IAPD: Integrated Adaptive and Proactive Defense against Stealthy Botnets

Abstract

This project studies how to combat stealthy botnets and malwares by exploring a novel framework called IAPD, which stands for Integrated Adaptive and Proactive Defenses.'' To achieve the goal, we take a systems-and-theory methodology, meaning that on one hand, we want to build systems that can deal with stealthy attacks, and on the other hand, we want to build a theoretical and foundational understanding of botnets. Such a theoretical understanding allows us to pave the way for achieving principled modeling, management, and decision-making in cyber defense. For systems research, we have built a real-life malware behavior system called Online Malware Analysis System (OMAS), which is under significant further enhancements in design and implementation towards a practical tool. For theoretical research, we have been building mathematical models for understanding and reasoning the attack-defense interactions in cyberspace.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Dec 28, 2012
Accession Number
AD1013112

Entities

People

  • Shouhuai Xu

Organizations

  • University of Texas at San Antonio

Tags

Communities of Interest

  • Cyber
  • Energy and Power Technologies
  • Engineered Resilient Systems

DTIC Thesaurus Topics

  • Computational Science
  • Computer Languages
  • Computer Networks
  • Computer Program Documentation
  • Computer Program Reliability
  • Computer Programming
  • Computers
  • Cyberattacks
  • Cybersecurity
  • Cyberspace Operations
  • Data Mining
  • Electronic Mail
  • Information Science
  • Network Science
  • Operating Systems
  • Social Networking Services
  • Web Browsers

Fields of Study

  • Computer science

Readers

  • Artificial Intelligence
  • Cybersecurity.
  • Team-Based Human-Centered Cognitive Task Decision Making and Information Performance.

Technology Areas

  • Cyber