diff --git a/x.16-misp-military-use-cases/content.aux b/x.16-misp-military-use-cases/content.aux index 126622c..67ae9f6 100644 --- a/x.16-misp-military-use-cases/content.aux +++ b/x.16-misp-military-use-cases/content.aux @@ -26,14 +26,22 @@ \@writefile{nav}{\headcommand {\beamer@framepages {12}{12}}} \@writefile{nav}{\headcommand {\slideentry {0}{0}{13}{13/13}{}{0}}} \@writefile{nav}{\headcommand {\beamer@framepages {13}{13}}} +\@writefile{nav}{\headcommand {\slideentry {0}{0}{14}{14/14}{}{0}}} +\@writefile{nav}{\headcommand {\beamer@framepages {14}{14}}} +\@writefile{nav}{\headcommand {\slideentry {0}{0}{15}{15/15}{}{0}}} +\@writefile{nav}{\headcommand {\beamer@framepages {15}{15}}} +\@writefile{nav}{\headcommand {\slideentry {0}{0}{16}{16/16}{}{0}}} +\@writefile{nav}{\headcommand {\beamer@framepages {16}{16}}} +\@writefile{nav}{\headcommand {\slideentry {0}{0}{17}{17/17}{}{0}}} +\@writefile{nav}{\headcommand {\beamer@framepages {17}{17}}} \@setckpt{content}{ -\setcounter{page}{14} +\setcounter{page}{18} \setcounter{equation}{0} \setcounter{enumi}{0} \setcounter{enumii}{0} \setcounter{enumiii}{0} \setcounter{enumiv}{0} -\setcounter{footnote}{0} +\setcounter{footnote}{3} \setcounter{mpfootnote}{0} \setcounter{beamerpauses}{1} \setcounter{bookmark@seq@number}{0} @@ -42,8 +50,8 @@ \setcounter{section}{0} \setcounter{subsection}{0} \setcounter{subsubsection}{0} -\setcounter{subsectionslide}{13} -\setcounter{framenumber}{12} +\setcounter{subsectionslide}{17} +\setcounter{framenumber}{16} \setcounter{figure}{0} \setcounter{table}{0} \setcounter{parentequation}{0} diff --git a/x.16-misp-military-use-cases/content.log b/x.16-misp-military-use-cases/content.log new file mode 100644 index 0000000..689a186 --- /dev/null +++ b/x.16-misp-military-use-cases/content.log @@ -0,0 +1,36 @@ +This is pdfTeX, Version 3.14159265-2.6-1.40.20 (TeX Live 2019/Debian) (preloaded format=pdflatex 2024.3.16) 7 MAY 2024 14:46 +entering extended mode + restricted \write18 enabled. + %&-line parsing enabled. +**content.tex +(./content.tex +LaTeX2e <2020-02-02> patch level 2 +L3 programming layer <2020-02-14> + +! LaTeX Error: Missing \begin{document}. + +See the LaTeX manual or LaTeX Companion for explanation. +Type H for immediate help. + ... + +l.4 \begin{frame}[ + t,plain] +? +! Emergency stop. + ... + +l.4 \begin{frame}[ + t,plain] +You're in trouble here. Try typing to proceed. +If that doesn't work, type X to quit. + + +Here is how much of TeX's memory you used: + 17 strings out of 481239 + 522 string characters out of 5920377 + 236563 words of memory out of 5000000 + 15384 multiletter control sequences out of 15000+600000 + 532338 words of font info for 24 fonts, out of 8000000 for 9000 + 1141 hyphenation exceptions out of 8191 + 12i,0n,15p,79b,20s stack positions out of 5000i,500n,10000p,200000b,80000s +! ==> Fatal error occurred, no output PDF file produced! diff --git a/x.16-misp-military-use-cases/content.tex b/x.16-misp-military-use-cases/content.tex index 342936b..7e1a531 100755 --- a/x.16-misp-military-use-cases/content.tex +++ b/x.16-misp-military-use-cases/content.tex @@ -18,7 +18,7 @@ \begin{frame} \frametitle{about CIRCL} -The Computer Incident Response Center Luxembourg (CIRCL) is a government-driven initiative designed to provide a systematic response facility to computer security threats and incidents. CIRCL is the CERT for the private sector, communes and non-governmental entities in Luxembourg and is operated by securitymadein.lu g.i.e. + The Computer Incident Response Center Luxembourg (CIRCL)\footnote{\url{https://www.circl.lu/}} is a government-driven initiative designed to provide a systematic response facility to computer security threats and incidents. CIRCL is the CERT for the private sector, communes and non-governmental entities in Luxembourg and is operated by Luxembourg House of Cybersecurity (LHC) g.i.e. \end{frame} \begin{frame} @@ -32,7 +32,7 @@ The Computer Incident Response Center Luxembourg (CIRCL) is a government-driven \end{frame} \begin{frame} -\frametitle{What is MISP?