Add to collection(s) Add to saved
  1. No category
Uploaded by dyrul1

Spirent CybersecurityAssessment SoW 2022 v2 OCE

advertisement 
SPIRENT CYBER SECURITY ASSESSMENT PROPOSAL
Professional Services
Engagement For:
Cyber Security Assessment
Presented to:
O’Connor
2022
Prepared By:
Julian Si
teckwang.si@spirent.com
Tel: 6355 9377
Fax: 6254 8442
1
About Spirent Communications
Spirent Communications (LSE: SPT) is a global leader with deep expertise and decades of experience in testing, assurance, analytics and
security, serving developers, service providers, and enterprise networks. We help bring clarity to increasingly complex technological and
business challenges. Spirent’s customers have made a promise to their customers to deliver superior performance. Spirent assures that
those promises are fulfilled.
For more information visit: http://www.spirent.com
SPIRENT CYBER SECURITY ASSESSMENT PROPOSAL
Table of Contents
1.
1.1
1.2
2.
INTRODUCTION ............................................................................................................. 3
About Spirent ............................................................................................................................... 3
About Spirent Global Services ................................................................................................ 3
Spirent Cyber Security Assessment.......................................................................... 4
2.1
Cyber Security Assessment ........................................................................................................ 4
2.1.1 Overview ................................................................................................................................... 4
2.1.2 Distributed Denial of Service (DDoS) Testing ................................................................. 5
2.1.3 Known Vulnerabilities Testing (CVE) ................................................................................ 6
2.1.4 Advanced Malwares Testing................................................................................................ 8
2.2
Deliverables ................................................................................................................................... 9
2.2.1 Report ........................................................................................................................................ 9
2.2.2 Assumptions ............................................................................................................................ 9
2.2.3 What’s Needed from Client ................................................................................................ 10
3.
3.1
3.2
4.
4.1
Pricing .............................................................................................................................11
Length of Testing......................................................................................................................... 11
Engagement Period .................................................................................................................... 11
Project Management ....................................................................................................12
Project Team Structure .............................................................................................................. 12
2
About Spirent Communications
Spirent Communications (LSE: SPT) is a global leader with deep expertise and decades of experience in testing, assurance, analytics and
security, serving developers, service providers, and enterprise networks. We help bring clarity to increasingly complex technological and
business challenges. Spirent’s customers have made a promise to their customers to deliver superior performance. Spirent assures that
those promises are fulfilled.
For more information visit: http://www.spirent.com
SPIRENT CYBER SECURITY ASSESSMENT PROPOSAL
1. INTRODUCTION
1.1 About Spirent
Spirent Communications enables innovations in communications technologies that help connect people.
Whether it is service provider, data centers, enterprise IT networks, mobile communications, connected
cars vehicles or the Internet of Things, Spirent solutions are working behind the scenes to help the world
communicate and collaborate faster, better and more securely. The world’s leading innovators rely on
Spirent expertize to help them design, develop and deliver best-in-class solutions to their customers.
Our broad portfolio of innovative products and services is organized into three operating segments that
address a wide range of our customers’ needs. Spirent’s Networks and Applications, Wireless and Service
Experience and Service Assurance solutions support customers’ needs across the entire technology
lifecycles from proof of concept to subscriber experience.
With more than 1,700 customers across the Africa, Asia, Europe, Latin America, and North America our
cutting-edge verification, assessments and analytics solutions that help to deliver unsurpassed service
experience while meeting business objectives of reducing churn, increasing revenue, and strengthening
market share.
1.2 About Spirent Global Services
Spirent’s Global Services provides a variety of professional services, support services and education
services, all focused on helping customers meet their complex testing and service assurance requirements.
We are committed in helping customers around the world accelerate development and deployment by
maximizing their return on investment in Spirent solutions. Integrated performance analysis and service
assurance solutions from Spirent help you take advantage of the full feature set and functionality of Spirent
solutions faster and with consistently lower costs.
Based on timely, cost-effective test and engineering solutions based on seasoned industry expertise, the
professional services group has developed a range of targeted solutions to mitigate risk and maximize
productivity, which includes lab and test automation solutions.
3
About Spirent Communications
Spirent Communications (LSE: SPT) is a global leader with deep expertise and decades of experience in testing, assurance, analytics and
security, serving developers, service providers, and enterprise networks. We help bring clarity to increasingly complex technological and
business challenges. Spirent’s customers have made a promise to their customers to deliver superior performance. Spirent assures that
those promises are fulfilled.
For more information visit: http://www.spirent.com
SPIRENT CYBER SECURITY ASSESSMENT PROPOSAL
2. Spirent Cyber Security Assessment
2.1 Cyber Security Assessment
2.1.1 Overview
Security testing is about discovering the failure points in your applications, devices, operations and
processes. It uses real and reliable traffic, leveraging technology, test and measurement, processes,
training and data analytics. Spirent’s security-testing platform provides a scalable and comprehensive
solution. The key goals are to:




