Presentation is loading. Please wait.

Presentation is loading. Please wait.

Louisiana Tech Capstone Submitted by Capstone 2010 Cyber Security Situational Awareness System.

Published byBennett Harrington Modified over 9 years ago

Similar presentations

Presentation on theme: "Louisiana Tech Capstone Submitted by Capstone 2010 Cyber Security Situational Awareness System."— Presentation transcript:

1 Louisiana Tech Capstone Submitted by Capstone 2010 Cyber Security Situational Awareness System

2 Overview Project Objectives High Level Overview Project Management Strategies Risk Analysis Component Overview Lessons Learned Conclusion

3 Project Objectives Apply knowledge of computing and design to solve the given Problem Employ proper communication and teamwork skills Perform research on related topics to gain a full understanding of the problem

4 High Level Overview Cyber Situational Awareness System 3 Core Components Score Server Back End Provides Real Times Scoring Score Server Front End Provides a nice User interface and administrative panel Real Time Traffic Visualization System Consists of Back End and Graphical Front End Animation of Network Status

5 Project Management Strategies Iterative Software Development Model Planning, Analysis and Design, Testing, Evaluation Allows for rapid development More Suitable to research based development Deadline driven development Tools Project Timeline Gannt Chart Iteration Tracker Issue Tracker Google Code Repository and Wave

6 Risk Analysis and Mitigation Medium Risk Project Compressed Timeline and High Complexity Iterative Development Weekly Branching Chain of Command Limited existing resources 1 Week research period Appointing knowledgeable resources to each team

7 Component Overview: Score Server To be filled in by teams

8 Component Overview: Score Server Front End To be filled out by teams

9 Component Overview: Real Time Network Analysis Objectives Maintain real-time awareness of active network nodes Detect possible attacks and remote login attempts across network Visualize real-time network traffic Present results to Front End for display

10 Component Overview: Real Time Network Analysis Real-time Network Analysis Abbreviated PERT Chart

11 Component Overview: Real Time Network Analysis Real-time Network Analysis Data Flow Diagram

12 Component Overview: Real Time Network Analysis Node Detection Uses bash scripting Uses Nmap for port scanning Expands to multiple network configurations Detects and caches OS information Detects running services

13 Component Overview: Real Time Network Analysis Attack Detection Provides the audience a way to view attacks across the network. Uses Snort Intrusion Detection System for deep packet inspection Parses snort alert files to gain all of the pertinent information Sends the information to a database for communication with front end

14 Component Overview: Real Time Network Analysis Traffic Statistics Uses IPTraf for byte level traffic reports Reads traffic between subnets (teams) Uses Javascript front-end Displays real-time current traffic Displays total traffic information

15 Component Overview: Real Time Network Analysis Communications Interface Log Parsing Database Management XML generation

16 Component Overview: Real Time Network Analysis Lessons Learned Found scope creep to be an issue Learned importance of synchronized development Used new tools and techniques

17 Lessons Learned Iterative Development – Great for time compressed and research driven projects Real World Pressure of Must deliver deadlines

18 Summary Project Objectives High Level Overview Project Management Strategies Risk Analysis Component Overview Lessons Learned Conclusion

19 Questions?

Download ppt "Louisiana Tech Capstone Submitted by Capstone 2010 Cyber Security Situational Awareness System."

Similar presentations

IT Technical Support South Nottingham College. Aims Knowledge of the Registry Discuss the tools available to support a technician Gain an understanding.

IT Technical Support South Nottingham College. Aims Knowledge of the Registry Discuss the tools available to support a technician Gain an understanding.
3 Copyright © 2005, Oracle. All rights reserved. Designing J2EE Applications.

3 Copyright © 2005, Oracle. All rights reserved. Designing J2EE Applications.
REFLEX INTRUSION PREVENTION SYSTEM.. OVERVIEW The Reflex Interceptor appliance is an enterprise- level Network Intrusion Prevention System. It is designed.

REFLEX INTRUSION PREVENTION SYSTEM.. OVERVIEW The Reflex Interceptor appliance is an enterprise- level Network Intrusion Prevention System. It is designed.
Components of GIS.

Components of GIS.
Visualization tool for network forensics analysis using an Intrusion Detection System ( Cyber ViZ )

Visualization tool for network forensics analysis using an Intrusion Detection System ( Cyber ViZ )
Snort & ACID. UTSA IS 6973 Computer Forensics SNORT.

Snort & ACID. UTSA IS 6973 Computer Forensics SNORT.
1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.

1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.
1 OBJECTIVES To generate a web-based system enables to assemble model configurations. to submit these configurations on different.

1 OBJECTIVES To generate a web-based system enables to assemble model configurations. to submit these configurations on different.
Visualization Kenny Inthirath.  Reviewing a Suitable Technique to Use  Scope and Purpose  What types of models can be represented?  Architectural.

Visualization Kenny Inthirath.  Reviewing a Suitable Technique to Use  Scope and Purpose  What types of models can be represented?  Architectural.
Team 7 / May 24, 2006 Web Based Automation & Security Client Capstone Design Advisor Prof. David Bourner Team Members Lloyd Emokpae (team Lead) Vikash.

Team 7 / May 24, 2006 Web Based Automation & Security Client Capstone Design Advisor Prof. David Bourner Team Members Lloyd Emokpae (team Lead) Vikash.
Oracle Database Architectures Are Extremely Complex, And Very Expensive. All of Their Complexity Goes Away ! The Snippet Engine Network Architectures Are.

Oracle Database Architectures Are Extremely Complex, And Very Expensive. All of Their Complexity Goes Away ! The Snippet Engine Network Architectures Are.
MCDST 70-271: Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 13: Troubleshoot TCP/IP.

MCDST : Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 13: Troubleshoot TCP/IP.
11 MONITORING MICROSOFT WINDOWS SERVER 2003 Chapter 3.

11 MONITORING MICROSOFT WINDOWS SERVER 2003 Chapter 3.
Honeypot An instrument for attracting and detecting attackers Adapted from R. Baumann.

Honeypot An instrument for attracting and detecting attackers Adapted from R. Baumann.
Copyright © 2005, GemStone Systems Inc. All Rights Reserved. A Capstone with GemStone David Whitlock April 18, 2005.

Copyright © 2005, GemStone Systems Inc. All Rights Reserved. A Capstone with GemStone David Whitlock April 18, 2005.
Maintaining and Updating Windows Server 2008

Maintaining and Updating Windows Server 2008
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 14: Troubleshooting Windows Server 2003 Networks.

70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 14: Troubleshooting Windows Server 2003 Networks.
Host Intrusion Prevention Systems & Beyond

Host Intrusion Prevention Systems & Beyond
Lecture 11 Intrusion Detection (cont)

Lecture 11 Intrusion Detection (cont)
INTRUSION DETECTION SYSTEM

INTRUSION DETECTION SYSTEM

Similar presentations

Ads by Google