# Threat Model Glasswall ICAP Cloud Deployment
## Network Visualisation

In [1]:
from IPython.core.display import display, HTML
from string import Template
import json

In [2]:
HTML('''<script>
code_show=true; 
function code_toggle() {
 if (code_show){
 $('div.input').hide();
 } else {
 $('div.input').show();
 }
 code_show = !code_show
} 
$( document ).ready(code_toggle);
</script>
<form action="javascript:code_toggle()"><input type="submit" value="Click here to toggle on/off the raw code."></form>''')

## Option 1: With Hierarchy

In [3]:
%%html
<div id="mynetwork2"></div>

In [4]:
%%javascript
requirejs.config({
    paths: {
        vis: 'vis'
    }
});

var SHAPE = "circle", //"box", //"square"
    SHAPE2 = "box",
    BLUE = "#99CDFF",
    YELLOW = "#FEEBA7",
    GREEN = "#C6E7B0",
    PURPLE = "#DAADF0",
    ORANGE = "#FCC603",
    PINK = "#FFBBB2",
    RED = "red",
    BLUE2 = "blue",
    GRAY = "gray",
    BLACK = "#2B1B17";
    
require(['vis'], function(vis){    
    
    // create an array with nodes
    var nodes = new vis.DataSet([ 
      // Trust Boundary ID 
      { id: 1, label: "TB01", color: BLUE, shape: SHAPE },
      { id: 2, label: "TB02", color: BLUE, shape: SHAPE },
      // Asset ID  
      //{ id: 3, label: "A01" },
      //{ id: 4, label: "A02" },
      //{ id: 5, label: "A03" },
      //{ id: 6, label: "A04" },
      //{ id: 7, label: "A05" },
      { id: 8, label: "A06", color: YELLOW, shape: SHAPE },
      { id: 9, label: "A07", color: YELLOW, shape: SHAPE },
      { id: 10, label: "A08", color: YELLOW, shape: SHAPE },
      { id: 11, label: "A09", color: YELLOW, shape: SHAPE },
      { id: 12, label: "A10", color: YELLOW, shape: SHAPE },
      { id: 13, label: "A11", color: YELLOW, shape: SHAPE },
      { id: 0, label: "A12", color: YELLOW, shape: SHAPE },  
      // Threat Actor ID
      { id: 15, label: "TA01", color: PINK, shape: SHAPE }, 
      { id: 16, label: "TA02", color: PINK, shape: SHAPE }, 
      { id: 17, label: "TA03", color: PINK, shape: SHAPE }, 
      { id: 18, label: "TA04", color: PINK, shape: SHAPE }, 
      { id: 19, label: "TA05", color: PINK, shape: SHAPE }, 
      { id: 20, label: "TA06", color: PINK, shape: SHAPE },
      // Security Control ID  
      { id: 21, label: "C01", color: GREEN, shape: SHAPE },
      //{ id: 22, label: "C02" },
      { id: 25, label: "C05", color: GREEN, shape: SHAPE },  
      { id: 23, label: "C04", color: GREEN, shape: SHAPE },
      { id: 24, label: "C03", color: GREEN, shape: SHAPE },  
      
