| Title | An Automatic Networking Device Auditing Tool Based on CIS Benchmark |
| Publication Type | Conference Paper |
| Year of Publication | 2021 |
| Authors | Khurat, Assadarat, Sangkhachantharanan, Phirawat |
| Conference Name | 2021 18th International Conference on Electrical Engineering/Electronics, Computer, Telecommunications and Information Technology (ECTI-CON) |
| Keywords | auditing tool, Benchmark testing, CIS benchmark, Human Behavior, networking device, Organizations, pubcrawl, resilience, Resiliency, Scalability, security, Security Audits, Standards organizations, Switches, Task Analysis, Telecommunications, Tools |
| Abstract | Security has become an important issue in an IT system of an organization. Each IT component has to be configured correctly, otherwise the risk of attack could increase. An important component is networking device such as router and switch. To avoid this misconfiguration, a well-known process called audit is used. There are several auditing tools both commercial and open-source. However, none of the existing tools that are open-source can automatically audit the security settings of networking device based on standard e.g., CIS benchmark. We, thus propose a tool that can verify the networking device automatically based on best practices so that auditors can conveniently check as well as issue a report. |
| DOI | 10.1109/ECTI-CON51831.2021.9454830 |
| Citation Key | khurat_automatic_2021 |
An Automatic Networking Device Auditing Tool Based on CIS Benchmark