Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Faster Differentiation of Terrorists and Malicious Cyber Transactions from Good People and Transactions Peter P. Chen Foster Distinguished Chair Professor.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Faster Differentiation of Terrorists and Malicious Cyber Transactions from Good People and Transactions Peter P. Chen Foster Distinguished Chair Professor."— Presentation transcript:

1

2 1 Faster Differentiation of Terrorists and Malicious Cyber Transactions from Good People and Transactions Peter P. Chen Foster Distinguished Chair Professor Computer Science Dept. Louisiana State University Baton Rouge, LA 70803, USA pchen@lsu.edu http://www.csc.lsu.edu/~chen

3 2 Profiling of terrorists and malicious cyber transactions Examples: 9-11, Airport Security, D.C. snipers, Louisiana serial killer, Ohio sniper, etc. Current Problems:  Isolated Data  Questionable data  Little Mathematical Analysis  Algorithms (if any) are independent of (or incompatible with) data models

4 3 Why Do We Study the Profiling Problem? 9-11 D.C. snipers serial killers in Louisiana, California, etc. Ohio sniper, etc. Airport Security

5 4 In any population, …

6 5 Attributes (and “relationships) of bad guys Black hair? Beard/moustache? Nationality: xxxx? Has traveled to Country X three times?

7 6 Using the fewest attributes to catch all the bad guys … black hair beard/moustache

8 7 …also catches some good guys (casualties): black hair beard/moustache

9 8 …also catches some good guys (casualties): black hair beard/moustache

10 9 Goal: Find the smallest number of attributes that will catch all the bad guys, but at the same time Include as few casualties (good guys) as possible.

11 10 Some good guys are more important than others

12 11 Some bad guys are more important (to capture) than others

13 12 Goal (more ambitious): Find the smallest number of attributes that will catch as many, and preferably the more important bad guys, but at the same time Include as few, and preferably the less important good guys, as possible.

14 13 Problem -- Profiling of Terrorists and malicious cyber transactions  Current Problems: Isolated Data Questionable data Little Mathematical Analysis “ Unscientific/Unproven ” Methods Algorithms (if any) are independent of (or incompatible with) data models  Solution: Data “ links ” ( “ relationships ” ) Info validity and conflict resolution Optimization model & algorithms Integration of data model and algorithms

15 14 Solution Techniques for the Profiling Problem (I) – „New“ Concepts of ERM Discovering „Links/Relationships“ from Data in Various Sources (such as DARPA‘s EELD Program) „ Auto“-construction of „Relationships“ „Dynamically adjusting“ the weights of relationships Validity/Credibility Analysis of Data  A Paper was published in InfoFusion 2001, Montreal  Algorithm was developed  Prototype developed  Also, developed machine learning algorithm

16 15 Solution Techniques for the Profiling problem (II) – (a) Integration of ERM and Math Models, (b) Developing New Math Models & Algorithms We Model the „profiling“ problem as a „generalized set covering problem“  Start with the conventional definition of a „set covering problem (SCP)“  Then, define a „weighted set covering problem“  Finally, define a „generalized set covering problem“ We have developed several efficient algorithms for solving this type of problems. Some of them are modified versions of the „greedy algorithm“ Based on our tests, these new algorithms perform better than other algorithms in the SCP case We have also obtained and proved some computational complexity bounds

17 16 The Set Covering Problem (SCP)

18 17 Notation

19 18 SET COVERING PROBLEM (SCP) definition:

20 19 Notation 2

21 20 WEIGHTED SET COVERING PROBLEM (WSCP) definition:

22 21 GSCP generalizes WSCP in three aspects: Each S i  S is associated with a weighted set W i  W, where W = {W 1, W 2, …, W n } and W i  G, 1 ≤ i ≤ n, where G is a finite set. Each element b  B is weighted. A combination of weighted elements of B with an additional factor enables a relaxation of the covering requirement.

23 22

24 23

25 24 GENERALIZED SET COVERING PROBLEM (GSCP) definition:

26 25 Algorithms for GSCP

27 26 Greedy Set Covering Algorithm (GSCA)

28 27.

29 28 Generous Set Covering Algorithm (GSCGA)

30 29 Algorithm Liability_1 Input: S, A, W, j  N+ Output: cost 1. cost  c (W j ) Algorithm Liability_2 Input: S, A, W, j  N+ Output: cost 1. cost  c (W j ) / d (S j )

31 30 Super Greedy (Generous) Algorithm

32 31

33 32 Democratic Algorithm

34 33

35 34 Comparisons of Different Algorithms

36 35 Table notation

37 36 Table 1. Outputs to instances of GSCP by various heuristic algorithms

38 37 Table 2. Outputs to instances of SCP by various heuristic algorithms

39 38 Table 3. Number of basic operations executed by the Democratic Algorithm using various configurations to solve instances of SCP

40 39 Table 5. Output of the Democratic Algorithm using Balas/Carrera and Beasley’s algorithms

41 40

42 41 Which Algorithm is the best?

