ADAPT: AN ANALYTICAL FRAMEWORK FOR ACTIONABLE DEFENSE AGAINST ADVANCED PERSISTENT THREATS
Office of Naval Research
06/01/2016 - 05/31/2019
We propose to research and develop a new scientific framework for modeling advanced and dynamic adversarial cyber interaction, and developing actionable cyber defenses. Our proposed frame work will provide a mathematical language for representing the temporal progression of the adversarial cyber interaction, which is inherently a game between the cyber defense and adversary actions. Since APT consist of multiple attack stages, as well as simultaneous attacks at different entry points, our framework will enable composition of local adversarial cyber interactions to obtain a game-of-games describing the global adversarial cyber interaction. By developing techniques for decomposition of the composed models, our approach will enable identification of intermediate attack steps, as well as characterize possible variants of an APT.