Security Enhanced Linux
What's New
Frequently Asked Questions
Background
Documents
License
Download
Participating
Mail List
Archives
Remaining Work
Contributors
Related Work
Press Releases
Information Assurance Research
NIARL In-house Research Areas
Mathematical Sciences Program
Sabbaticals
Computer & Information Sciences Research
Technology Transfer
Advanced Computing
Advanced Mathematics
Communications & Networking
Information Processing
Microelectronics
Other Technologies
Technology Fact Sheets
Publications
Related Links
|
MultiverseAliases:NoneTechnical Challenge:Multiverse addresses several challenges facing computer security professionals, information sharing among assessment team members, reduced number of false-positives reported, data correlation among many different vulnerability assessment tools, and automated report generation in multiple formats.Description:Multiverse is a flexible and extensible suite of programs capable of processing the output of many vulnerability assessment tools. This invention empowers vulnerability analysts to quickly and easily locate, verify, and report vulnerability information from many different vulnerability assessment tools. The processed data is maintained in a database that can be easily organized, searched, viewed, and sorted through a web browser interface, thus promoting information sharing among members of the assessment team. In addition, it also has the ability to eliminate many of the false positives that are identified by remote vulnerability scanners. An automated report generation capability has also been incorporated that can provide reports in several formats (e. g. RTF, PDF, PostScript, HTML).Demonstration Capability:There is a demonstration available.Potential Commercial Application(s):This software would be most beneficial to individuals in the computer network security field who perform vulnerability assessments, risk assessments and penetration tests of computer networks. However, security conscious system administrators could also use this suite of tools proactively to identify insecurities and apply appropriate countermeasures to their own networks.Patent Status:Patent Application has been filed with USPTO.Reference Number: 1348If you are interested in exploring this technology further, please call 443-445-7159 or express your interest in writing to the: National Security Agency |
|
Date Posted: Jan 15, 2009 | Last Modified: Jan 15, 2009 | Last Reviewed: Jan 15 2009 |