Agent Enabled Advanced Intrusion Detection System

Award Information
Agency:
Department of Defense
Branch
Missile Defense Agency
Amount:
$69,921.00
Award Year:
2003
Program:
SBIR
Phase:
Phase I
Contract:
DASG6003P0181
Award Id:
64226
Agency Tracking Number:
031-0972
Solicitation Year:
n/a
Solicitation Topic Code:
n/a
Solicitation Number:
n/a
Small Business Information
4900 University Square, Suite 8, Huntsville, AL, 35816
Hubzone Owned:
N
Minority Owned:
N
Woman Owned:
N
Duns:
174265736
Principal Investigator:
Andrew Potter
Principal Investigator
(256) 704-0863
apotter@sentar.com
Business Contact:
Peter Kiss
Chief Executive Officer
(256) 704-0863
pkiss@sentar.com
Research Institution:
n/a
Abstract
Current commercial Intrusion Detection Systems (IDS) have several major shortcomings. These include low detection rates of 20 percent or less, the inability to detect previously unseen or new attacks, and high false alarm rates. Frequent false alarmsoften prompt Computer Network Defense (CND) operators to disable or disregard sensor warnings. Current IDS are also inflexible, because of their monolithic design, and non-adaptable, new sensor capabilities cannot be added without rebuilding the IDS.Innovative approaches are required to provide a new generation of flexible, scalable, high quality Intrusion Detection Systems to overcome existing shortfalls.Sentar proposes to leverage ongoing NSA and DARPA research to develop an Agent-Enabled Advanced Intrusion Detection System to protect the GMD network against attacks. The proposed architecture combines DARPA's advanced intrusion detection techniques withSentar's previous work in intelligent agents which combines intelligent agents, statistical anomaly detection, and model-based profiles to provide high attack detection rates (up to 80 percent), the ability to detect previously unknown attacks, andacceptable false alarm rates. The overall result will be a user friendly, flexible infrastructure capable of rapidly adapting new intrusion detection capabilities to enable GMD security managers to stay out in front of the growing and ever-changing cyberthreat. The commercial potential for advanced intrusion detection systems is extensive. Virtually every company in the U.S. relies on the Internet to conduct business. Because of the growing and ever changing threat posed by hackers and malicious insiders,commercial companies need high quality, state of the art, low cost advanced intrusion detection protection. In addition to government applications, potential application areas include eCommerce, logistics, business operations, transportation, supply chainmanagement, and entertainment.

* information listed above is at the time of submission.

Agency Micro-sites


SBA logo

Department of Agriculture logo

Department of Commerce logo

Department of Defense logo

Department of Education logo

Department of Energy logo

Department of Health and Human Services logo

Department of Homeland Security logo

Department of Transportation logo

Enviromental Protection Agency logo

National Aeronautics and Space Administration logo

National Science Foundation logo
US Flag An Official Website of the United States Government