[Fiware-security] FIWARE - WP8 /- R3.3 Security Monitoring manuals

BISSON Pascal pascal.bisson at thalesgroup.com
Mon Jul 7 11:44:17 CEST 2014

Previous message: [Fiware-security] Annulé: FI-WARE WP8 Audio-conf
Next message: [Fiware-security] FI-WARE Security Chapter Audio of 18/07 will start at 11am (and not 10am as initially planned) - Details are same as usual
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Many Thanks Daniel to get addressed comments on SecMon GEs.

@Miguel hope with this SecMon GE would be accepted as other R3 GEs and that we could be triggered by you to move content from private wiki to public wiki and generate the R3 D8.2-3-4-5.3.

Awaiting for your final check and green light.

Obviously to be discussed also at WPL/WPA audio conf of today.

Best Regards,
Pascal

[@@ THALES GROUP INTERNAL @@]

De : GIDOIN Daniel
Envoyé : vendredi 4 juillet 2014 17:20
À : Miguel Carrillo
Cc : MANUEL ESCRICHE VICENTE; BISSON Pascal; Susana Gonzalez Zarzosa (susana.gzarzosa at atosresearch.eu); EGAN Richard - UNSECURED; MUSARAJ Kreshnik; CAO Phong; MUSARAJ Kreshnik; xavier.aghina at orange.com; Remi Badonnel; Abdelkader Lahmadi
Objet : FIWARE - WP8 /- R3.3 Security Monitoring manuals

Dear Miguel,

We  took into account your comments. In my opinion, the security monitoring manuals are clean now.


GEi name: MulVAL-Attack-Paths-Engine
Observations:
Why we do not get a R3.3 manual? Only R3.2? There are features in R3.3 (impossible to tell which ones are from the Web or the Engine side, the naming convention is chaotic and does not allow us to understand which one goes where). I checked the manual for R3.2 but this is rejected until we get a clarification

I deleted the manual: MulVAL Attack Paths Engine - User and Programmers Guide(R3.3);  Security Monitoring/MulVAL Attack Paths Engine - Installation and Administration Guide(R3.3);  MulVAL Attack Paths Engine - Unit Testing Plan and Report(R3.3) => No modifications have been made in release 3.3

GEi name: MulVAL Attack Paths Engine Web Application
Pointer to a broken link:  http://secmonitoring.lab.fi-ware.eu/AttackPathEngine/attackgraph.jsp
Not a single minute of actual work in R3. The manual is a exact copy of the previous version"


I produced manuals in release 3.3 because several changes were made, theses changes corresponding to features introduced in the Release 3.3 (to see roadmap https://forge.fi-ware.org/plugins/mediawiki/wiki/fiware/index.php/Roadmap_of_Security#Overview_of_the_release] =>
https://forge.fi-ware.org/plugins/mediawiki/wiki/fiware/index.php/FIWARE.Feature.Security.SM-MulVALAttackPathsEngineWebApp.NetworkTopology (backlog #7576)
https://forge.fi-ware.org/plugins/mediawiki/wiki/fiware/index.php/FIWARE.Feature.Security.SM-MulVALAttackPathsEngineWebApp.AttackPaths_GraphGeneration_ForIntegration  (backlog #7259)


o   MulVAL Attack Paths Engine Web Application -  User and Programmers Guide(R3.3): Changes concern introduction, User guide and programmer guide chapters: ) https://forge.fi-ware.org/plugins/mediawiki/wiki/fi-ware-private/index.php/Security_Monitoring/MulVAL_Attack_Paths_Engine_Web_Application_-_User_and_Programmers_Guide%28R3.3%29)


o   MulVAL Attack Paths Engine Web Application - Installation and Administration Guide(R3.3): Changes concern Introduction and I nstallation chapters: https://forge.fi-ware.org/plugins/mediawiki/wiki/fi-ware-private/index.php/Security_Monitoring/MulVAL_Attack_Paths_Engine_Web_Application_-_Installation_and_Administration_Guide%28R3.3%29

MulVAL Attack Paths Engine Web Application - Unit Testing Plan and Report(R3.3) : changes concern Unit Test 1/Tested features; Unit Test 1/Test description; Unit Test 2/Description: )  https://forge.fi-ware.org/plugins/mediawiki/wiki/fi-ware-private/index.php/Security_Monitoring/MulVAL_Attack_Paths_Engine_Web_Application_-_Unit_Testing_Plan_and_Report%28R3.3%29


GEi name: Scored Attack Paths
Scored Attack Paths- Installation and Administration Guide(R3.3): minors changes concern Introduction chapter.
Scored Attack Paths - User and Programmers Guide(R3.3): Changes concern User Guide. A Programmer Guide section is added.
Unit Testing Plan and Report(R3.3) : changes concern Unit Test 1/Tested features; Unit Test 1/Test description; Unit Test 2/Description. It concerns the features introduced in R3.3: FIWARE.Feature.Security.SM-ScoredAttPath.Attack_path_rapid_scoring and FIWARE.Feature.Security.SM-ScoredAttPath.Attack_Path_composite_scoring


GEi name: Remediation
The manual is under R3.2 and however there are R3.3 features.

Installation and Administration Guide(R3.3): unchanged
and Programmers Guide(R3.3): Changes concern Programmers Guide
Unit Testing Plan and Report(R3.3) : changes concern Unit Test 3/Tested features; Unit Test 1/Test description; Unit Test 4/Description. It concerns the features introduced in R3.3: FIWARE.Feature.Security.SM-Remediation.Remediation_Firewall_Rules_Conflict_Detection and FIWARE.Feature.Security.SM-Remediation.Remediation_Database_Vendors_Patches_Import .

GEi name: Botnet tracking
Not in the roadmap, are there entries on the backlog? When was this GEi mentioned or introduced? This is not acceptable

Manuals deleted: no change in release 3.3

GEi name: Visualisation Framework

Manuals deleted: no change in release 3.3

GEi name: Service Level SIEM: ok

GEi Android Vulnerability Assessment: ok
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.fiware.org/private/old-fiware-security/attachments/20140707/034cbe76/attachment.html>

Previous message: [Fiware-security] Annulé: FI-WARE WP8 Audio-conf
Next message: [Fiware-security] FI-WARE Security Chapter Audio of 18/07 will start at 11am (and not 10am as initially planned) - Details are same as usual
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Old-Fiware-security mailing list

You can get more information about our cookies and privacy policies clicking on the following links: Privacy policy Cookies policy