Feeds

DARPA seeks network firing ranges for cyber weaponry

Keep out, war-warez test in progress

Combat fraud and increase customer satisfaction

DARPA (Defence Advanced Research Project Agency), the Pentagon battle-boffins who would rather bet on a long shot than eat their dinners, are looking for the computer-net equivalent of a firing range or exercise training area.

The proposed "cyber network ranges" would be used to test revolutionary new cyber tactics and combat warez in the same way that meatspace firing ranges and test facilities are used to try out missiles and bombs.

According to the requirement:

DARPA may conduct high risk and potentially high payoff research and development of advanced network, and network-enabled capabilities including but not limited to Computer Network Defense and Computer Network Operations...

Ranges are needed to support the realism that hardware-based systems provide. However, emulation-based ranges (I.E. virtual machines) provide the community great flexibility and cost savings particularly when trying to scale to larger network sizes. DARPA testing requires both hardware testing and testing through emulation...

DARPA is interested in the full spectrum of network range capabilities, from network simulations and virtual test ranges that simulate future range architectures and protocols, to physical implementation of networks. Additionally, DARPA is interested in the full spectrum of testing environments – from individual hosts, to single enclaves and local area networks, to world-wide Wide Area Networks (WAN).

The war-nerds, sadly perhaps, aren't looking to buy a whole lot of hardware or virtual machines here. Rather, they're hoping that people will lend them the use of existing networks.

"The requested information is sought to determine the current state of the art and capabilities across the community," they say.

"No funding has been allocated to this effort at this time."

Full information is available here (Word document). ®

SANS - Survey on application security programs

Whitepapers

Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.