Data Mining Technologies for Proactive Detection, Computer Forensics, and Active Response of Security Violations in Large Scale Information Systems

Award Information
Agency:
Department of Defense
Branch
Air Force
Amount:
$0.00
Award Year:
2001
Program:
SBIR
Phase:
Phase I
Contract:
F30602-01-C-0057
Award Id:
55221
Agency Tracking Number:
001IF-3320
Solicitation Year:
n/a
Solicitation Topic Code:
n/a
Solicitation Number:
n/a
Small Business Information
500 West Cummings Park, Suite 3000, Woburn, MA, 01801
Hubzone Owned:
N
Minority Owned:
N
Woman Owned:
N
Duns:
859244204
Principal Investigator:
Joao Cabrera
Research Engineer
(781) 933-5355
rkm@ssci.com/cabrera@ssci.com
Business Contact:
Raman Mehra
President
(781) 933-5355
rkm@ssci.com
Research Institution:
n/a
Abstract
The Phase II SBIR project will develop and evaluate a Methodology for Information Assurance in Large Scale Information Systems, centered on Monitoring, Detection and Response. Data Collection for off-line analysis and on-line monitoring will be coordinatedby COTS Network Management Systems (NMSs), enhanced by software modules for Applications and OS Management. The enabling technologies of Data Mining, Machine Learning, Statistical Pattern Recognition, Multivariate Time Series Analysis, and SystemIdentification will be used for selecting variables for monitoring, correlation of events, fusion of variables for optimal decision-making, fusion of decision-making modules, selection of detection thresholds, and extraction of Proactive Rules relatingTargets and Attackers. Two commercial products are envisioned: (i) a plug-in software module for standard COTS NMSs, capable of endowing NMS systems with alarming and active response and (ii) System Security Toolkit for companies who wish to engage insystem forensics after security violations have happened. Aprisma Management Technologies will provide consulting in network management and computer security, as well as support on implementation, marketing, commercialization and Phase III transition.North Carolina State University will provide a research testbed for design and evaluation. Prof. Sushil Jajodia (George Mason University) will provide consulting in Computer Security, Data Mining and Database Design.

* information listed above is at the time of submission.

Agency Micro-sites


SBA logo

Department of Agriculture logo

Department of Commerce logo

Department of Defense logo

Department of Education logo

Department of Energy logo

Department of Health and Human Services logo

Department of Homeland Security logo

Department of Transportation logo

Enviromental Protection Agency logo

National Aeronautics and Space Administration logo

National Science Foundation logo
US Flag An Official Website of the United States Government