You are here

A Biologically Inspired Approach to High Speed Intrusion Detection

Award Information
Agency: Department of Energy
Branch: N/A
Contract: DE-FG02-06ER84516
Agency Tracking Number: 80755S06-I
Amount: $100,000.00
Phase: Phase I
Program: SBIR
Solicitation Topic Code: 44
Solicitation Number: DE-FG01-05ER05-28
Timeline
Solicitation Year: 2005
Award Year: 2006
Award Start Date (Proposal Award Date): N/A
Award End Date (Contract End Date): N/A
Small Business Information
3964 Vierra Street
Pleasanton, CA 94566
United States
DUNS: N/A
HUBZone Owned: No
Woman Owned: Yes
Socially and Economically Disadvantaged: No
Principal Investigator
 Elaine Lusher
 Mrs.
 (925) 485-9816
 elainelusher@netscape.net
Business Contact
 Elaine Lusher
Title: Mrs.
Phone: (925) 485-9816
Email: elainelusher@netscape.net
Research Institution
N/A
Abstract

Network security is a key issue for the successful implementation of the ESnet and the collaborative/grid environment for DOE science. As identified by DOE, network security includes self-defensive networks, firewall compatibility across different domains, and user authentication and authorization. Of particular interest is defense against worms, a highly problematic and dangerous threat because they self propagate and can rapidly debilitate a high-speed network. This project will design a high accuracy Intrusion Detection (ID) system that can scale to detect anomalies in a large distributed high speed network. Emerging approaches in Computational Immunology (CI), which applies principles of the biological immune system to computation problems, will be used to protect the network fabric. Phase I will design a highly-automated multi-layered Intrusion Detection System (IDS) capable of detecting and arresting zero-day worms that have never before been encountered. It will incorporate a dedicated, high-speed packet preprocessor and software for analyzing packet anomalies. A prototype for a cooperative, highly-scalable IDS, which provides high-accuracy worm detection and defense strategies, will be designed in Phase II. Commercial Applications And Other Benefits as described by the Applicant: Commercial IDS systems typically exhibit accuracy problems and cannot accommodate normal changes in user activity, leading to a distinct danger that classified data will be compromised or vital communications capabilities will be impaired. As a result, widespread work disruptions could occur, or highly sensitive enterprise or military data could be leaked. The new worm detection software should overcome these problems. In addition to the government, two other potential sets of customers would benefit: (1) hardware networking vendors; and (2) the IT departments of enterprises, which have already procured hardware but are looking for security software.

* Information listed above is at the time of submission. *

US Flag An Official Website of the United States Government