CRA Cyber-Security Collaborative Research Alliance: MACRO: Models for Enabling Continuous Reconfigurability of Secure Missions Prof. Patrick McDaniel Initial Feedback Meeting ARL - Adelphi, MD October 15th, 2013 CRA: Models for Enabling Continuous Reconfigurability of Secure Missions your vision; the consortium team and leadership structure, and a high level proposal structure. If you have already planned specific rotations (faculty, post-docs, students) for the first year, i
CRA Vision • Goal: develop a rigorous science of cyber-security that will (a) detect the risks and attacks present in an environment (b)understand/predict users, defenders, and attacker action (c) alter the environment to securely achieve maximal mission success rates at the lowest resource cost. reconfiguration/ system optimization Detection Risk system state likelihoods user state consequences Agility User User Models Models Defender Defender Models Models User Attacker Models Attacker Models Models Defender Models Attacker Models • Outcome: dictate and control the evolution of cyber- missions and adversarial actions 2 CRA: Models for Enabling Continuous Reconfigurability of Secure Missions
CRA Team/Leadership Structure • Lead Research Organization (LRO) : Penn State • Principle Investigator/PM : Prof. Patrick McDaniel • Collaborative Alliance Manager (CAM) : Dr. Ananthram Swami • Research Management Board (RMB) : TBD • Consortium Management Committee (CMC): TBD • University PIs • Penn State : Profs. McDaniel, La Porta, and Jaeger • CMU : Profs. Bauer, Christin, Cranor, and Gonzalez • Indiana : Profs. Camp, Henshel, and Bertenthal • UC Davis : Profs. Levitt, Mohapatra, and Su • UC Riverside : Profs. Krishnamurthy, Madhyastha, and Neamtiu • 3 CRA: Models for Enabling Continuous Reconfigurability of Secure Missions
CRA Team/Leadership Structure Lead Patrick McDaniel Agility (RA) Risk (RA) Detection (RA) P. Mohapatra ( lead ) Jean Camp ( lead ) S. Krishnamurthy ( lead ) Iulian Neamtiu Diane Henshel Karl Levitt S. Krishnamurthy Tom LaPorta Iulian Neamtiu Lujo Bauer Karl Levitt Cleotilde Gonzalez Zhendong Su Trent Jaeger Lorrie Cranor Trent Jaeger Zhendong Su Harsha Madhyastha Harsha Madhyastha Bennett Bertenthal Prasant Mohapatra Nicolas Christin Lujo Bauer Patrick McDaniel Patrick McDaniel (ARL TBD) (ARL TBD) Patrick McDaniel (ARL TBD) Psychosocial (CCRI) Lorrie Cranor ( Lead ), Cleotilde Gonzalez, Bennett Bertenthal, Jean Camp, Tom LaPorta, Diane Henshel, Nicolas Christin, Patrick McDaniel, Lujo Bauer, (ARL TBD) 4 CRA: Models for Enabling Continuous Reconfigurability of Secure Missions
CRA Research Plan • The risk, detection, and agility teams will perform research by focusing on 4-5 related research tasks • Results to be integrated with unified mission model • Cross-team and cross thrust collaboration will be supported by multi-homed PIs from Universities and ARL: • Yearly week-long boot camps • Bi-annual team meetings • Bi-monthly team calls • Quarterly CRA open call briefings with ARL • Papers, reports, datasets, briefings, systems and management documents will be distributed (and controlled) through an online system ( cra.psu.edu ) 5 CRA: Models for Enabling Continuous Reconfigurability of Secure Missions
CRA Schedule (year 1, preliminary) • Important dates • Sep 20, 2013 - CRA begins • Oct 15, 2013 - project feed back (MD) • Nov 18, 2013 - cra.psu.edu live • Dec 9-11, 2013 - CRA/ARL joint conf (MD) • Dec 20, 2013 - IPP deadline • Jan 27-30 - CRA Kickoff/bootcamp (PA) • Mar 2014 - PI site visits (PA, IN, CA) • Jun 2013 - CRA bi-annual teams (HHI, SC) • Oct 2014 - PI site visits (PA, IN, CA) • Dec 2014 - BPP deadline • Jan 2014 - CRA bootcamp ( TBD ) 6 CRA: Models for Enabling Continuous Reconfigurability of Secure Missions
CRA Questions • ARL integration • How best to engage ARL researchers • Budget for ARL visiting scholars? • Process for University visiting researchers? • Tech transfer/field experience • Difficult to envision without industrial partner • Timeline for call? Assistance? • Operational contacts? • ARL/WEL and other cyber-security laboratory access? • IRB process at ARL • Dec meeting must be coordinated carefully: contact? • Term: Program Manager or Program Director, or PI 7 CRA: Models for Enabling Continuous Reconfigurability of Secure Missions
Recommend
More recommend