Cyber Genome*
Abstract
*Formerly Code Characterization. (U) Traditional cyber forensics has focused on tracing network adversaries and manual analysis of computer hosts after obtaining physical possession of the machine. Electronic evidence is fragile and can easily be modified. Additionally, cyber thieves, criminals, dishonest and even honest employees hide, wipe, disguise, cloak, encrypt and destroy evidence from storage media using a variety of freeware, shareware and commercially available utility programs. The program will develop revolutionary methods to autonomously collect, interpret and compare computer software characteristics, while mapping them against a gene-inspired construct. The program will develop break-through cyber forensic techniques to characterize, analyze and identify malicious code. This program will also develop breakthrough abilities in visualization, threat identification analysis and threat mitigation analysis to enable positive identification of malcode sub-structures and functionality. This program will allow for the automatic discovery, identification, and characterization of any future variants of previously unknown malicious code in computing systems.
Document Details
- Document Type
- Accomplishment
- Publication Date
- Oct 01, 2011
- Source ID
- 95491fb07973fa6bcbd3f3a9cd76ee27