Presentation is loading. Please wait.

Presentation is loading. Please wait.

ADAM: Active Defense Algorithm and Model Sergio Caltagirone University of Idaho

Published byLizbeth Horn Modified over 8 years ago

Similar presentations

Presentation on theme: "ADAM: Active Defense Algorithm and Model Sergio Caltagirone University of Idaho"— Presentation transcript:

1 ADAM: Active Defense Algorithm and Model Sergio Caltagirone University of Idaho scaltagi@acm.org

2 Active Defense  “Any action sequence performed by an individual or organization between the time an attack is detected and has completed, in an automated or non-automated fashion, to mitigate a threat against a particular asset.”  More than hacking back! Firewall rules, Notifying Authorities, etc. (along with the other stuff)

3 Goals of ADAM  Provide a generalizable, extendable model for any organization Completely model the risk of the threat and AD actions Find best active defense solution for the threat (allow for automation) – maximize benefit, minimize risk Provide legal (and ethical) due diligence  Why? Current tools are inefficient and sometimes critically ineffective If you want to respond to an attack, no way to determine which response is best

4 Active Defense Problems  Ethicalness  Legal  Unintended Consequences  Risk Valuation

5 Solutions Provided by ADAM  Ethicalness Incorporates Teleological and Deontological ethical concerns  Legal No precedent: minimal force, proportional force, immediate threat  Unintended Consequences Statistical measure of confidence in action performing as expected  Risk Valuation Provides statistical bounds for potential risk

6 Future and Upcoming Work  Current: (For Fun) Using competitive co- evolution to determine effective active defense strategies  Near Future (2-3 mo): Simulate Model for validation  Far Future (4-5 mo): Formal validation scaltagi@acm.org

Download ppt "ADAM: Active Defense Algorithm and Model Sergio Caltagirone University of Idaho"

Similar presentations

ETHICAL HACKING A LICENCE TO HACK

ETHICAL HACKING A LICENCE TO HACK
Primary Benefit Types Value Discipline Benefits – Operating Excellence Reduce Cost Reduce Risk – Product Leadership Increase Revenue – Customer Intimacy.

Primary Benefit Types Value Discipline Benefits – Operating Excellence Reduce Cost Reduce Risk – Product Leadership Increase Revenue – Customer Intimacy.
Legal aspects of quality Michel ISNARD Insee – Legal Affairs.

Legal aspects of quality Michel ISNARD Insee – Legal Affairs.
Lecture 1: Overview modified from slides of Lawrie Brown.

Lecture 1: Overview modified from slides of Lawrie Brown.
FIGHT AGAINST CORRUPTION: THE LITHUANIAN WAY. CONTENTS Factors Decision Challenges Dilemmas Priorities.

FIGHT AGAINST CORRUPTION: THE LITHUANIAN WAY. CONTENTS Factors Decision Challenges Dilemmas Priorities.
How Actions Can Be Morally Evaluated l Teleological Ethics: morality is defined in terms of the consequences of actions l Deontological Ethics: morality.

How Actions Can Be Morally Evaluated l Teleological Ethics: morality is defined in terms of the consequences of actions l Deontological Ethics: morality.
S5-1 © 2001 Carnegie Mellon University OCTAVE SM Process 5 Identify Key Components Software Engineering Institute Carnegie Mellon University Pittsburgh,

S5-1 © 2001 Carnegie Mellon University OCTAVE SM Process 5 Identify Key Components Software Engineering Institute Carnegie Mellon University Pittsburgh,
Critical Infrastructure Protection (and Policy) H. Scott Matthews March 5, 2003.

Critical Infrastructure Protection (and Policy) H. Scott Matthews March 5, 2003.
Critical Infrastructure Protection (and Policy) H. Scott Matthews March 25, 2004.

Critical Infrastructure Protection (and Policy) H. Scott Matthews March 25, 2004.
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.
Security Offering. Cyber Security Solutions 2 Assessment Analysis & Planning Design & Architecture Development & Implementation O&M Critical Infrastructure.

Security Offering. Cyber Security Solutions 2 Assessment Analysis & Planning Design & Architecture Development & Implementation O&M Critical Infrastructure.
Social and Economic Impacts of IT Professor Matt Thatcher.

Social and Economic Impacts of IT Professor Matt Thatcher.
VULNERABILITY MANAGEMENT Moving Away from the Compliance Checkbox Towards Continuous Discovery.

VULNERABILITY MANAGEMENT Moving Away from the Compliance Checkbox Towards Continuous Discovery.
Introduction to Network Defense

Introduction to Network Defense
1 Business Continuity. 2 Continuity strategy Business impact Incident response Disaster recovery Business continuity.

1 Business Continuity. 2 Continuity strategy Business impact Incident response Disaster recovery Business continuity.
California Common Operating Picture (Cal COP) for Public Safety

California Common Operating Picture (Cal COP) for Public Safety
Intrusion and Anomaly Detection in Network Traffic Streams: Checking and Machine Learning Approaches ONR MURI area: High Confidence Real-Time Misuse and.

Intrusion and Anomaly Detection in Network Traffic Streams: Checking and Machine Learning Approaches ONR MURI area: High Confidence Real-Time Misuse and.
Www.safezonesystems.com SafeZone® patent pending 1 Detect. Inform. Prevent. NERC Physical Security Standards and Guidelines SafeZone® Detect. Inform. Prevent.

SafeZone® patent pending 1 Detect. Inform. Prevent. NERC Physical Security Standards and Guidelines SafeZone® Detect. Inform. Prevent.
BUSINESS B1 Information Security.

BUSINESS B1 Information Security.
1 Oppliger: Ch. 15 Risk Management. 2 Outline Introduction Formal risk analysis Alternative risk analysis approaches/technologies –Security scanning –Intrusion.

1 Oppliger: Ch. 15 Risk Management. 2 Outline Introduction Formal risk analysis Alternative risk analysis approaches/technologies –Security scanning –Intrusion.

Similar presentations

Ads by Google