Information Technology Reference
In-Depth Information
applies the basic structuring and conceptualization techniques of the object-oriented
paradigm. SDL describes a computer network on the level of network topology and
services. The network topology is described by the classes PhysicalElement, Physi-
calLink, and the ElementsLinked association. The network services are described by
classes ComputerSystem, Service, ProtocolEndpoint, ServiceAccessPoint,
ServiceAvailableToElement, ProvidesEndpoint, HostedAccessPoint, BindsTo.
Fig. 7.
The configuration of computer network for case study
Security Analysis System
Model of Analyzed
System
Modules:
Malefactor's
model realization
User interface
Attack
Data
and
knowl-
edge re-
pository
Module of system
response generation
scenarios
generation
Scenario execution
Security level as-
sessment
Report generation
Data and knowl-
edge repository up-
dating
Module of at-
tack result
evaluation
Network
Interface
Network
Interface
DB about
analyzed system
External DB of vulner-
abilities (OSVDB)
Reports
Fig. 8.
Functional scheme of SAS prototype