To align with industry standards or best practices
To provide an efficient method of providing a risk assessment
A scorecard to measure cybersecurity risk to facilitate use of resources
A common, standardized cybersecurity assessment methodology
In today’s modern network, the perimeter security is assumed to be under perpetual attack with the
objective to mitigate attacks while simultaneously allowing valid traffic. In addition, QoE, Quality of
Experience, must be maintained even when either the vectors of scale of attack or valid traffic increase.
Spirent Professional Services can help client assess their cyber security posture with state-of-the-art
equipment. It provides the ability to deliver benign and malicious traffic at scale, with multi-10G line-rate
attacks, generating tens of millions of packets-per-second, confirming legitimate user traffic that is not
inadvertently impacted by security solutions, all of which is measured accurately within one single test
methodology. It helps client to maximize network uptime, minimize costly service disruptions and customer
churn using our solutions, which include:





Scalable DDoS capability
Vast attacks and malwares coverage
Simple to set up and execute tests
Huge scale and performance to push any device to its limits
Ability to create attacks emanating from multiple global regions
4
About Spirent Communications
Spirent Communications (LSE: SPT) is a global leader with deep expertise and decades of experience in testing, assurance, analytics and
security, serving developers, service providers, and enterprise networks. We help bring clarity to increasingly complex technological and
business challenges. Spirent’s customers have made a promise to their customers to deliver superior performance. Spirent assures that
those promises are fulfilled.
For more information visit: http://www.spirent.com
SPIRENT CYBER SECURITY ASSESSMENT PROPOSAL
2.1.2 Distributed Denial of Service (DDoS) Testing
2.1.2.1 Objectives
Evaluate DDoS detection and mitigation capabilities of the solution.
2.1.2.2 Test Methodology and Report
Spirent Cyber Security Assessment methodology is designed to help client to evaluate its DDoS detection
and mitigation capabilities (also known as Device Under Test [DUT]) with the follow metrics, under both
normal and load conditions:




Reliability
Stability
Performance
Security
2.1.2.3 Description
DDoS attacks can be divided into 3 major categories, namely volumetric, protocol and application DDoS,
more specifically such as ARP-based attacks, ICMP-based attacks, IP-based attacks, UDP-based attacks,
TCP-based attacks, and application-based attacks according to the TCP / IP protocol hierarchy. RFC3511
only defines an attack using TCP SYN Flood. However, other attacks or even combination attacks are also
very common. This test item will serve as a basis when building out other attack profiles.
2.1.2.4 Device Under Test (DUT)
Anti DDoS Detection and Mitigation Solution
2.1.2.5 Testing Reference Standard
RFC 3511
2.1.2.6 Assessment Classification
Cyber Security Assessment – Denial of Service Attacks
2.1.2.7 Testing Topology
The test setup illustrates the point of interest to be assessed:
5
About Spirent Communications
Spirent Communications (LSE: SPT) is a global leader with deep expertise and decades of experience in testing, assurance, analytics and
security, serving developers, service providers, and enterprise networks. We help bring clarity to increasingly complex technological and
business challenges. Spirent’s customers have made a promise to their customers to deliver superior performance. Spirent assures that
those promises are fulfilled.
For more information visit: http://www.spirent.com
SPIRENT CYBER SECURITY ASSESSMENT PROPOSAL
2.1.2.8 Measurement and Result Analysis
1. Verify if DDoS attack is completely blocked by the DUT.
2. Verify if legitimate traffic passes through while under attack (Optional)
2.1.3 Known Vulnerabilities Testing (CVE)
2.1.3.1 Objectives
Evaluate network perimeter security devices such as NGFW, IPS/IDS, UTM etc against known
vulnerabilities attacks
2.1.3.2 Description
This test validates if a security device can identify and block a known vulnerability behavior with the
following metrics:



Identification ability
Functionality
Performance
In this test, the client initiates the attack using the specific server vulnerabilities such as SQL, XSS, Buffer
Overflow etc. possibly over an underlying background traffic with DUT in the middle. The DUT will then
needs to carry out security check and features matching after receiving the client message.
2.1.3.3 Device Under Test (DUT)
Below is of list of possible DUT that can be assessed:




