DIA: Distributed Information Assurance in Ballistic Missile Defense Systems using Scalable, Distributed Data Mining Technology

Award Information
Agency: Department of Defense
Branch: Missile Defense Agency
Contract: HQ0006-08-C-7810
Agency Tracking Number: B073-039-0654
Amount: $99,957.00
Phase: Phase I
Program: SBIR
Awards Year: 2008
Solicitation Year: 2007
Solicitation Topic Code: MDA07-039
Solicitation Number: 2007.3
Small Business Information
8840 Stanford Blvd. STE. 1300, Columbia, MD, 21045
DUNS: 025443412
HUBZone Owned: N
Woman Owned: N
Socially and Economically Disadvantaged: N
Principal Investigator
 Kakali Sarkar
 Chief Operating Officer
 (410) 290-0146
 kakali@agnik.com
Business Contact
 Hillol Kargupta
Title: President
Phone: (443) 538-6624
Email: hillol@agnik.com
Research Institution
N/A
Abstract
This document proposes to develop a Distributed Information Assurance (DIA) system based on the distributed data mining technology for detecting distributed network attacks and identifying attackers’ “signatures” for advanced situational awareness. It will offer the following key capabilities: 1. A multi-agent architecture for linking multiple, heterogeneous network-sensors (e.g., intrusion detection and malware detection systems, netflow data, tcpdump) for performing distributed and decentralized analysis of the data. The system will support local management of policy-based control for different sensors. 2. A collection of distributed data mining algorithms for decentralized outlier detection, clustering,and trend analysis for network data. These algorithms will lay the foundation of the DIA system. 3. A module for supporting the complete life-cycle of the information assurance management process in a BMDS. Following attack detection capabilities will be explored during Phase I: Detect distributed network “signatures” of attackers based on the distributed observations from different nodes in the network. Detect attack patterns on the coalition members in terms of clusters, outliers. Identify statistical properties of attack distribution in order to perform a trend analysis. Detect stealth network probes by attackers and worms. The proposed work will be performed at Agnik, a mobile and distributed data mining company.

* Information listed above is at the time of submission. *

Agency Micro-sites

SBA logo
Department of Agriculture logo
Department of Commerce logo
Department of Defense logo
Department of Education logo
Department of Energy logo
Department of Health and Human Services logo
Department of Homeland Security logo
Department of Transportation logo
Environmental Protection Agency logo
National Aeronautics and Space Administration logo
National Science Foundation logo
US Flag An Official Website of the United States Government