Twitter Facebook Google RSS
Global Defense 

Company Building System to Predict Cyber Attacks 


By Yasmin Tadjdeh 

The government is embarking on a new effort to develop technology that can predict and detect cyber attacks.

The program — called the cyber attack automated unconventional sensor environment, or CAUSE — is being spearheaded by the U.S. Intelligence Advanced Research Projects Activity organization.

“What we’re looking to do is to get ahead of all of these attacks and threats … in order to protect critical infrastructure,” said Robert Rahmer, CAUSE’s program manager.

IARPA wants to change the current paradigm of responding to attacks months or even a year after the fact and actually predict them, he said. The CAUSE program will take advantage of advancements in big data, open source information and threat intelligence-gathering.

Predicting a cyber threat, even if only a few seconds or minutes before it occurs, can be beneficial, Rahmer said. IARPA wants to eventually be able to predict them three to five days ahead, depending on the type of attack.

“There are several steps in the process of a [cyber attack] campaign and if you look at them individually, there are likely indicators during that process … that we can hopefully identify,” he said. “The idea is that we’re going to extract some of these features and signals from the earlier phases of that campaign.”

For example, during a distributed denial of service attack, the infrastructure is often set up months beforehand, he said.  

IARPA has awarded four contracts for the effort to BAE Systems, Leidos, Charles River Analytics and the University of Southern California’s Information Sciences Institute. The effort kicked off in August. It will include three phases with a downselect at the end of each of them. The first phase will last 18 months. Phases two and three are each 12 months.

Anne Taylor, the director of BAE’s cyber and communications technologies research group, said the company received an $11.4 million contract for the program. It will develop software to help predict attacks.

BAE Systems plans to draw from a wide variety of sources — including chatter on social media — and then “fuse all these different types of activities — the cybersecurity, the human behavior, social sciences and prediction,” she said.

BAE will work with StratumPoint, Digital Operatives LLC and the University of Maryland on the project, Taylor said.

Photo: iStock

Reader Comments

Re: Company Building System to Predict Cyber Attacks

Query why the USG has to provide funding for this effort when so many for-profit vendors offer various cybersecurity predictive, analytical tools?

It has been reported that "researchers at MIT have developed a new Artificial Intelligence-based cyber security platform, called 'AI2,' . . . which has the ability to predict, detect, and stop 85% of Cyber Attacks with high accuracy."

Ethan S. Burger on 02/13/2017 at 13:58

Submit Your Reader's Comment Below
The content of this field is kept private and will not be shown publicly.
Please enter the text displayed in the image.
The picture contains 6 characters.
*Legal Notice

NDIA is not responsible for screening, policing, editing, or monitoring your or another user's postings and encourages all of its users to use reasonable discretion and caution in evaluating or reviewing any posting. Moreover, and except as provided below with respect to NDIA's right and ability to delete or remove a posting (or any part thereof), NDIA does not endorse, oppose, or edit any opinion or information provided by you or another user and does not make any representation with respect to, nor does it endorse the accuracy, completeness, timeliness, or reliability of any advice, opinion, statement, or other material displayed, uploaded, or distributed by you or any other user. Nevertheless, NDIA reserves the right to delete or take other action with respect to postings (or parts thereof) that NDIA believes in good faith violate this Legal Notice and/or are potentially harmful or unlawful. If you violate this Legal Notice, NDIA may, in its sole discretion, delete the unacceptable content from your posting, remove or delete the posting in its entirety, issue you a warning, and/or terminate your use of the NDIA site. Moreover, it is a policy of NDIA to take appropriate actions under the Digital Millennium Copyright Act and other applicable intellectual property laws. If you become aware of postings that violate these rules regarding acceptable behavior or content, you may contact NDIA at 703.522.1820.

  Bookmark and Share