Software pro podporu rozhodování při řešení bezpečnostního incidentu
|Title in English
|Software for the decision support in the security incident handling
|Year of publication
|MU Faculty or unit
|Umístění zdrojových kódů software
|The software implements a set of algorithms to support decision-making of a cybersecurity team in the protection of a computer network or an information system. The software processes the list of hosts, services, and vulnerabilities, and privileges that could be be held by an attacker. Another input is a formal representation of services that support critical processes in the organization operating the network of information system. The mapping of such services to hosts in the network is also provided. The software generates a list of possible configurations that enable the critical processes to run. For each configuration, the software calculates a score representing the possibility of a successful breach. The output is the recommendation of the most resilient configuration.