The SPHINX Common Cyber Security Toolbox (CCST)
The SPHINX cybersecurity toolkit is a wide constellation of digital interconnected or standalone services that provide functionalities concerning the preservation and overall reinforcement of systems’ security. Nonetheless, not all solutions are relevant to all organizations/institutes, and thus a tool that will allow relevant stakeholders to select which services should be pre-installed, depending on their use case and system requirements is necessary.
Description: The Common Cyber Security Toolbox is a web portal through which relevant users can browse, list and select a digital solution that meets their requirements, and deploy it on their SPHINX deployment platform. Each digital solution can either be a standalone service, or a group of services that interactively provide a unified functionality (e.g. firewall, SIEM, Vulnerability Assessment, etc.). As one might understand, these services might require some initial configuration settings. Thus, the CCST module allows users to preconfigure those services, prior to deployment. Afterwards, users can deploy the selected services on the SPHINX platform. Consequently, they can monitor and control the services’ lifecycle (start/stop/delete) through the CCST’s dashboard. Moreover, users can place requests for services with specific characteristics/functionalities/requirements, and CCST can either propose any of the available services that match those characteristics or inform the relevant stakeholders of those requests.
CCST Design & Technical Details: Following the modern approach for software development, for the design and development of the CCST component SPHINX followed the Software Development Life Cycle (SDLC) principles. The CCST component is a standalone service that offers a web-based dashboard for users to perform specific functionalities. The Angular2 web development framework and the Model-View-Controller (MVC) approach were utilized for the development of this web application.
Implementation: Currently, the user interface has been developed, and the interaction with the Service Manager and the Kafka messaging service has been integrated. The following Figure presents the look and feel of the CCST component web interface.
More information about the Common Cyber Security Toolbox (CCST) can be found in the report D5.5 – Cyber Security Knowledge base v1.