} + \frametitle{What is MISP? (core software)} \begin{itemize} \item MISP is a {\bf threat information sharing} platform that is free \& open source software \item A tool that {\bf collects} information from partners, your analysts, your tools, feeds @@ -42,6 +42,11 @@ The Computer Incident Response Center Luxembourg (CIRCL) is a government-driven \end{itemize} \end{frame} +\begin{frame} + \frametitle{MISP Project Overview} + \includegraphics[scale=0.35]{misp-overview-simplified.pdf} +\end{frame} + \begin{frame} \frametitle{Development based on practical user feedback} \begin{itemize} @@ -57,12 +62,12 @@ The Computer Incident Response Center Luxembourg (CIRCL) is a government-driven \end{itemize} \end{frame} -\begin{frame} -\frametitle{MISP model of governance} -\begin{center} -\includegraphics[scale=0.2]{governance.png} -\end{center} -\end{frame} +%\begin{frame} +%\frametitle{MISP model of governance} +%\begin{center} +%\includegraphics[scale=0.2]{governance.png} +%\end{center} +%\end{frame} \begin{frame} \frametitle{Many objectives from different user-groups} @@ -96,10 +101,48 @@ The Computer Incident Response Center Luxembourg (CIRCL) is a government-driven \end{itemize} \end{frame} +\begin{frame} + \frametitle{NATO and MISP Communities} + \begin{center} + \includegraphics[scale=0.5]{misp-flows.png} + \end{center} +\end{frame} \begin{frame} - \frametitle{MISP Project Overview} - \includegraphics[scale=0.35]{misp-overview-simplified.pdf} + \frametitle{Evolving Military Use Cases with MISP} + \begin{itemize} + \item MISP's versatile standard\footnote{\url{https://www.misp-standard.org/}} seamlessly integrates with military protocols, enhancing interoperability. + \item Supports diverse intelligence inputs, including {\bf HUMINT} (Human Intelligence), {\bf SIGINT} (Signals Intelligence), and {\bf OSINT} (Open Source Intelligence), within the MISP framework. + \end{itemize} +\end{frame} + +\begin{frame} + \frametitle{SIGINT - MISP Integration with SigMF} + \begin{itemize} + \item MISP has added support for the Signal Metadata Format Specification (SigMF)\footnote{\url{https://www.misp-project.org/2023/08/23/MISP_now_supports_Signal_Metadata_Format_Specification_SigMF.html/}}, used widely in {\bf software-defined radio and signal processing}. + \item New SigMF-related object templates introduced: + \begin{itemize} + \item SigMF Recording + \item SigMF Archive + \item SigMF Expanded Recording + \end{itemize} + \item Enrichment features in MISP allow expansion of SigMF recordings, aiding in data analysis and integration of signal metadata into MISP attributes. + \item This integration facilitates improved search capabilities and data analysis within MISP. + \end{itemize} +\end{frame} + +\begin{frame} + \frametitle{SIGINT - MISP Integration with SigMF} +\begin{center} + \includegraphics[scale=0.3]{waterfall.png} +\end{center} +\end{frame} + +\begin{frame} + \frametitle{HUMINT - MISP versatible objects} +\begin{center} + \includegraphics[scale=0.3]{gru-1.png} +\end{center} \end{frame} \begin{frame} @@ -115,6 +158,7 @@ The Computer Incident Response Center Luxembourg (CIRCL) is a government-driven \end{itemize} \end{frame} + \begin{frame} \frametitle{Information quality management} \begin{itemize} diff --git a/x.16-misp-military-use-cases/gru-1.png