Integrated Cyber Analysis System (ICAS)*

Abstract

*Previously part of Cyber Insider Threat (CINDER) in PE 0603760E, Project CCC-04. The Integrated Cyber Analysis System (ICAS) program will develop techniques to automate the discovery of probes, intrusions, and persistent attacks on enterprise networks. At present, discovering the actions of capable adversaries requires painstaking forensic analysis of numerous system logs by highly skilled security analysts and system administrators. The ICAS program will develop technologies to correlate interactions and behavior patterns across all system data sources and thereby rapidly uncover aberrant events and detect compromise. This includes technologies for automatically representing, indexing, and reasoning over diverse, distributed, security-related data and system files.

Document Details

Document Type
Accomplishment
Publication Date
Oct 01, 2014
Source ID
51d4399efab4cfcdc3e011dc3fd5af6d

Tags

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Enterprise Information Systems Architecture and Joint Command Capability Interoperability Support.

Technology Areas

  • Cyber

Related Documents