Guideline on network security testing

Wack, John P.; Tracy, Miles C.; Souppaya, Murugiah

doi:10.6028/nist.sp.800-42

Cited by 28 publications

(13 citation statements)

References 1 publication

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…They proposed to analyze computer networks from the perspective of an attacker. Highly disputed in the beginning, penetration testing is now an established procedure in information security [5], [6].…”

Section: Penetration Testing a Definitionmentioning

confidence: 99%

Testing Production Systems Safely: Common Precautions in Penetration Testing

Türpe

Eichler

2009

2009 Testing: Academic and Industrial Conference - Practice and Research Techniques

View full text Add to dashboard Cite

Abstract-Unlike testing in a laboratory or test bed situation, the testing of production systems requires precautions to avoid side effects that might damage or disturb the system, its environment, or its users. This paper outlines safety precautions to be taken when testing production systems. Specifically we discuss precautions for penetration testing aiming at identifying security vulnerabilities. We generalize and document experience we gained as penetration testers, describing how the risks of testing can be mitigated through selection of test cases and techniques, partial isolation of subsystems and organizational measures. Though some of the precautions are specific to security testing, our experience might be helpful to anyone testing production systems.

show abstract

Section: Penetration Testing a Definitionmentioning

confidence: 99%

Testing Production Systems Safely: Common Precautions in Penetration Testing

Türpe

Eichler

2009

2009 Testing: Academic and Industrial Conference - Practice and Research Techniques

View full text Add to dashboard Cite

show abstract

“…In general, software flaws are notoriously difficult to discover and are often the root cause of major system disruptions and outages. Therefore, writing bug-free and reliable software remains a critical challenge [181]. Due to the 'softwareisation' of networks in SDN, the problems of software design and implementation flaws become an increasingly critical security threat.…”

Section: Sdn Virtualisation Vulnerabilitiesmentioning

confidence: 99%

Security in software defined networks

Alharbi¹

View full text Add to dashboard Cite

Software Defined Networking (SDN) is an emerging computer network paradigm and represents one of the most promising technologies to simplify network management and configuration through increased network programmability and abstraction. In contrast to traditional networks, in SDN, the control plane, which makes decisions on how to forward traffic, is separated from the data plane, which transmits traffic to selected destinations. That makes network control (via the SDN controller) more programmable, dynamic and centralised. With the higher level of abstraction that SDN provides, network administrators can more easily configure network services and manage traffic flows without having to configure a large number of individual network devices (switches and routers). The great potential of SDN has led to significant deployments in data centres, wide area networks, etc., and it is growing at a rapid pace.Security is a critical aspect of networking in general and is particularly vital in SDN. Due to its fundamentally new architecture, SDN presents new potential security vulnerabilities and risks. Security in SDN has not received much attention yet, given that it is very distinct and unique.The goal of this PhD was to address this gap and analyse the security of the SDN infrastructure, identify vulnerabilities and weaknesses, and propose corresponding solutions and improvements. The focus was on the fundamental aspects and components of SDN, in particular the building blocks of the control plane components include Topology Discovery, Address Resolution Protocol (ARP) Handling and Virtualisation Layer. Finally, the thesis thoroughly explored and investigated the most common and effective attacks against the SDN architecture.

show abstract

“…There is a feedback loop between Attack and Discovery, since exploitation leads to more discovery. Besides, the attack phase itself can also be iterative because one successful exploitation might open opportunities for further exploitations [217]. Hackers toolkits and detailed instructions about exploitations found in specialized forums like www.securityfocus.com play an important role at this stage.…”

Section: Related Workmentioning

confidence: 99%

“…It is usually performed internally, by employees organized on a so called Blue Team [217]. On the other hand, a covert pen test happens when only the upper management responsible for the initiative has full knowledge about the testing.…”

Section: Chapter 2 Background and Related Workmentioning

confidence: 99%

“…In this case, testers are provided with a minimum, publicly available, set of information about the target under evaluation, and need to acquire the remaining information needed to launch attacks the same ways as remote, non-employees do [81]. The first stage testers have to bridge is to identify a way-in the network firewall and then, if successful, they can attempt to reach, interactively, other hosts within the network [217]. Alternatively, a white-box type of test is more appropriate to simulate attackers from insiders.…”

Section: Chapter 2 Background and Related Workmentioning

confidence: 99%

See 1 more Smart Citation

finding multi-step attacks in computer networks using heuristic search and mobile ambients

Franqueira¹

View full text Add to dashboard Cite

Guideline on network security testing

Cited by 28 publications

References 1 publication

Testing Production Systems Safely: Common Precautions in Penetration Testing

Testing Production Systems Safely: Common Precautions in Penetration Testing

Security in software defined networks

finding multi-step attacks in computer networks using heuristic search and mobile ambients

Contact Info

Product

Resources

About