      { id: 26, label: "Accept", color: GREEN, shape: SHAPE },
      // Vulnerability
      { id: 27, label: "Open port to\n Cloud ICAP Server", color: PURPLE, shape: SHAPE2 },
      { id: 28, label: "Log storage and transit\n is read only O-day", color: PURPLE, shape: SHAPE2 }, 
      { id: 29, label: "Files are not pross.\n using latest version\n of library", color: PURPLE, shape: SHAPE2 }, 
      { id: 30, label: "Non encryption\n in transit and\n non-anonymised data", color: PURPLE, shape: SHAPE2 },
      { id: 31, label: "No authentication/encryption\n of ICAP traffic", color: PURPLE, shape: SHAPE2 },
      { id: 32, label: "No signing\n ability/validation", color: PURPLE, shape: SHAPE2 },
      { id: 33, label: "Sensitive data\n storage in the cloud", color: PURPLE, shape: SHAPE2 }, 
      { id: 34, label: "Buffer Overflow\n Vulnerability", color: PURPLE, shape: SHAPE2 }, 
      { id: 35, label: "DoD Vulnerability", color: PURPLE, shape: SHAPE2 },
      { id: 36, label: "Unpatched F5 Network", color: PURPLE, shape: SHAPE2 },
      //Risk
      { id: 37, label: "Service unavail.\n and unplanned costs", color: ORANGE, shape: SHAPE2 },
      { id: 38, label: "Unplan. costs,\n financial and reputational\n damage due to\n undetected advanced\n persistant threat or\n Coud Syst. Intrusion", color: ORANGE, shape: SHAPE2 },
      { id: 39, label: "Reduced service\n availability, loss\n of client trust", color: ORANGE, shape: SHAPE2 },
      { id: 40, label: "Reputational damage\n and unplanned costs\n due to data leak", color: ORANGE, shape: SHAPE2 },  
      { id: 41, label: "Input/Output Tampered", color: ORANGE, shape: SHAPE2 },
      { id: 42, label: "Reputational damage,\n lost of client trust,\n unplanned costs\n due to data leak", color: ORANGE, shape: SHAPE2},
      { id: 43, label: "Unplanned costs\n due to GW Engine\n repair after buffer\n overflow attack", color: ORANGE, shape: SHAPE2 },
      { id: 44, label: "Service\n unavailability - Minor\n due to docker\n container storage", color: ORANGE, shape: SHAPE2 },   
        
    ]);

    // create an array with edges
    var edges = new vis.DataSet([      
      { id: 0, from: 1, to: 18, label: "Ext. at. sending\n packets thr.\n to ICAP server", arrows: "to", color: BLACK },
      { id: 1, from: 1, to: 19, label: "Ext. at. doing\n Session Hijacking / MITM", arrows: "to", color: BLACK, smooth: {type: "curvedCCW", roundness: 0.4} },
      { id: 2, from: 1, to: 19, label: "Tampering", arrows: "to", color: BLACK, smooth: {type: "curvedCCW", roundness: 0.2} },
      { id: 3, from: 2, to: 16, label: "Comp. avail. and\n integrity of logs", arrows: "to", color: BLACK},
      { id: 4, from: 8, to: 15, label: "Acc. client\n sensitive data", arrows: "to", color: BLACK },
      { id: 5, from: 9, to: 17, label: "Outdated cache\n affec. file outcome", arrows: "to", color: BLACK },
      { id: 6, from: 10, to: 15, label: "Client data exp.\n to attack in the\n cloud plat.", arrows: "to", color: RED },
      { id: 7, from: 11, to: 20, label: "Malicious file parsing\n thr. Rebuild", arrows: "to", color: BLACK },
      { id: 8, from: 12, to: 20, label: "Malicious file parsing\n thr. Analyse", arrows: "to", color: BLUE2 },
      { id: 9, from: 13, to: 20, label: "Malicious file parsing\n thr. Check File Type", arrows: "to", color: RED },
      { id: 10, from: 0, to: 18, label: "Ext. att. Remote\n Code Exc. Exploit", arrows: "to", color: BLACK },
      
      { id: 11, from: 15, to: 33, label: "", arrows: "to", color: RED },
      { id: 12, from: 33, to: 42, label: "", arrows: "to", color: RED },  
      { id: 13, from: 42, to: 25, label: "Very Unlikely\n Significant\n Medium", arrows: "to", color: RED }, 
        
      { id: 14, from: 15, to: 30, label: "", arrows: "to", color: BLACK },
      { id: 15, from: 30, to: 40, label: "", arrows: "to", color: BLACK },  
      { id: 16, from: 40, to: 26, label: "Unlikely\n Minor\n Low Med", arrows: "to", color: BLACK },   
        
