Slika:Intrusion Kill Chain - v2.png
Izvorna datoteka (950 × 681 točk, velikost datoteke: 158 KB, MIME-vrsta: image/png)
Spodaj prikazane informacije so s tamkajšnje opisne strani.
Understanding the graphic
Computer scientists at Lockheed-Martin corporation described in 2011 the usage of a new "intrusion kill chain" framework or model to defend computer networks.[1] They wrote that attacks may occur in stages and can be disrupted through controls established at each stage. The kill chain can also be used as a management tool to help continuously improve network defense. Threats must progress through seven stages in the model:
- Reconnaissance: Intruder selects target, researches it, and attempts to identify vulnerabilities in the target network.
- Weaponization: Intruder creates remote access malware weapon, such as a virus or worm, tailored to one or more vulnerabilities.
- Delivery: Intruder transmits weapon to target (e.g., via e-mail attachments, websites or USB drives)
- Exploitation: Malware weapon's program code triggers, which takes action on target network to exploit vulnerability.
- Installation: Malware weapon installs access point (e.g., "backdoor") usable by intruder.
- Command and Control: Malware enables intruder to have "hands on the keyboard" persistent access to target network.
- Actions on Objective: Intruder takes action to achieve their goals, such as data exfiltration, data destruction, or encryption for ransom.
A U.S. Senate investigation of the 2013 Target Corporation data breach included analysis based on the Lockheed-Martin kill chain framework. It identified several stages where controls did not prevent or detect progression of the attack.[2]
References
- ↑ Lockheed-Martin Corporation-Hutchins, Cloppert, and Amin-Intelligence-Driven Computer Network Defense Informed by Analysis of Adversary Campaigns and Intrusion Kill Chains-2011
- ↑ U.S. Senate-Committee on Commerce, Science, and Transportation-A "Kill Chain" Analysis of the 2013 Target Data Breach-March 26, 2014
Povzetek
| Opis |
English: Intrusion kill chain for information security |
| Datum | |
| Vir | http://www.public.navy.mil/spawar/Press/Documents/Publications/03.26.15_USSenate.pdf |
| Avtor | U.S. Senate Committee on Commerce, Science, and Transportation |
Licenca
|
Ta datoteka je delo mornarja ali zaposlenega v Mornarici ZDA, posneto ali napravljeno v okviru njegovih uradnih dolžnosti. Kot delo Zvezne vlade ZDA je slika v javni domeni.
|
 |
| Datoteka je bila prepoznana kot prosta omejitev po avtorskem pravu, vključno z vsemi povezanimi in sorodnimi pravicami. | ||
Zgodovina datoteke
Kliknite datum in čas za ogled datoteke, ki je bila takrat naložena.
| Datum in čas | Sličica | Velikost | Uporabnik | Komentar | |
|---|---|---|---|---|---|
| trenutno | 19:24, 30. junij 2016 | | 950 × 681 (158 KB) | Farcaster | User created page with UploadWizard |
Uporaba datoteke
Datoteka je del naslednje 1 strani slovenske Wikipedije (strani drugih projektov niso navedene):
Globalna uporaba datoteke
To datoteko uporabljajo tudi naslednji vikiji:
- Uporaba na ar.wikipedia.org
- Uporaba na az.wikipedia.org
- Uporaba na en.wikipedia.org
- Uporaba na fa.wikipedia.org
- Uporaba na fr.wikipedia.org
- Uporaba na ja.wikipedia.org
- Uporaba na uk.wikipedia.org