43 42 Near-Term Research Plans --  Take advantage of LSU’s NCSRT, one of the largest training centers of emergency and anti-terrorism workers  Test the Models and algorithms with law enforcement agencies and other agencies  Test the data-model/math-model integration problems with real and quasi-real data sets

44 43 Other Related Research Activities Integration of conceptual models (ER model, etc.) with databases, math models New Machine Learning Techniques Trustworthiness of Data and Conflict Resolutions (High and low-level) System Architecture and Cyber Security Cost/Effective Assessments of Security Techniques -- Making real impacts!

45 44

Download ppt "1 Faster Differentiation of Terrorists and Malicious Cyber Transactions from Good People and Transactions Peter P. Chen Foster Distinguished Chair Professor."

Similar presentations

Protein Secondary Structure Prediction Using BLAST and Relaxed Threshold Rule Induction from Coverings Leong Lee Missouri University of Science and Technology,

Protein Secondary Structure Prediction Using BLAST and Relaxed Threshold Rule Induction from Coverings Leong Lee Missouri University of Science and Technology,
Runtime Techniques for Efficient and Reliable Program Execution Harry Xu CS 295 Winter 2012.

Runtime Techniques for Efficient and Reliable Program Execution Harry Xu CS 295 Winter 2012.
Minimum Clique Partition Problem with Constrained Weight for Interval Graphs Jianping Li Department of Mathematics Yunnan University Jointed by M.X. Chen.

Minimum Clique Partition Problem with Constrained Weight for Interval Graphs Jianping Li Department of Mathematics Yunnan University Jointed by M.X. Chen.
Algorithm and Complexity Analysis

Algorithm and Complexity Analysis
Time Analysis Since the time it takes to execute an algorithm usually depends on the size of the input, we express the algorithm's time complexity as a.

Time Analysis Since the time it takes to execute an algorithm usually depends on the size of the input, we express the algorithm's time complexity as a.
Database Systems: Design, Implementation, and Management Tenth Edition

Database Systems: Design, Implementation, and Management Tenth Edition
Algorithms + L. Grewe.

Algorithms + L. Grewe.
DARPA ITS PI Meeting – Honolulu – July 17-21, 2000Slide 1 Aegis Research Corporation Intrusion Tolerance Using Masking, Redundancy and Dispersion DARPA.

DARPA ITS PI Meeting – Honolulu – July 17-21, 2000Slide 1 Aegis Research Corporation Intrusion Tolerance Using Masking, Redundancy and Dispersion DARPA.
Computer science is a field of study that deals with solving a variety of problems by using computers. To solve a given problem by using computers, you.

Computer science is a field of study that deals with solving a variety of problems by using computers. To solve a given problem by using computers, you.
Introductory Lecture. What is Discrete Mathematics? Discrete mathematics is the part of mathematics devoted to the study of discrete (as opposed to continuous)

Introductory Lecture. What is Discrete Mathematics? Discrete mathematics is the part of mathematics devoted to the study of discrete (as opposed to continuous)
An Approach to Evaluate Data Trustworthiness Based on Data Provenance Department of Computer Science Purdue University.

An Approach to Evaluate Data Trustworthiness Based on Data Provenance Department of Computer Science Purdue University.
SPREADSHEETS IN EDUCATION OF LOGISTICS MANAGERS AT FACULTY OF ORGANIZATIONAL SCIENCES: AN EXAMPLE OF INVENTORY DYNAMICS SIMULATION L. Djordjevic, D. Vasiljevic.

SPREADSHEETS IN EDUCATION OF LOGISTICS MANAGERS AT FACULTY OF ORGANIZATIONAL SCIENCES: AN EXAMPLE OF INVENTORY DYNAMICS SIMULATION L. Djordjevic, D. Vasiljevic.
Introduction to Database Management  Department of Computer Science Northern Illinois University January 2001.

Introduction to Database Management  Department of Computer Science Northern Illinois University January 2001.
Revisiting a slide from the syllabus: CS 525 will cover Parallel and distributed computing architectures – Shared memory processors – Distributed memory.

Revisiting a slide from the syllabus: CS 525 will cover Parallel and distributed computing architectures – Shared memory processors – Distributed memory.
Task Assignment and Transaction Clustering Heuristics.

Task Assignment and Transaction Clustering Heuristics.
Integer Programming Difference from linear programming –Variables x i must take on integral values, not real values Lots of interesting problems can be.

Integer Programming Difference from linear programming –Variables x i must take on integral values, not real values Lots of interesting problems can be.
Outline. 1-2 25 Chapter 1 Hardware, Software, Programming, Web surfing, email… Chapter Goals –Describe the layers of a computer system –Describe the concept.

Outline Chapter 1 Hardware, Software, Programming, Web surfing, … Chapter Goals –Describe the layers of a computer system –Describe the concept.
Page 1Prepared by Sapient for MITVersion 0.1 – August – September 2004 This document represents a snapshot of an evolving set of documents. For information.

Page 1Prepared by Sapient for MITVersion 0.1 – August – September 2004 This document represents a snapshot of an evolving set of documents. For information.
1 Software Testing Techniques CIS 375 Bruce R. Maxim UM-Dearborn.

1 Software Testing Techniques CIS 375 Bruce R. Maxim UM-Dearborn.
Design and Analysis of Algorithms

Design and Analysis of Algorithms

Similar presentations

Ads by Google