Intrusion Detection and Security Management Technologies for Early Warning and Response to Computer Attacks Against Mobile Networks

Award Information
Agency:
Department of Defense
Branch:
Army
Amount:
$729,974.00
Award Year:
2003
Program:
SBIR
Phase:
Phase II
Contract:
W15P7T-04-C-P006
Agency Tracking Number:
A022-1631
Solicitation Year:
N/A
Solicitation Topic Code:
N/A
Solicitation Number:
N/A
Small Business Information
SCIENTIFIC SYSTEMS CO., INC.
500 West Cummings Park - Ste 3000, Woburn, MA, 01801
Hubzone Owned:
N
Socially and Economically Disadvantaged:
N
Woman Owned:
N
Duns:
859244204
Principal Investigator
 Joao Cabrera
 Group Leader - Info.&Comm
 (781) 933-5355
 cabrera@ssci.com
Business Contact
 Raman Mehra
Title: President and CEO
Phone: (781) 933-5355
Email: rkm@ssci.com
Research Institution
N/A
Abstract
The overall objective of the proposed Phase II effort is thedevelopment and evaluation of AWARENET (Advance WArning and REsponseNETwork) system, an intrusion detection and security managementinfrastructure for providing early warning and automated response tocomputer attacks against MANETs (Mobile Ad-Hoc Networks). AWARENET isa network of Intrusion Detection System (IDS) agents placed at thenodes of a MANET. The agents detect intrusions using local information(autonomous detection), exchange information to detect attacks againstthe network infrastructure (cooperative detection), and correlatelocal detections with suspicious activities (proactive detection) inorder to extract the attack signatures and identify the roguenodes. Phase I has demonstrated the validity of the approach fordetecting and responding to selective packet dropping and denial ofservice attacks against MANETs. Further development and evaluation ofAWARENET in Phase II includes: (1) the development of a hierarchicalsecurity management protocol for IDS agent communication; (2) theintegration of signature-based and anomaly-based detectors forincreased detection accuracy; (3) demonstration of the concept on anetwork of COTS PDAs. Northrop Grumman Information Technology willsupport the transition of the detection algorithms and communicationprotocols to the PDA environment and support the commercialization ofAWARENET. Prof. Wenke Lee from Georgia Tech and Prof. Suresh Singhfrom Portland State University will be consultants in Data Mining,Mobile Computing, and Computer Security.At the defense side, mobile technology is crucial for the Army in the21st century. For the commercial market side, the wireless LAN marketalone is expected to be a 5 billion dollars market by 2005. The proposedtechnology provides a much needed early warning capability forcomputer attacks against mobile networks. The homeland defense marketis also developing rapidlyand will require this capability.

* information listed above is at the time of submission.

Agency Micro-sites

US Flag An Official Website of the United States Government