Graph Matching Intrusion Detection for the Insider Threat
Agency / Branch:
DOD / ARMY
We propose the Graph Matching Intrusion Detection (GMID) system, a novel approach to detecting insider and coordinated insider-outsider threats based on our algorithms for solving the subgraph isomorphism (graph matching) problem. GMID performs datafusion on information from dense sensor networks inside and outside the secured system to build a graph representation of network topology, user activity, and network state. Threat patterns are represented as graphs, and our graph matching algorithmsquickly identify suspicious activity within the sensed network state. The GMID approach provides new capabilities for
Small Business Information at Submission:
21ST CENTURY TECHNOLOGIES, INC.
11675 Jollyville Road, Suite 300 Austin, TX 78759
Number of Employees: