Reactive Aggregate Model Protecting Against Real-Time Threats
Abstract
Current network protection technologies often require code recompilation to integrate new technologies, can be prone to denial of service attacks, may require invasive software applications to provide an automated response, and provide little to no protection against unknown threats. Unknown threat discovery generally requires an expert human analyst in an impractical labor-intensive process, but these analysts are in short supply. A Vector Relational Data Modeling approach was implemented to automate the human-intensive decision-making and subsequent response processes when a common phpMyAdmin attack is suspected. We modeled constituent component technologies and data sources within the Global Information Network Architecture, a DOD network certified information modeling framework, and constructed a cyber test range consisting of multiple servers. This implementation and testing of Reactive Aggregate Model Protecting Against Real-time Threats demonstrated the successful employment of an information apparatus that executed the complex processes necessary to mitigate phpMyAdmin cyber threat detection and response.
Document Details
- Document Type
- Technical Report
- Publication Date
- Sep 01, 2014
- Accession Number
- ADA620926
Entities
People
- Jason R. Chamberlain
- Kenneth G. Baugess
- Ryan F. Kelly
- Samuel K. Chung
Organizations
- Naval Postgraduate School