Documents in the NTIS Technical Reports collection are the results of federally funded research. They are directly submitted to or collected by NTIS from Federal agencies for permanent accessibility to industry, academia and the public.  Before purchasing from NTIS, you may want to check for free access from (1) the issuing organization's website; (2) the U.S. Government Printing Office's Federal Digital System website; (3) the federal government Internet portal; or (4) a web search conducted using a commercial search engine such as
Accession Number ADA584539
Title Development of a Response Planner using the UCT Algorithm for Cyber Defense.
Publication Date Mar 2013
Media Count 152p
Personal Author M. P. Knight
Abstract A need for a quick response to cyber attacks is a prevalent problem for computer network operators today. There is a small window to respond to a cyber attack when it occurs to prevent significant damage to a computer network. Automated response planners offer one solution to resolve this issue. This work presents Network Defense Planner System (NDPS), a planner dependent on the effectiveness of the detection of the cyber attack. This research first explores making classification of network attacks faster for real-time detection, the basic function Intrusion Detection System (IDS) provides. After identifying the type of attack, learning the rewards to use in the NDPS is the second important area of this research. For NDPS to assemble the optimal plan, learning the rewards for resulting network states is critical and often depends on the preferences of the network operator. Using neural networks, the second area of this research demonstrates that capturing the preferences through samples is feasible. After training the neural network, a model can be created to obtain reward estimates. The research performed in these two areas complement the final portion of the research which is assembling the optimal plan through using the Upper Bounds on Confidence for Trees (UCT) algorithm. NDPS is implemented using the UCT algorithm which allows for quick plan formulation by searching through predicted network states based on available network actions. UCT can effectively create a plan quickly and is guaranteed to provide the optimal plan, according to rewards used, if enough time is allotted.
Keywords Algorithms
Computer networks
Computer operators
Cyber defense
Defense systems
Feasibility studies
IDS(Intrusion detection system)
Ndps(Network defense planner system)
Neural nets
Neural networks
Quick reaction
Real time

Source Agency Non Paid ADAS
NTIS Subject Category 62D - Information Processing Standards
62 - Computers, Control & Information Theory
74I - Passive Defense Systems
74G - Military Operations, Strategy, & Tactics
Corporate Author Air Force Inst. of Tech., Wright-Patterson AFB, OH. School of Engineering and Management.
Document Type Thesis
Title Note Master's thesis.
NTIS Issue Number 1402
Contract Number N/A

Science and Technology Highlights

See a sampling of the latest scientific, technical and engineering information from NTIS in the NTIS Technical Reports Newsletter

Acrobat Reader Mobile    Acrobat Reader