Top NSA Banner

Aliases:

None

Technical Challenge:

Multiverse addresses several challenges facing computer security professionals, information sharing among assessment team members, reduced number of false-positives reported, data correlation among many different vulnerability assessment tools, and automated report generation in multiple formats.

Description:

Multiverse is a flexible and extensible suite of programs capable of processing the output of many vulnerability assessment tools. This invention empowers vulnerability analysts to quickly and easily locate, verify, and report vulnerability information from many different vulnerability assessment tools. The processed data is maintained in a database that can be easily organized, searched, viewed, and sorted through a web browser interface, thus promoting information sharing among members of the assessment team. In addition, it also has the ability to eliminate many of the false positives that are identified by remote vulnerability scanners. An automated report generation capability has also been incorporated that can provide reports in several formats (e. g. RTF, PDF, PostScript, HTML).

Demonstration Capability:

There is a demonstration available.

Potential Commercial Application(s):

This software would be most beneficial to individuals in the computer network security field who perform vulnerability assessments, risk assessments and penetration tests of computer networks. However, security conscious system administrators could also use this suite of tools proactively to identify insecurities and apply appropriate countermeasures to their own networks.

Patent Status:

Patent Application has been filed with USPTO.

Reference Number: 1348

If you are interested in exploring this technology further, please call 443-445-7159 or express your interest in writing to the:

National Security Agency
NSA Technology Transfer Program
9800 Savage Road, Suite 6541
Fort George G. Meade, Maryland 20755-6541