DOCUMENTATION PAGE Form Approved OMB No. 0704-0188 Public

More information

Applying Software Quality Models to Software Security

Applying Software Quality Models to Software Security Applying Software Quality Models to Software Security Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213 Carol Woody, Ph.D. April 21, 2015 Copyright 2015 Carnegie Mellon University

More information

NDCEE. Demonstration of Biodiesel in Non-deployed Ground Tactical Vehicles/Equipment. Dave Chavez, NAVFAC/ESC

NDCEE. Demonstration of Biodiesel in Non-deployed Ground Tactical Vehicles/Equipment. Dave Chavez, NAVFAC/ESC NDCEE Demonstration of Biodiesel in Non-deployed Ground Tactical Vehicles/Equipment DoD Executive Agent Office Office of the of the Assistant Assistant Secretary of the of Army the Army (Installations

More information

REPORT DOCUMENTATION PAGE *

REPORT DOCUMENTATION PAGE * REPORT DOCUMENTATION PAGE * Form Approved OMBNo. 07040188 Public reporting burden for this collection of information is estimated to average 1 hour per response, including the time for reviewing instructions,

More information

Obsolescence Considerations for Materials in the Lower Sub-Tiers of the Supply Chain

Obsolescence Considerations for Materials in the Lower Sub-Tiers of the Supply Chain INSTITUTE FOR DEFENSE ANALYSES Obsolescence Considerations for Materials in the Lower Sub-Tiers of the Supply Chain Jay Mandelbaum Christina M. Patterson April 2015 Approved for public release; distribution

More information

Automated Provisioning of Cloud and Cloudlet Applications

Automated Provisioning of Cloud and Cloudlet Applications Automated Provisioning of Cloud and Cloudlet Applications Secure and Assured Mobile Computing Components Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213 Jeff Boleng, PhD

More information

THE NATIONAL SHIPBUILDING RESEARCH PROGRAM

THE NATIONAL SHIPBUILDING RESEARCH PROGRAM SHIP PRODUCTION COMMITTEE FACILITIES AND ENVIRONMENTAL EFFECTS SURFACE PREPARATION AND COATINGS DESIGN/PRODUCTION INTEGRATION HUMAN RESOURCE INNOVATION MARINE INDUSTRY STANDARDS WELDING INDUSTRIAL ENGINEERING

More information