Cyber Network Attack and Intrusion Detection and Recovery Environment (CYANIDE)

Period of Performance: 02/24/2011 - 02/24/2013

$750K

Phase 2 SBIR

Recipient Firm

Knowledge Based Systems, Inc.
1408 University Drive East Array
College Station, TX 77840
Principal Investigator

Abstract

Knowledge Based Systems, Inc. (KBSI) for this project will be developing the Cyber Network Attack and Intrusion Detection and Recovery Environment (CYANIDE), a customizable framework to support the modeling, development, test, and deployment of cyber sensing, monitoring and recovery technology for cyber networks. The CYANIDE vision is to provide a comprehensive simulation-based experimentation framework that supports a wide range of attack, malicious behavior, detection, recovery and protection models that are extensible to support new research ideas for cyber exploitation, cyber infrastructure protection, anomaly detection, distributed intrusion detection and cyber recovery in emerging cyber networks. The CYANIDE framework uses network modeling and simulation, data mining, detection-theory, semantic web technologies, game theory and executable architectures to develop capability for achieving cyber situational awareness, evaluating effectiveness of cyber security control architectures and performing vulnerability assessment in emerging cyber networks such as sensor web and grid networks. CYANIDE is aligned towards providing solutions to various DoD cyber security needs, and the proposed solution is highly commercializable.