Communications of the ACM
DARPA Takes Aim at Insider Threats
The U.S. Defense Advanced Research Projects Agency (DARPA) is seeking to address security threats by launching a new initiative to enable security staff to rapidly detect and halt network insiders from stealing or distributing sensitive information.
DARPA says the first step is creating a scalable, distributed infrastructure to securely gather, store, access, process, and correlate relevant data from heterogeneous sources over extended periods of time. Determining whether an individual or group of individuals is exhibiting anomalous and malevolent behavior comprises the second step.
DARPA recently put out a call for automated technologies that can detect and notify security personnel to people with access to sensitive data and information systems who may intend to maliciously steal, change, or damage data and programs. The Cyber Insider Threat (CINDER) program is designed to dramatically boost the speed, accuracy, and rate with which insider threats are spotted and to hinder enemies' ability to function undetected within government and military interest networks, according to DARPA. Among CINDER's objectives is developing scalable algorithms, data input sources, and dimensional mission components.
From Network World
View Full Article
Abstracts Copyright © 2010 Information Inc., Bethesda, Maryland, USA 
No entries found