Home > News > Security > MIT develops network analysis tool

MIT develops network analysis tool

By Iain Thomson
30 August 2008 12:23PM
Tags: mit | develops | network | analysis | tool

MIT’s Lincoln Laboratory has developed a network mapping tool that enables managers to track likely hacking routes.

The tool, dubbed NetSPA for Network Security Planning Architecture, scans the network architecture, the individual computers it connects and a list of likely vulnerabilities to generate a threat mitigation program.

"It's a matter of what the attacker can get to and in what order," says Kyle Ingols, a computer scientist working on NetSPA

"If you spend time patching vulnerabilities the attacker can't get to first, you've left your network exposed longer."

The software also suggests the quickest way to block off holes effectively and ways to configure the network to mitigate the damage from an undetected attack.”

"Instead of patching or fixing or blocking a thousand hosts, we could say there are 10 critical hosts and patch those first."

The tool uses vulnerability scanners that are commonly available but also speeds up the scanning process and adds in scans of firewalls and router settings to predict likely hacking routes.

Ads by Google

Thoughts on this article? Add a comment below.

Comments: 3

It is good to see MIT develop a network support tool. Hacking is the main offensive network managers have to guard against, especially from China who try to get free software from unsuspecting servers by probing IP addresses till they find one that is open to attack.

Posted by Dwight Walker, Aug 30, 2008 12:40 PM

Report

This is a poor idea and clearly shows little real world experience. If a risk assesment is performed then you know which assets require attention first, instead of wasting time patching unnecessary devices. You simply take a quantative or qualitative approach - asset value x threat rating x vulnerability rating. I guess they don't teach this at university these days.

Another new product, another unnecessary one. Qualys and Mcafee Foundstone already have similar functionality to "NetSPA" and provide in-built asset/risk management by default.

Posted by anonymous, Aug 30, 2008 2:30 PM

Report

Teaching security at university?! The Internet would never have happened if they did that... ;)

Chris Fry
http://www.chris-fry.com

Posted by Chris Fry, Sep 1, 2008 5:58 PM

Report

Report this comment as offensive:

* Indicates information we require to process your submission.

Name: *
Email: *
Reason for offense: *
Your report will not be displayed.

Name:

Email:

(will not be displayed)

Comment:

(HTML not permitted)

Validation

Enter the code you see below:

Product Reviews

	Lieberman Software Enterprise Random PM The Lieberman Software Enterprise Random Password Manager is a full-on password manager and randomiser for...

	Proginet Corporation SecurForce Proginet SecurForce is a little bit of a horse of a different color for this month's Group Test.

	Siber Systems RoboForm Enterprise On the surface, RoboForm Enterprise starts out looking like a single sign-on product, but that is just on the...

	Symark International PowerBroker The Symark PowerBroker is a policy-driven, privileged access control application.

	Symark International PowerKeeper The Symark PowerKeeper is a hardened appliance. It comes with a sealed operating system that provides a...