      { id: 17, from: 16, to: 28, label: "", arrows: "to", color: BLACK },
      { id: 18, from: 28, to: 38, label: "", arrows: "to", color: BLACK },  
      { id: 19, from: 38, to: 26, label: "Very Unlikely\n Moderate\n Low Medium", arrows: "to", color: BLACK },  
        
      { id: 20, from: 17, to: 29, label: "", arrows: "to", color: BLACK },
      { id: 21, from: 29, to: 39, label: "", arrows: "to", color: BLACK },  
      { id: 22, from: 39, to: 23, label: "Likely\n Significant\n Med Hi", arrows: "to", color: BLACK },  
        
      { id: 23, from: 18, to: 27, label: "", arrows: "to", color: BLACK },
      { id: 24, from: 27, to: 37, label: "", arrows: "to", color: BLACK },  
      { id: 25, from: 37, to: 24, label: "Likely\n Significant\n Med Hi", arrows: "to", color: BLACK },  
        
      { id: 26, from: 18, to: 36, label: "", arrows: "to", color: RED },
      { id: 27, from: 36, to: 43, label: "", arrows: "to", color: RED },  
      { id: 28, from: 43, to: 21, label: "Unlikely\n Significant\n Low", arrows: "to", color: RED },  
        
      { id: 29, from: 19, to: 31, label: "", arrows: "to", color: BLACK },
      { id: 30, from: 31, to: 40, label: "", arrows: "to", color: BLACK },  
      { id: 31, from: 40, to: 24, label: "Unlikely\n Significant\n Medium", arrows: "to", color: BLACK },       
        
      { id: 32, from: 19, to: 32, label: "", arrows: "to", color: RED },
      { id: 33, from: 32, to: 41, label: "", arrows: "to", color: RED },  
      { id: 34, from: 41, to: 24, label: "Unlikely\n Minor\n Low", arrows: "to", color: RED },  
        
      { id: 35, from: 20, to: 34, label: "", arrows: "to", color: BLACK },
      { id: 36, from: 34, to: 43, label: "", arrows: "to", color: BLACK },  
      { id: 37, from: 43, to: 21, label: "Unlikely\n Significant\n Medium", arrows: "to", color: BLACK },  
        
      { id: 38, from: 20, to: 35, label: "", arrows: "to", color: BLACK, smooth: {type: "curvedCCW", roundness: 0.4} },
      { id: 39, from: 35, to: 44, label: "", arrows: "to", color: BLACK, smooth: {type: "curvedCCW", roundness: 0.4} },  
      { id: 40, from: 44, to: 21, label: "Unlikely\n Minor\n Low", arrows: "to", color: BLACK, smooth: {type: "curvedCCW", roundness: 0.4} },  
                
      { id: 41, from: 20, to: 35, label: "", arrows: "to", color: BLUE2, smooth: {type: "curvedCCW", roundness: 0.2} },
      { id: 42, from: 35, to: 44, label: "", arrows: "to", color: BLUE2, smooth: {type: "curvedCCW", roundness: 0.2} },  
      { id: 43, from: 44, to: 21, label: "", arrows: "to", color: BLUE2, smooth: {type: "curvedCCW", roundness: 0.2} },  
        
      { id: 44, from: 20, to: 35, label: "", arrows: "to", color: RED, smooth: {type: "curvedCCW", roundness: 0.1} },
      { id: 45, from: 35, to: 44, label: "", arrows: "to", color: RED, smooth: {type: "curvedCCW", roundness: 0.1} },  
      { id: 46, from: 44, to: 21, label: "", arrows: "to", color: RED, smooth: {type: "curvedCCW", roundness: 0.1} },

    ]);    

    // create a network
    var container = document.getElementById("mynetwork2");
    var data = {
      nodes: nodes,
      edges: edges,
    };
    var options = {
      autoResize: true,
      width: '900px',
      height: '400px',
      locale: 'en',
      physics: false,  
      interaction: {
        hover:true, 
        tooltipDelay: 300
      },        
      layout: {
        randomSeed: 1,
        improvedLayout: true,
        hierarchical: {
          enabled: true,
          direction: 'UD',
          nodeSpacing: 200,
          levelSeparation: 250,  
          sortMethod: 'directed',
        },
      },    
    };    
    var network = new vis.Network(container, data, options);
});

