Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Application Communities Kick-off Meeting Arlington, Virginia July 7, 2006.

Published byJonah Dawson Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Application Communities Kick-off Meeting Arlington, Virginia July 7, 2006."— Presentation transcript:

1 1 Application Communities Kick-off Meeting Arlington, Virginia July 7, 2006

2 2 Agenda 0800-0830Continental Breakfast 0830-0900Program Manager Welcome 0900-1000SRI Presentation 1000-1030Morning Break 1030-1130SRI Presentation (continued) 1130-1200Discussion 1200-1300Lunch 1300-1400MIT Presentation 1400-1430Afternoon Break 1430-1530MIT Presentation (continued) 1530-1600Wrap-up discussions 1600Side-bars

3 3 Lee Badger Information Processing Technology Office Defense Advanced Research Projects Agency Application Communities July 7, 2006 Program Kickoff

4 4 The Problem Attack Sophistication Growing (Source: CERT Coordination Center) Lines of Code 55,000,000 50,000,000 30,000,000 20,000,000 17,000,000 15,000,000 3,000,000 1,000,000 485,000 20,000 79 80 90 92 95 98 99 00 01 02 SCOMP Debian Multics ?Win2K? Win95 Win3.1 Lisp Darwin Kernel RedHat6 WinNT RedHat7 Linux Kernel Scale/Vulnerability Growing SCOMP Debian Multics ?Win2K? Win95 Win3.1 Lisp Darwin Kernel RedHat6 WinNT RedHat7 Linux Kernel Military Context DoD needs “better” COTS than adversaries have. Traditional wisdom: monocultures are weak: vulnerable to homogeneity/scale/collaboration Monocultures and Markets Market Share New idea: turn these “weaknesses” into advantages: Leverage homogeneity/scale/collaboration for the defense.

5 5 The Military Context DoD Cyber Foundation Voice/Data Routing Operating System Routers Email IM Office Productivity Firewalls Special Applications (COP, Intelligence Tactical, Imagery, …) Anti-virus COTS Applications JWICS SIPRNET NIPRNET Satellite Forward Deployment Sustaining Bases/Hqtrs Same equipment at home, deployed Frequent updates Some systems just “Show-up” Fast fielding Vulnerable COTS

6 6 Technology Objective Scale/homogeneity/ collaboration for defense Collaboratively diagnoses problems (attacks/bugs/errors) Transform many running copies of a (COTS) software program to behave as a self-aware Application Community that: Application Community xx% accurate problem identification, localization, and diagnosis in xx minutes. Collaboratively responds while maintaining intended functions Generate effective patches/filters in xx minutes. Prevent xx% of harmful patch/filter side effects. 2 3 1 Collaboratively generates Situation Awareness Gauge Predict likelihood and timing of problems with xx% accuracy. Value of Collaboration 0% 100% 1 100 1000 10,000 100,000 1,000,000 … active copies untapped utility Exploit scale for problem: localization mitigation recovery learning Possible Curves unknown threshold for diminished returns Collaboration: The Source Of Traction 00110 110 01 00110 110 01 00110 110 01 Observe Orient Decide Act time Knowledge 00110 110 01 00110 110 01 00110 110 01 00110 110 01 00110 110 01 00110 110 01 00110 110 01 00110 110 01 00110 110 01 00110 110 01 00110 110 01 00110 110 01 00110 110 01 00110 110 01 00110 110 01 Browser Operating System Web Server Email Middle- ware possible curve

7 7 Evaluation Protocol Phase I (Technology Development, 18 Months) SRI Metrics Detect >80% of attacks, with <10% false alarms Recover entire community from attack <30 minutes <30% average performance slowdown >60% accurate problem effects prediction < 15 min before arrival MIT Metrics Detect 95% of code injection attacks, recover from 60% Detect 50% of all other attacks and errors, recover from >30% <5% performance slowdown July 7, 2006 Start Go No-Go Dec. 6, 2007 Phase II (Maturation, Evaluation, Transition, 12 Months) March 6, 2009 System Maturation Initial Red Team Evaluation Transition-Ready Self-Defending COTS Software Commercialization Flaw Remediation More Ambitious Metrics Detect >98% of attacks, with <1% false alarms Recover entire community from attack <10 minutes <30% average performance slowdown >80% accurate problem effects prediction < 5 min before arrival Final Red Team Evaluation Feb. 7, 2009 to March 6, 2009 March 7, 2008 Start Dec. 7, 2007 to Jan. 6, 2008

8 8 AC Kickoff July 7 2006 Washington DC 1-day meeting Present new projects PI Meeting Wednesday, Jan. 10, 2007 East Coast Location Present progress reports PI Meeting July 2007 West Coast Location Present progress reports PI Meeting early Jan. 2008 East Coast Location 2006 2007 Phase 1 Schedule 2008 Red Team Evaluations Dec. 2007 on site Site Visits by the PM and selected IET Oct. 2006 Site Visits by the PM and selected IET April 2007 Site Visits by the PM and selected IET Oct. 2008

9 9 Role of the IET Provide technical feedback to performers at PI meetings Attend site visits for in-depth reviews Review performer self-assessment strategies  Evaluate validity of progress measures  Evaluate how understandable progress measures are to SRS outsiders  Cordell Green (Kestrel)  Hilarie Orman (Purple Streak)  Alex Orso (Ga. Tech)

Download ppt "1 Application Communities Kick-off Meeting Arlington, Virginia July 7, 2006."

Similar presentations

DARPA ITS PI Meeting – Honolulu – July 17-21, 2000Slide 1 Aegis Research Corporation Intrusion Tolerance Using Masking, Redundancy and Dispersion DARPA.

DARPA ITS PI Meeting – Honolulu – July 17-21, 2000Slide 1 Aegis Research Corporation Intrusion Tolerance Using Masking, Redundancy and Dispersion DARPA.
©2014 Bit9. All Rights Reserved The Evolution of Endpoint Security: Detecting and Responding to Malware Across the Kill Chain Chris Berninger, Sr. Solutions.

©2014 Bit9. All Rights Reserved The Evolution of Endpoint Security: Detecting and Responding to Malware Across the Kill Chain Chris Berninger, Sr. Solutions.
CERT Centers, Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 SEI is sponsored by the U.S. Department of Defense ©

CERT Centers, Software Engineering Institute Carnegie Mellon University Pittsburgh, PA SEI is sponsored by the U.S. Department of Defense ©
Cyber Security R&D Challenges: A Homeland Security Perspective Simon Szykman, Ph.D. Director, Cyber Security R&D 202-254-5802.

Cyber Security R&D Challenges: A Homeland Security Perspective Simon Szykman, Ph.D. Director, Cyber Security R&D
David Flournoy Bit9 Mid-Atlantic Regional Manager

David Flournoy Bit9 Mid-Atlantic Regional Manager
Annual SERC Research Review, October 5-6, 2011 1 Panel on Rapid / Expedited Systems Engineering Debra Facktor Lepore Principal Investigator, SERC Study.

Annual SERC Research Review, October 5-6, Panel on Rapid / Expedited Systems Engineering Debra Facktor Lepore Principal Investigator, SERC Study.
1 Telstra in Confidence Managing Security for our Mobile Technology.

1 Telstra in Confidence Managing Security for our Mobile Technology.
ForeScout Technologies Ayelet Steinitz, Product Manager April, 2003.

ForeScout Technologies Ayelet Steinitz, Product Manager April, 2003.
Bus 411 DAY 20. Agenda Kroger Case Study  E-mail PowerPoint Before Class (at least one hour) Grades and feedback are posted  Performance should improve.

Bus 411 DAY 20. Agenda Kroger Case Study  PowerPoint Before Class (at least one hour) Grades and feedback are posted  Performance should improve.
Oct 2, 2010Atif Alamri IS 240 Information Systems Analysis and Design Dr. Atif Alamri Office: 2098 Tel: (1) 4695202

Oct 2, 2010Atif Alamri IS 240 Information Systems Analysis and Design Dr. Atif Alamri Office: 2098 Tel: (1)
1 As Class Convenes u Find your team u Pick up your team’s folder; Becoming an Expert u Remove any old work and Class Process Check for Becoming an Expert.

1 As Class Convenes u Find your team u Pick up your team’s folder; Becoming an Expert u Remove any old work and Class Process Check for Becoming an Expert.
SIRT Contact Orientation Security Incident Response Team Departmental Security Contacts April 16, 2004.

SIRT Contact Orientation Security Incident Response Team Departmental Security Contacts April 16, 2004.
Security Awareness: Applying Practical Security in Your World Chapter 6: Total Security.

Security Awareness: Applying Practical Security in Your World Chapter 6: Total Security.
Internet Quarantine: Requirements for Containing Self-Propagating Code David Moore et. al. University of California, San Diego.

Internet Quarantine: Requirements for Containing Self-Propagating Code David Moore et. al. University of California, San Diego.
MOTIVATIONAL INTERVIEWING INTERNAL CERTIFICATION PROCESS Allen County Community Correction Design.

MOTIVATIONAL INTERVIEWING INTERNAL CERTIFICATION PROCESS Allen County Community Correction Design.
Session 8 Coordination. Session Objectives Define the Principle of Coordination Define the Principle of Coordination Identify characteristics of successful.

Session 8 Coordination. Session Objectives Define the Principle of Coordination Define the Principle of Coordination Identify characteristics of successful.
1 Approved for Public Release, Distribution Unlimited Lee Badger Information Processing Technology Office Defense Advanced Research Projects Agency Self-Regenerative.

1 Approved for Public Release, Distribution Unlimited Lee Badger Information Processing Technology Office Defense Advanced Research Projects Agency Self-Regenerative.
Success status, page 1 Collaborative learning for security and repair in application communities MIT & Determina AC PI meeting July 10, 2007 Milestones.

Success status, page 1 Collaborative learning for security and repair in application communities MIT & Determina AC PI meeting July 10, 2007 Milestones.
PREPAREDNESS AND RESPONSE TO CYBER THREATS REQUIRE A CSIRT By Jaco Robertson, Marthie Lessing and Simon Nare*

PREPAREDNESS AND RESPONSE TO CYBER THREATS REQUIRE A CSIRT By Jaco Robertson, Marthie Lessing and Simon Nare*
Introduction To Secure Registry Operations for ccTLDs Hervey Allen Chris Evans Phil Regnauld September 3 – 4, 2009 Santiago, Chile.

Introduction To Secure Registry Operations for ccTLDs Hervey Allen Chris Evans Phil Regnauld September 3 – 4, 2009 Santiago, Chile.

Similar presentations

Ads by Google