Accession Number ADA584539
Title Development of a Response Planner using the UCT Algorithm for Cyber Defense.
Publication Date Mar 2013
Media Count 152p
Personal Author M. P. Knight
Abstract A need for a quick response to cyber attacks is a prevalent problem for computer network operators today. There is a small window to respond to a cyber attack when it occurs to prevent significant damage to a computer network. Automated response planners offer one solution to resolve this issue. This work presents Network Defense Planner System (NDPS), a planner dependent on the effectiveness of the detection of the cyber attack. This research first explores making classification of network attacks faster for real-time detection, the basic function Intrusion Detection System (IDS) provides. After identifying the type of attack, learning the rewards to use in the NDPS is the second important area of this research. For NDPS to assemble the optimal plan, learning the rewards for resulting network states is critical and often depends on the preferences of the network operator. Using neural networks, the second area of this research demonstrates that capturing the preferences through samples is feasible. After training the neural network, a model can be created to obtain reward estimates. The research performed in these two areas complement the final portion of the research which is assembling the optimal plan through using the Upper Bounds on Confidence for Trees (UCT) algorithm. NDPS is implemented using the UCT algorithm which allows for quick plan formulation by searching through predicted network states based on available network actions. UCT can effectively create a plan quickly and is guaranteed to provide the optimal plan, according to rewards used, if enough time is allotted.
Keywords Algorithms
Attack
Computer networks
Computer operators
Cyber defense
Cyberwarfare
Defense systems
Detection
Feasibility studies
Formulations
IDS(Intrusion detection system)
Ndps(Network defense planner system)
Networks
Neural nets
Neural networks
Operators(Personnel)
Optimization
Quick reaction
Real time
Security
Theses


 
Source Agency Non Paid ADAS
NTIS Subject Category 62D - Information Processing Standards
62 - Computers, Control & Information Theory
74I - Passive Defense Systems
74G - Military Operations, Strategy, & Tactics
Corporate Author Air Force Inst. of Tech., Wright-Patterson AFB, OH. School of Engineering and Management.
Document Type Thesis
Title Note Master's thesis.
NTIS Issue Number 1402
Contract Number N/A

Science and Technology Highlights

See a sampling of the latest scientific, technical and engineering information from NTIS in the NTIS Technical Reports Newsletter

Acrobat Reader Mobile    Acrobat Reader