<IPython.core.display.Javascript object>

## Option 2: No Hierarchy

In [5]:
%%html
<div id="mynetwork"></div>

In [6]:
%%javascript
requirejs.config({
    paths: {
        vis: 'vis'
    }
});

var SHAPE = "circle", //"box", //"square"
    SHAPE2 = "box",
    BLUE = "#99CDFF",
    YELLOW = "#FEEBA7",
    GREEN = "#C6E7B0",
    PURPLE = "#DAADF0",
    ORANGE = "#FCC603",
    PINK = "#FFBBB2",
    RED = "red",
    BLUE2 = "blue",
    GRAY = "gray",
    BLACK = "#2B1B17";
    
require(['vis'], function(vis){    
    var x = -mynetwork.clientWidth / 2 - 500;
    var y = -mynetwork.clientHeight / 2 - 500;
    var step = 70;
    
    // create an array with nodes
    var nodes = new vis.DataSet([ 
      { id: 1000, x: x, y: y, label: "Trust Boundary ID", color: BLUE, fixed: true, physics: false },
      { id: 1001, x: x, y: y + step, label: "Asset ID", color: YELLOW, fixed: true, physics: false },
      { id: 1002, x: x, y: y + 2 * step, label: "Threat Actor ID", color: PINK, fixed: true, physics: false },
      { id: 1003, x: x, y: y + 3 * step, label: "Vulnerability", color: PURPLE, fixed: true, physics: false, shape: SHAPE2 },
      { id: 1004, x: x, y: y + 4 * step, label: "Risk", color: ORANGE, fixed: true, physics: false, shape: SHAPE2 },
      { id: 1005, x: x, y: y + 5 * step, label: "Security Control ID", color: GREEN, fixed: true, physics: false },      
      // Trust Boundary ID 
      { id: 1, label: "TB01", group: "TrustBoundaryID" },
      { id: 2, label: "TB02", group: "TrustBoundaryID" },
      // Asset ID
      //{ id: 3, label: "A01" },
      //{ id: 4, label: "A02" },
      //{ id: 5, label: "A03" },
      //{ id: 6, label: "A04" },
      //{ id: 7, label: "A05" },
      { id: 8, label: "A06", group: "AssetID" },
      { id: 9, label: "A07", group: "AssetID" },
      { id: 10, label: "A08", group: "AssetID" },
      { id: 11, label: "A09", group: "AssetID" },
      { id: 12, label: "A10", group: "AssetID" },
      { id: 13, label: "A11", group: "AssetID" },
      { id: 14, label: "A12", group: "AssetID" },
      // Threat Actor ID
      { id: 15, label: "TA01", group: "ThreatActorID" }, 
      { id: 16, label: "TA02", group: "ThreatActorID" }, 
      { id: 17, label: "TA03", group: "ThreatActorID" }, 
      { id: 18, label: "TA04", group: "ThreatActorID" }, 
      { id: 19, label: "TA05", group: "ThreatActorID" }, 
      { id: 20, label: "TA06", group: "ThreatActorID" },
      // Security Control ID  
      { id: 21, label: "C01", group: "SecurityControlID" },
      //{ id: 22, label: "C02", group: "SecurityControlID" },
      { id: 23, label: "C03", group: "SecurityControlID" },
      { id: 24, label: "C04", group: "SecurityControlID" },
      { id: 25, label: "C05", group: "SecurityControlID" },
      { id: 26, label: "Accept", group: "SecurityControlID" },
      // Vulnerability
      { id: 27, label: "Open port to\n Cloud ICAP Server", group: "Vulnerability" },
      { id: 28, label: "Log storage and transit\n is read only O-day ", group: "Vulnerability" }, 
      { id: 29, label: "Files are not pross.\n using latest version\n of library", group: "Vulnerability" }, 
      { id: 30, label: "Non encryption\n in transit and\n non-anonymised data", group: "Vulnerability" },
      { id: 31, label: "No authentication/encryption\n of ICAP traffic", group: "Vulnerability" },
      { id: 32, label: "No signing\n ability/validation", group: "Vulnerability" },
      { id: 33, label: "Sensitive data\n storage in the cloud", group: "Vulnerability" }, 
      { id: 34, label: "Buffer Overflow\n Vulnerability", group: "Vulnerability" }, 
      { id: 35, label: "DoD Vulnerability", group: "Vulnerability" },
      { id: 36, label: "Unpatched F5 Network", group: "Vulnerability" },
      //Risk
      { id: 37, label: "Service unavail.\n and unplanned costs", group: "Risk" },
      { id: 38, label: "Unplan. costs,\n financial and reputational\n damage due to\n undetected advanced\n persistant threat or\n Coud Syst. Intrusion", group: "Risk" },
      { id: 39, label: "Reduced service\n availability, loss\n of client trust", group: "Risk" },
      { id: 40, label: "Reputational damage\n and unplanned costs\n due to data leak", group: "Risk" },  
      { id: 41, label: "Input/Output Tampered", group: "Risk" },
      { id: 42, label: "Reputational damage,\n lost of client trust,\n unplanned costs\n due to data leak", group: "Risk" },
      { id: 43, label: "Unplanned costs\n due to GW Engine\n repair after buffer\n overflow attack", group: "Risk" },
      { id: 44, label: "Service\n unavailability - Minor\n due to docker\n container storage", group: "Risk" },  
        
