当前位置: X-MOL 学术Comput. Secur. › 论文详情
Our official English website, www.x-mol.net, welcomes your feedback! (Note: you will need to create a separate account there.)
A Nonproprietary Language for the Command and Control of Cyber Defenses - OpenC2
Computers & Security ( IF 4.8 ) Pub Date : 2020-10-01 , DOI: 10.1016/j.cose.2020.101999
Vasileios Mavroeidis , Joe Brule

Abstract The fact that cyber attacks are getting increasingly sophisticated and performed at machine speed motivated the development of OpenC2. This paper presents Open Command and Control (OpenC2), a suite of specifications that enable command and control of cyber defense systems and components at machine speed and in a manner that is agnostic of the underlying technologies utilized or of any other aspects of particular implementations. OpenC2 provides the means to introduce standardized interfaces to cyber defense systems, enabling interoperability and allowing seamless integration, communication, and operation between decoupled blocks that perform cyber defense functions. The suit of specifications includes a semantic language that enables machine-to-machine communication for purposes of command and control of cyber defense components, actuator profiles that specify the subset of the OpenC2 language and may extend it in the context of specific cyber defense functions, and transfer specifications that utilize existing protocols and standards to implement OpenC2 in particular environments. Fundamentally, OpenC2 addresses the acting part of the Integrated Adaptive Cyber Defense (IACD) framework and is designed to be technology agnostic, concise, abstract, and extensible. Ultimately, OpenC2 is a building block for enabling coordinated defense in cyber-relevant time, shifting traditional monolithic cyber response approaches to more granular, flexible, and adaptive.

中文翻译:

用于指挥和控制网络防御的非专有语言 - OpenC2

摘要 网络攻击变得越来越复杂并以机器速度执行这一事实推动了 OpenC2 的发展。本文介绍了开放式命令和控制 (OpenC2),这是一套规范,可以以机器速度以与所使用的底层技术或特定实现的任何其他方面无关的方式实现对网络防御系统和组件的命令和控制。OpenC2 提供了向网络防御系统引入标准化接口的方法,从而实现互操作性并允许执行网络防御功能的解耦块之间的无缝集成、通信和操作。这套规范包括一种语义语言,该语言支持机器对机器通信,以指挥和控制网络防御组件,执行器配置文件指定 OpenC2 语言的子集,并可以在特定网络防御功能的上下文中对其进行扩展,并传输利用现有协议和标准在特定环境中实施 OpenC2 的规范。从根本上讲,OpenC2 解决了集成自适应网络防御 (IACD) 框架的作用部分,旨在与技术无关、简洁、抽象和可扩展。最终,OpenC2 是在网络相关时间实现协调防御的构建块,将传统的单一网络响应方法转变为更细粒度、灵活和自适应的方法。并传输利用现有协议和标准在特定环境中实现 OpenC2 的规范。从根本上讲,OpenC2 解决了集成自适应网络防御 (IACD) 框架的作用部分,旨在与技术无关、简洁、抽象和可扩展。最终,OpenC2 是在网络相关时间实现协调防御的构建块,将传统的单一网络响应方法转变为更细粒度、灵活和自适应的方法。并传输利用现有协议和标准在特定环境中实现 OpenC2 的规范。从根本上讲,OpenC2 解决了集成自适应网络防御 (IACD) 框架的作用部分,旨在与技术无关、简洁、抽象和可扩展。最终,OpenC2 是在网络相关时间实现协调防御的构建块,将传统的单一网络响应方法转变为更细粒度、灵活和自适应的方法。
更新日期:2020-10-01
down
wechat
bug