ACAS (Assured Compliance Assessment Solution) - ✔✔ is a network-based security compliance and assessment capability designed to provide awareness of
... [Show More] the security posture and network health of DoD networks
SecurityCenter - ✔✔ is the central console for the ACAS system tools and data
ACAS components - ✔✔ SecurityCenter
Nessus- active scanner
PVS (passive vulnerability scanner) - sniffs the network
3D tool/optional - port 443
ACAS components perform these main functions: - ✔✔ - Discover assets
- Detect vulnerabilities and data leaks
- Conduct configuration and compliance audits
- Publish findings to Continuous Monitoring and Risk Scoring (CMRS)
Plug-in - ✔✔ displays a list of script files used by Nessus/PVS scanners to collect and interpret vulnerability, compliance, and configuration data
Things that can be scanned for security data - ✔✔ servers, workstations, peripherals, Mobile device Management Servers, network servers
PVS (Passive Vulnerability Scanner) - ✔✔ watches and determines vulnerabilities based on network traffic, instead of actively scanning
Compliance - ✔✔ a state of being in accordance with established guidelines, specifications or legislation, or the process of becoming so
CMRS ( Continuous Monitoring and Risk Scoring) - ✔✔ a tool to provide DoD component - and enterprise-level situational awareness by quantitatively displaying an organization's security posture
Task Order 13-670 - ✔✔ Implementation of ACAS
What is the 1st screen you see when you log in to SecurityCenter? - ✔✔ Dashboard
SecurityCenter Building Blocks - ✔✔ -Organization
-Role, Group, and User Definition
-Scan Zone (and Nessus Scanners)
-Repository
-Plugin
Organization - ✔✔ groups of individuals responsible for a set of common assets
Scan Zones - ✔✔ a defined static range of IP addresses that can be scanned by one or more Nessus Scanners
Repositories - ✔✔ are proprietary data files, residing on the Security Center, that store scan results
Passive scanning plugins Range - ✔✔ 1-10,000
Active (Nessus) plugin Range - ✔✔ 10,001-900,000
Custom plugins created by users Range - ✔✔ 900,001-999,999
Compliance plugin Range - ✔✔ 1,000,000+
What is the maximum size of a SecurityCenter 5 Repository? - ✔✔ 32GB
How can you get your SecurityCenter plugin updates? - ✔✔ Automatically from DISA's plugin server and manually from the DoD Patch Repository
A Scan Job incorporates - ✔✔ Policy, schedule, Credentials, Import Repository, Targets, and Scan Zone [Show Less]