    ]);

    // create an array with edges
    var edges = new vis.DataSet([
      { id: 0, from: 1, to: 18, label: "Ext. at. sending\n packets thr.\n to ICAP server", arrows: "to", color: BLACK },
      { id: 1, from: 1, to: 19, label: "Ext. at. doing\n Session Hijacking / MITM", arrows: "to", color: BLACK },
      { id: 2, from: 1, to: 19, label: "Tampering", arrows: "to", color: RED },
      { id: 3, from: 2, to: 16, label: "Comp. avail. and\n integrity of logs", arrows: "to", color: BLACK},
      { id: 4, from: 8, to: 15, label: "Acc. client\n sensitive data", arrows: "to", color: BLACK },
      { id: 5, from: 9, to: 17, label: "Outdated cache\n affec. file outcome", arrows: "to", color: BLACK },
      { id: 6, from: 10, to: 15, label: "Client data exp.\n to attack in the\n cloud plat.", arrows: "to", color: RED },
      { id: 7, from: 11, to: 20, label: "Malicious file parsing\n thr. Rebuild", arrows: "to", color: BLACK },
      { id: 8, from: 12, to: 20, label: "Malicious file parsing\n thr. Analyse", arrows: "to", color: BLUE2 },
      { id: 9, from: 13, to: 20, label: "Malicious file parsing\n thr. Check File Type", arrows: "to", color: RED },
      { id: 10, from: 14, to: 18, label: "Ext. att. Remote\n Code Exc. Exploit", arrows: "to", color: RED },
  
      { id: 11, from: 15, to: 33, label: "", arrows: "to", color: RED },
      { id: 12, from: 33, to: 42, label: "", arrows: "to", color: RED },  
      { id: 13, from: 42, to: 25, label: "Very Unlikely\n Significant\n Medium", arrows: "to", color: RED }, 
        
      { id: 14, from: 15, to: 30, label: "", arrows: "to", color: BLACK },
      { id: 15, from: 30, to: 40, label: "", arrows: "to", color: BLACK },  
      { id: 16, from: 40, to: 26, label: "Unlikely\n Minor\n Low Med", arrows: "to", color: BLACK },   
        
