IDAR project prototype
Computer network attacks and software vulnerabilities continue to increase in number and exceed the skilled human resources available for defense. The rotation of military personnel and the departure of skilled civilian employees who seek more lucrative industry jobs have made managing network security even more difficult for Department of Defense agencies. The Incident Detection, Analysis, and Response (IDAR) project was motivated by these issues.
The IDAR project has developed a prototype that demonstrates the feasibility of using a computer-based system to assist inexperienced system and network administrators during a network attack. The project focuses on the development of a structured representation of how incident resolution experts interpret, integrate, and abstract security data.
[ Read more ]