A Network Sensor-Based Defense Framework for Active Network Security Situation Awareness and Impact Mitigation

Award Information
Department of Defense
Air Force
Award Year:
Phase II
Agency Tracking Number:
Solicitation Year:
Solicitation Topic Code:
Solicitation Number:
Small Business Information
Intelligent Fusion Technology, Inc
39 Timber Rock Rd, Gaithersburg, MD, 20878-2266
Hubzone Owned:
Minority Owned:
Woman Owned:
Principal Investigator:
Dan Shen
Project Manager
(240) 644-3391
Business Contact:
Yingli Wu
(949) 596-0057
Research Institution:
ABSTRACT: Cyber-attacks are increasing in frequency, impact, and complexity, which demonstrate extensive vulnerabilities of networks with the potential for catastrophic damage. Defending against these cyber-attacks requires network security situation awareness (SA) through distributed collaborative monitoring, detection, and mitigation. In the Phase I project, IFT team has developed a Network Sensor-Based Defense Framework for Active Network Security Situation Awareness and Impact Mitigation. The framework features five elements: distributed network sensors (both passive and active), effective anomaly detectors, cyber-attack scene investigation, game theoretic cyber-attack formalization, and Google Earth based multi-view and multi-layer visualization. The preliminary yet promising results obtained in the Phase I study clearly demonstrate that IFT"s network sensor based defense framework provides innovative and effective SA techniques for active network security and proactive impact mitigation against cyber network attacks. In the Phase II research proposed, we will revise, extend, and optimize the Phase I research results with the focus on enhanced detection techniques, privacy-preserving, insider attack detection, game theoretic intent inference and impact mitigation, trust/assurance of network sensors, system resilience/agility, social-cultural factor modeling, traceback for anonymous attacks, and coordination between passive sensors and active sensors for a holistic cyber assessment testbed to enhance strategic and operational capabilities. BENEFIT: The innovations that we are developing will improve situation awareness, planning, data theft protection, and decision support for many military applications contending with complex malicious network attacks. The first near term DOD application target is the Cyber Warriors program, which is an Air Force stringent need. The second near term DOD application target is Distributed Common Ground System (DCGS) program and other programs where Raytheon-IIS is the Prime Contractor. Raytheon-IIS is prime contractor on the DCGS, Universal Control System (UCS), and next generation GPS control segment (GPS OCX). IFT has developed a strong and realistic plan to transition our technology to Raytheon programs. The cyber technology is also applicable to commercial systems. IFT"s target application will focus on civilian networks, such as finance, medicine, communications, electric power, nuclear energy, Internet service providers, and air traffic control.

* information listed above is at the time of submission.

Agency Micro-sites

SBA logo

Department of Agriculture logo

Department of Commerce logo

Department of Defense logo

Department of Education logo

Department of Energy logo

Department of Health and Human Services logo

Department of Homeland Security logo

Department of Transportation logo

Enviromental Protection Agency logo

National Aeronautics and Space Administration logo

National Science Foundation logo
US Flag An Official Website of the United States Government