Next Generation Firewall (NGFW)
Intrusion Detection System (IDS)
Intrusion Prevention System (IPS)
Unified Threat Management (UTM)
6
About Spirent Communications
Spirent Communications (LSE: SPT) is a global leader with deep expertise and decades of experience in testing, assurance, analytics and
security, serving developers, service providers, and enterprise networks. We help bring clarity to increasingly complex technological and
business challenges. Spirent’s customers have made a promise to their customers to deliver superior performance. Spirent assures that
those promises are fulfilled.
For more information visit: http://www.spirent.com
SPIRENT CYBER SECURITY ASSESSMENT PROPOSAL
2.1.3.4 Testing Reference Standard
NetSecOPEN
2.1.3.5 Assessment Classification
Cyber Security Assessment – Attacks (Known vulnerabilities and attacks)
2.1.3.6 Testing Topology
2.1.3.7 Measurement and Result Analysis
1. The number and recognition rate of high-risk vulnerabilities.
2. Accuracy of vulnerabilities identification.
3. Detection rate with background traffic emulation (Optional)
7
About Spirent Communications
Spirent Communications (LSE: SPT) is a global leader with deep expertise and decades of experience in testing, assurance, analytics and
security, serving developers, service providers, and enterprise networks. We help bring clarity to increasingly complex technological and
business challenges. Spirent’s customers have made a promise to their customers to deliver superior performance. Spirent assures that
those promises are fulfilled.
For more information visit: http://www.spirent.com
SPIRENT CYBER SECURITY ASSESSMENT PROPOSAL
2.1.4 Advanced Malwares Testing
2.1.4.1 Objectives
Evaluate anti-malwares capabilities of the solution.
2.1.4.2 Description
This test emulates the spread of the malwares in the network, such as Trojans, botnets, virus, advanced
persistent threats with command and control data flow etc. It also evaluates its identification and blocking
capabilities.
2.1.4.3 Device Under Test (DUT)
Below is of list of possible DUT that can be assessed:
 Next Generation Firewall (NGFW)
 Intrusion Detection System (IDS)
 Intrusion Prevention System (IPS)
 Unified Threat Management (UTM)
 Secure Web Gateway
2.1.4.4 Assessment Classification
Cyber Security Assessment – Advanced Malwares
2.1.4.5 Testing Topology
(As per 2.1.3.6)
2.1.4.6 Measurement and Result Analysis
1. Number of malwares recognition and rate of recognition
2. Accuracy of malwares identification.
3. Recognition rate / blocking rate with background traffic (Optional).
8
About Spirent Communications
Spirent Communications (LSE: SPT) is a global leader with deep expertise and decades of experience in testing, assurance, analytics and
security, serving developers, service providers, and enterprise networks. We help bring clarity to increasingly complex technological and
business challenges. Spirent’s customers have made a promise to their customers to deliver superior performance. Spirent assures that
those promises are fulfilled.
For more information visit: http://www.spirent.com
SPIRENT CYBER SECURITY ASSESSMENT PROPOSAL
2.2 Deliverables
2.2.1 Report
Spirent Global Services will deliver a comprehensive report detailing current state of client’s security posture
to client point of contact and/or relevant reporting entities. We will also conduct a close out meeting with
client if required. If close out meeting cannot take place while onsite due to client’s unavailability, we will
conduct the meeting remotely via Webex.
2.2.2 Assumptions
Spirent Global Service team would require the following prior to onsite engagement:

Client will allocate IP addresses and ports for Spirent equipment, access to and coordinating
specified target(s) to be tested with its third parties or service providers as necessary

Client shall obtain necessary approvals for consents and authorizations from any third parties
necessary for Spirent to perform the services, including without limitation to third party
datacenters, co-locations and hosts.

Client to identify primary point-of-contact (POC) or a designee, must be available to Spirent
during the entire engagement. The representative must have sufficient authority to schedule
testing and address any issues that may arise, or to communicate any critical findings during
assessment engagement.

During testing, the configuration of Client’s network will be kept as stable as possible (i.e., no new
systems or configuration changes). If changes are required, then Client shall inform Spirent and a
mutually acceptable testing schedule shall be agreed upon.

