Denial of Service Countermeasures Appliance (DOSCA) for Computer Network Operations (CNO)

Denial-of-Service (DoS) attacks are potentially the most devastating form of computer network attack that could be launched against a sensor-to-shooter defense system. Denial-of-service attacks can bring down entire networks, making sensor-to-shooter network communications impossible and leaving situational awareness lost. In the Denial-of-Service Countermeasures Appliance (DOSCA) Phase I, ISAC demonstrated the feasibility of creating a comprehensive denial-of-service solution comprised of four modules: Prediction/Traceback, Detection, Out-of-Band Cyber Warning, and Mitigation. These modules leverage existing technology and use new, innovative solutions (such as CFD-DoS: ISAC’s computational fluid dynamics-based network simulation, and ISAC’s Out-of-Band Communication Software) to provide a much needed denial-of-service solution. In Phase II, ISAC will develop a DOSCA prototype with the four main modules for deployment on sensor-to-shooter networks. At the conclusion of the Phase II effort, ISAC will perform a live demonstration of the DOSCA prototype predicting, detecting, tracing back, warning via out-of-band channels, and mitigating a live denial-of-service attack.