      { id: 17, from: 16, to: 28, label: "", arrows: "to", color: BLACK },
      { id: 18, from: 28, to: 38, label: "", arrows: "to", color: BLACK },  
      { id: 19, from: 38, to: 26, label: "Very Unlikely\n Moderate\n Low Medium", arrows: "to", color: BLACK },  
        
      { id: 20, from: 17, to: 29, label: "", arrows: "to", color: BLACK },
      { id: 21, from: 29, to: 39, label: "", arrows: "to", color: BLACK },  
      { id: 22, from: 39, to: 24, label: "Likely\n Significant\n Med Hi", arrows: "to", color: BLACK },  
        
      { id: 23, from: 18, to: 27, label: "", arrows: "to", color: BLACK },
      { id: 24, from: 27, to: 37, label: "", arrows: "to", color: BLACK },  
      { id: 25, from: 37, to: 23, label: "Likely\n Significant\n Med Hi", arrows: "to", color: BLACK },  
        
      { id: 26, from: 18, to: 36, label: "", arrows: "to", color: RED },
      { id: 27, from: 36, to: 43, label: "", arrows: "to", color: RED },  
      { id: 28, from: 43, to: 21, label: "Unlikely\n Significant\n Low", arrows: "to", color: RED },  
        
      { id: 29, from: 19, to: 31, label: "", arrows: "to", color: BLACK },
      { id: 30, from: 31, to: 40, label: "", arrows: "to", color: BLACK },  
      { id: 31, from: 40, to: 23, label: "Unlikely\n Significant\n Medium", arrows: "to", color: BLACK },       
        
      { id: 32, from: 19, to: 32, label: "", arrows: "to", color: RED },
      { id: 33, from: 32, to: 41, label: "", arrows: "to", color: RED },  
      { id: 34, from: 41, to: 23, label: "Unlikely\n Minor\n Low", arrows: "to", color: RED },  
        
      { id: 35, from: 20, to: 34, label: "", arrows: "to", color: BLACK },
      { id: 36, from: 34, to: 43, label: "", arrows: "to", color: BLACK },  
      { id: 37, from: 43, to: 21, label: "Unlikely\n Significant\n Medium", arrows: "to", color: BLACK },  
        
      { id: 38, from: 20, to: 35, label: "", arrows: "to", color: BLACK },
      { id: 39, from: 35, to: 44, label: "", arrows: "to", color: BLACK },  
      { id: 40, from: 44, to: 21, label: "Unlikely\n Minor\n Low", arrows: "to", color: BLACK },  
                
      { id: 41, from: 20, to: 35, label: "", arrows: "to", color: BLUE2 },
      { id: 42, from: 35, to: 44, label: "", arrows: "to", color: BLUE2 },  
      { id: 43, from: 44, to: 21, label: "", arrows: "to", color: BLUE2 },  
        
      { id: 44, from: 20, to: 35, label: "", arrows: "to", color: RED },
      { id: 45, from: 35, to: 44, label: "", arrows: "to", color: RED },  
      { id: 46, from: 44, to: 21, label: "", arrows: "to", color: RED },  
    ]);

    // create a network
    var container = document.getElementById("mynetwork");
    var data = {
      nodes: nodes,
      edges: edges,
    };
    var options = {      
      width: '900px',
      height: '600px',
      autoResize: true,   
      physics: true,
      groups: {
        TrustBoundaryID: {
          shape: SHAPE,
          color: BLUE,
          level: 0,
        },
        AssetID: {
          shape: SHAPE,
          color: YELLOW,
          level: 0,
        },
        ThreatActorID: {
          shape: SHAPE,
          color: PINK,
          level: 1,  
        },
        SecurityControlID: {
          shape: SHAPE,
          color: GREEN,
          level: 2,  
        },
        Vulnerability: {
          shape: SHAPE2,
          color: PURPLE,
          level: 3,  
        },
        Risk: {
          shape: SHAPE2,
          color: ORANGE,
          level: 4,  
        },          
      },    
    };    
    var network = new vis.Network(container, data, options);
});

<IPython.core.display.Javascript object>