For Testing Support, Client will provide Spirent with the following:





Names for the primary business and technical contacts
Restricted access to documentation and source code, if applicable
Last known good builds of product and tools on an as-needed basis
A process for input of bugs into the Client bug database and a template for bug reports
During business hours, best effort response time to help resolve any issues that may arise
during testing.
9
About Spirent Communications
Spirent Communications (LSE: SPT) is a global leader with deep expertise and decades of experience in testing, assurance, analytics and
security, serving developers, service providers, and enterprise networks. We help bring clarity to increasingly complex technological and
business challenges. Spirent’s customers have made a promise to their customers to deliver superior performance. Spirent assures that
those promises are fulfilled.
For more information visit: http://www.spirent.com
SPIRENT CYBER SECURITY ASSESSMENT PROPOSAL
2.2.3 What’s Needed from Client
Spirent Global Services will require:



Network Topology, especially on Device Under Test (DUT)/zones to be tested
Technical point of contact
Any relevant FCC filings, and documentation of intended use and capabilities of DUT
10
About Spirent Communications
Spirent Communications (LSE: SPT) is a global leader with deep expertise and decades of experience in testing, assurance, analytics and
security, serving developers, service providers, and enterprise networks. We help bring clarity to increasingly complex technological and
business challenges. Spirent’s customers have made a promise to their customers to deliver superior performance. Spirent assures that
those promises are fulfilled.
For more information visit: http://www.spirent.com
SPIRENT CYBER SECURITY ASSESSMENT PROPOSAL
3. Pricing
The price as quoted includes initial testing plan and methodology and reporting.
Reasonable follow up meeting with stakeholders are included to help with report readouts and higher-level
readouts as appropriate. For example, helping important key stakeholders better understand business and
operations impact. Reasonable follow up does not include training client on use of testing tools, test cases
outside of the proposal etc. Such services are available but will be billed at our standard training rate.
On-Premise
Type
Rate (From)
Duration (Estimated)
Distributed Denial of Service
(DDoS) Testing
USD $12,500/-
3-5days
Known Vulnerabilities Testing
USD $12,500/-
3-5days
Advanced Malwares & Malwares
Testing
USD $12,500/-
3-5days
Spirent will provide the above services at a rate shown in the table above. It does not include after office
hours nor weekends. Cost of equipment to client’s location is included. Typical assessment involved from
Point A to point B, or 1 security devices assessment.
3.1 Length of Testing
The testing will be done in block/s, some done sequentially, some done concurrently by several individuals,
in close coordination depending on the project nature. The length of testing for the work will depends on
number of items required. The time period includes testing, creation of draft report for review with client and
issuance of final report.
3.2 Engagement Period
TBD
11
About Spirent Communications
Spirent Communications (LSE: SPT) is a global leader with deep expertise and decades of experience in testing, assurance, analytics and
security, serving developers, service providers, and enterprise networks. We help bring clarity to increasingly complex technological and
business challenges. Spirent’s customers have made a promise to their customers to deliver superior performance. Spirent assures that
those promises are fulfilled.
For more information visit: http://www.spirent.com
SPIRENT CYBER SECURITY ASSESSMENT PROPOSAL
4. Project Management
4.1 Project Team Structure
Spirent Global Services will provide an overall Project Manager/Managing Consultant (MC) who will be
managing the full scope. The MC will work closely with the Client PM to ensure all the pre-requisite and
project dependencies are met in order for Global Services team to deliver a successful outcome. We also
provide a line of communication with our management team, so there will always be a point for escalation
as well as communication at various working levels.
The organization structure for this project is illustrated in the diagram below.
Cyber Security Assessment
Project Team
Client Project Team
Spirent Account Rep
Managing Consultant
Client PM
Consultant
Client Network Team
The above are the key project personnel working on this project. They may be assisted by other consultants
from Global Services team depending on project schedules and availability.
The specific roles and responsibilities will be advised upon start of project. Once the consultant is assigned,
they will see to the completion of the tasks. The project manager will ensure that the project is completed
within the schedule as committed at the start of the project.
12
About Spirent Communications
Spirent Communications (LSE: SPT) is a global leader with deep expertise and decades of experience in testing, assurance, analytics and
security, serving developers, service providers, and enterprise networks. We help bring clarity to increasingly complex technological and
business challenges. Spirent’s customers have made a promise to their customers to deliver superior performance. Spirent assures that
those promises are fulfilled.
For more information visit: http://www.spirent.com
Related documents
Spirent VDT-Conversion Tool
Spirent VDT-Conversion Tool
Simulation vs Real World Testing Ebook
Simulation vs Real World Testing Ebook
Spirent iTest
Spirent iTest
Spirent VQA Detailed Real-Time IPTV Analysis System Datasheet
Spirent VQA Detailed Real-Time IPTV Analysis System Datasheet
spirent itest - Spirent Federal
spirent itest - Spirent Federal
Cisco Nexus 6004 Switch 40 Gigabit Ethernet Performance Validation White Paper June 2013
Cisco Nexus 6004 Switch 40 Gigabit Ethernet Performance Validation White Paper June 2013
Download
advertisement