b/x.16-misp-military-use-cases/gru-1.png new file mode 100644 index 0000000..d812f88 Binary files /dev/null and b/x.16-misp-military-use-cases/gru-1.png differ diff --git a/x.16-misp-military-use-cases/misp-flows.png b/x.16-misp-military-use-cases/misp-flows.png new file mode 100644 index 0000000..2ad0316 Binary files /dev/null and b/x.16-misp-military-use-cases/misp-flows.png differ diff --git a/x.16-misp-military-use-cases/opinion-view.png b/x.16-misp-military-use-cases/opinion-view.png new file mode 100644 index 0000000..24bbd88 Binary files /dev/null and b/x.16-misp-military-use-cases/opinion-view.png differ diff --git a/x.16-misp-military-use-cases/slide.aux b/x.16-misp-military-use-cases/slide.aux index 3227fa2..103f2a9 100644 --- a/x.16-misp-military-use-cases/slide.aux +++ b/x.16-misp-military-use-cases/slide.aux @@ -19,8 +19,8 @@ \providecommand\HyField@AuxAddToCoFields[2]{} \@input{content.aux} \pgfsyspdfmark {pgfid1}{1398509}{16636717} -\@writefile{nav}{\headcommand {\beamer@partpages {1}{13}}} -\@writefile{nav}{\headcommand {\beamer@subsectionpages {1}{13}}} -\@writefile{nav}{\headcommand {\beamer@sectionpages {1}{13}}} -\@writefile{nav}{\headcommand {\beamer@documentpages {13}}} -\@writefile{nav}{\headcommand {\gdef \inserttotalframenumber {12}}} +\@writefile{nav}{\headcommand {\beamer@partpages {1}{17}}} +\@writefile{nav}{\headcommand {\beamer@subsectionpages {1}{17}}} +\@writefile{nav}{\headcommand {\beamer@sectionpages {1}{17}}} +\@writefile{nav}{\headcommand {\beamer@documentpages {17}}} +\@writefile{nav}{\headcommand {\gdef \inserttotalframenumber {16}}} diff --git a/x.16-misp-military-use-cases/slide.log b/x.16-misp-military-use-cases/slide.log index c3e3125..62b63b2 100644 --- a/x.16-misp-military-use-cases/slide.log +++ b/x.16-misp-military-use-cases/slide.log @@ -1,4 +1,4 @@ -This is pdfTeX, Version 3.14159265-2.6-1.40.20 (TeX Live 2019/Debian) (preloaded format=pdflatex 2024.3.16) 7 MAY 2024 14:13 +This is pdfTeX, Version 3.14159265-2.6-1.40.20 (TeX Live 2019/Debian) (preloaded format=pdflatex 2024.3.16) 7 MAY 2024 16:35 entering extended mode restricted \write18 enabled. %&-line parsing enabled. @@ -1214,10 +1214,45 @@ LaTeX Font Info: Font shape `T1/FiraSans-OsF/bold/n' will be (Font) scaled to size 10.95pt on input line 17. [2 -] [3 +] +LaTeX Font Info: Font shape `T1/FiraSans-OsF/m/it' in size <10.95> not avail +able +(Font) Font shape `T1/FiraSans-OsF/regular/it' tried instead on in +put line 22. +LaTeX Font Info: Font shape `T1/FiraSans-OsF/regular/it' will be +(Font) scaled to size 10.95pt on input line 22. +LaTeX Font Info: Font shape `T1/FiraSans-OsF/m/n' in size <9> not available +(Font) Font shape `T1/FiraSans-OsF/regular/n' tried instead on inp +ut line 22. +LaTeX Font Info: Font shape `T1/FiraSans-OsF/regular/n' will be +(Font) scaled to size 9.0pt on input line 22. +LaTeX Font Info: Font shape `T1/FiraSans-OsF/m/n' in size <5> not available +(Font) Font shape `T1/FiraSans-OsF/regular/n' tried instead on inp +ut line 22. +LaTeX Font Info: Font shape `T1/FiraSans-OsF/regular/n' will be +(Font) scaled to size 5.0pt on input line 22. +LaTeX Font Info: Font shape `T1/FiraSans-OsF/m/it' in size <9> not available + +(Font) Font shape `T1/FiraSans-OsF/regular/it' tried instead on in +put line 22. +LaTeX Font Info: Font shape `T1/FiraSans-OsF/regular/it' will be +(Font) scaled to size 9.0pt on input line 22. +LaTeX Font Info: Font shape `T1/FiraSans-OsF/m/it' in size <5> not available + +(Font) Font shape `T1/FiraSans-OsF/regular/it' tried instead on in +put line 22. +LaTeX Font Info: Font shape `T1/FiraSans-OsF/regular/it' will be +(Font) scaled to size 5.0pt on input line 22. +LaTeX Font Info: Font shape `T1/FiraMono-TOsF/m/n' in size <9> not available + +(Font) Font shape `T1/FiraMono-TOsF/regular/n' tried instead on in +put line 22. +LaTeX Font Info: Font shape `T1/FiraMono-TOsF/regular/n' will be +(Font) scaled to size 9.0pt on input line 22. + [3 ] - + File: en_cef.png Graphic file (type png) Package pdftex.def Info: en_cef.png used on input line 32. @@ -1228,81 +1263,87 @@ Package pdftex.def Info: en_cef.png used on input line 32. [5 ] + +File: misp-overview-simplified.pdf Graphic file (type pdf) + +Package pdftex.def Info: misp-overview-simplified.pdf used on input line 48. +(pdftex.def) Requested size: 283.09949pt x 147.16884pt. + [6 + + <./misp-overview-simplified.pdf>] LaTeX Font Info: Font shape `T1/FiraSans-OsF/m/n' in size <10> not available (Font) Font shape `T1/FiraSans-OsF/regular/n' tried instead on inp -ut line 58. +ut line 63. LaTeX Font Info: Font shape `T1/FiraSans-OsF/regular/n' will be -(Font) scaled to size 10.0pt on input line 58. +(Font) scaled to size 10.0pt on input line 63. LaTeX Font Info: Font shape `T1/FiraSans-OsF/m/n' in size <7> not available (Font) Font shape `T1/FiraSans-OsF/regular/n' tried instead on inp -ut line 58. +ut line 63. LaTeX Font Info: Font shape `T1/FiraSans-OsF/regular/n' will be -(Font) scaled to size 7.0pt on input line 58. -LaTeX Font Info: Font shape `T1/FiraSans-OsF/m/n' in size <5> not available -(Font) Font shape `T1/FiraSans-OsF/regular/n' tried instead on inp -ut line 58. -LaTeX Font Info: Font shape `T1/FiraSans-OsF/regular/n' will be -(Font) scaled to size 5.0pt on input line 58. +(Font) scaled to size 7.0pt on input line 63. LaTeX Font Info: Font shape `T1/FiraSans-OsF/m/it' in size <10> not availabl e (Font) Font shape `T1/FiraSans-OsF/regular/it' tried instead on in -put line 58. +put line 63. LaTeX Font Info: Font shape `T1/FiraSans-OsF/regular/it' will be -(Font) scaled to size 10.0pt on input line 58. +(Font) scaled to size 10.0pt on input line 63. LaTeX Font Info: Font shape `T1/FiraSans-OsF/m/it' in size <7> not available (Font) Font shape `T1/FiraSans-OsF/regular/it' tried instead on in -put line 58. +put line 63. LaTeX Font Info: Font shape `T1/FiraSans-OsF/regular/it' will be -(Font) scaled to size 7.0pt on input line 58. -LaTeX Font Info: Font shape `T1/FiraSans-OsF/m/it' in size <5> not available - -(Font) Font shape `T1/FiraSans-OsF/regular/it' tried instead on in -put line 58. -LaTeX Font Info: Font shape `T1/FiraSans-OsF/regular/it' will be -(Font) scaled to size 5.0pt on input line 58. +(Font) scaled to size 7.0pt on input line 63. LaTeX Font Info: Font shape `T1/FiraSans-OsF/b/n' in size <10> not available (Font) Font shape `T1/FiraSans-OsF/bold/n' tried instead on input -line 58. +line 63. LaTeX Font Info: Font shape `T1/FiraSans-OsF/bold/n' will be -(Font) scaled to size 10.0pt on input line 58. - [6 - -] - -File: governance.png Graphic file (type png) - -Package pdftex.def Info: governance.png used on input line 65. -(pdftex.def) Requested size: 255.34947pt x 189.10315pt. +(Font) scaled to size 10.0pt on input line 63. [7 - <./governance.png>] -LaTeX Font Info: Font shape `T1/FiraSans-OsF/m/it' in size <10.95> not avail -able -(Font) Font shape `T1/FiraSans-OsF/regular/it' tried instead on in -put line 84. -LaTeX Font Info: Font shape `T1/FiraSans-OsF/regular/it' will be -(Font) scaled to size 10.95pt on input line 84. - [8 +] [8 ] [9 ] - -File: misp-overview-simplified.pdf Graphic file (type pdf) - -Package pdftex.def Info: misp-overview-simplified.pdf used on input line 103. -(pdftex.def) Requested size: 283.09949pt x 147.16884pt. + +File: misp-flows.png Graphic file (type png) + +Package pdftex.def Info: misp-flows.png used on input line 