Abstract
Large-scale high performance systems have significant amount of processing power. One example of such system is the HP-SEE’s HPC and supercomputing infrastructures, which is geologically distributed, and provides 24/7, high performance/high throughput computing services primarily for high-end research communities. Due to the direct impact on research and indirectly on economy such systems can be categorized as critical infrastructure. System features (like non-stop availability, geographically distributed and community based usage) make such infrastructure vulnerable and valuable targets of malicious attacks. In order to decrease the threat, we designed the Advanced Vulnerability Assessment Tool (AVAT) suitable for HPC/supercomputing systems. Our developed solution can submit vulnerability assessment jobs into the HP-SEE infrastructure and run vulnerability assessment on the infrastructure components. It collects assessment information by the decentralized Security Monitor and archives the results received from the components and visualize them via a web interface for the local/regional administrators. In this paper we present our Advanced Vulnerability Assessment Tool, we describe its functionalities and provide its monitoring test results captured in real systems.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
The SEE-GRID-SCI website (2012), http://www.see-grid-sci.eu/
Kozlovszky, M., Windisch, G., Balasko, A.: Short fragment sequence alignment on the HP-SEE infrastructure. In: MIPRO, 2012 Proceedings of the 35th International Convention, May 21-25, pp. 442–445 (2012)
Martin, R.A.: Managing Vulnerabilities in Networked Systems. IEEE Computer Society Computer Magazine, 32–38 (2001), http://cve.mitre.org/
Mell, P., Scarfone, K., Romanosky, S.: A complete guide to the common vulnerability scoring system, version 2.0. Forum of Incident Response and Security Teams (June 2007)
Balaz, A., Prnjat, O., Vudragovic, D., Slavniv, V., Liabotis, I., Atanassov, E., Jakimovski, B., Savic, M.: Development of Grid e-Infrastructure in South-Eastern Europe. J. Grid. Comput. (9), 135–154 (2011)
The Pakiti website (2012), http://pakiti.sourceforge.net/
Acs, S., Kozlovszky, M., Balaton, Z.: Automation of security analysis for service grid systems. In: PARENG 2009, The First International Conference on Parallel, Distributed and Grid Computing for Engineering, Pcs, Hungary (2009)
The Qualys website (2012), http://www.qualys.com/
The OpenVAS website (2012), http://www.openvas.org
The ARC website (2012), http://www.nordugrid.org/arc/
The gLite website (2012), http://glite.web.cern.ch/glite/
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2014 Springer International Publishing Switzerland
About this chapter
Cite this chapter
Acs, S., Kozlovszky, M., Kotcauer, P. (2014). Advanced Vulnerability Assessment Tool for Distributed Systems. In: Dulea, M., Karaivanova, A., Oulas, A., Liabotis, I., Stojiljkovic, D., Prnjat, O. (eds) High-Performance Computing Infrastructure for South East Europe's Research Communities. Modeling and Optimization in Science and Technologies, vol 2. Springer, Cham. https://doi.org/10.1007/978-3-319-01520-0_17
Download citation
DOI: https://doi.org/10.1007/978-3-319-01520-0_17
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-01519-4
Online ISBN: 978-3-319-01520-0
eBook Packages: EngineeringEngineering (R0)