109. +(pdftex.def) Requested size: 298.11302pt x 204.26262pt. [10 - <./misp-overview-simplified.pdf>] + <./misp-flows.png>] [11 ] [12 -] [13 +] + +File: waterfall.png Graphic file (type png) + +Package pdftex.def Info: waterfall.png used on input line 139. +(pdftex.def) Requested size: 264.38979pt x 207.77785pt. + [13 + + <./waterfall.png>] + +File: gru-1.png Graphic file (type png) + +Package pdftex.def Info: gru-1.png used on input line 146. +(pdftex.def) Requested size: 251.14018pt x 253.54921pt. + +Overfull \vbox (38.09299pt too high) detected at line 146 + [] + +[14 + + <./gru-1.png>] [15 + +] [16 + +] [17 ]) \tf@nav=\write5 @@ -1325,11 +1366,11 @@ LaTeX Font Warning: Some font shapes were not available, defaults substituted. ) Here is how much of TeX's memory you used: - 26147 strings out of 481239 - 531157 string characters out of 5920377 + 26216 strings out of 481239 + 532371 string characters out of 5920377 787434 words of memory out of 5000000 - 40754 multiletter control sequences out of 15000+600000 - 869937 words of font info for 94 fonts, out of 8000000 for 9000 + 40807 multiletter control sequences out of 15000+600000 + 901131 words of font info for 105 fonts, out of 8000000 for 9000 1141 hyphenation exceptions out of 8191 71i,16n,95p,811b,874s stack positions out of 5000i,500n,10000p,200000b,80000s {/usr/share/texlive/texmf-dist/fonts/enc/dvips/fira/fir_iln36p.enc}{/usr/shar @@ -1341,10 +1382,10 @@ public/fira/FiraSans-Regular.pfb> -Output written on slide.pdf (13 pages, 432639 bytes). +Output written on slide.pdf (17 pages, 619054 bytes). PDF statistics: - 157 PDF objects out of 1000 (max. 8388607) - 115 compressed objects within 2 object streams - 27 named destinations out of 1000 (max. 500000) - 63 words of extra memory for PDF output out of 10000 (max. 10000000) + 186 PDF objects out of 1000 (max. 8388607) + 136 compressed objects within 2 object streams + 35 named destinations out of 1000 (max. 500000) + 73 words of extra memory for PDF output out of 10000 (max. 10000000) diff --git a/x.16-misp-military-use-cases/slide.nav b/x.16-misp-military-use-cases/slide.nav index 9052856..8b08cf0 100644 --- a/x.16-misp-military-use-cases/slide.nav +++ b/x.16-misp-military-use-cases/slide.nav @@ -24,8 +24,16 @@ \headcommand {\beamer@framepages {12}{12}} \headcommand {\slideentry {0}{0}{13}{13/13}{}{0}} \headcommand {\beamer@framepages {13}{13}} -\headcommand {\beamer@partpages {1}{13}} -\headcommand {\beamer@subsectionpages {1}{13}} -\headcommand {\beamer@sectionpages {1}{13}} -\headcommand {\beamer@documentpages {13}} -\headcommand {\gdef \inserttotalframenumber {12}} +\headcommand {\slideentry {0}{0}{14}{14/14}{}{0}} +\headcommand {\beamer@framepages {14}{14}} +\headcommand {\slideentry {0}{0}{15}{15/15}{}{0}} +\headcommand {\beamer@framepages {15}{15}} +\headcommand {\slideentry {0}{0}{16}{16/16}{}{0}} +\headcommand {\beamer@framepages {16}{16}} +\headcommand {\slideentry {0}{0}{17}{17/17}{}{0}} +\headcommand {\beamer@framepages {17}{17}} +\headcommand {\beamer@partpages {1}{17}} +\headcommand {\beamer@subsectionpages {1}{17}} +\headcommand {\beamer@sectionpages {1}{17}} +\headcommand {\beamer@documentpages {17}} +\headcommand {\gdef \inserttotalframenumber {16}} diff --git a/x.16-misp-military-use-cases/slide.pdf b/x.16-misp-military-use-cases/slide.pdf index b1e2d3a..42a2d5e 100644 Binary files a/x.16-misp-military-use-cases/slide.pdf and b/x.16-misp-military-use-cases/slide.pdf differ diff --git a/x.16-misp-military-use-cases/waterfall.png b/x.16-misp-military-use-cases/waterfall.png new file mode 100644 index 0000000..560f5ed Binary files /dev/null and b/x.16-misp-military-use-cases/waterfall.png differ