Publication:
Protecting networks via Automated Defense of Cyber Systems

Loading...
Thumbnail Image
Authors
Morin, Matthew E.
Subjects
Internet of Things
autonomics
sensors
artificial intelligence
cyber defense
active cyber defense
automated indicator sharing
NIST cybersecurity framework
continuous diagnosis
mitigation
Advisors
Jasper, Scott
Lewis, Ted G.
Date of Issue
2016-09
Date
Sep-16
Publisher
Monterey, California: Naval Postgraduate School
Language
Abstract
Over the next ten to fifteen years, the number of internet-enabled devices is anticipated to grow exponentially, which will magnify cyber risks across an expanding attack surface area. It is unclear whether current manual methods of detection, verification, and remediation will allow network defenders to keep up with those risks. This thesis examined whether automated cyber defenses promise to be more effective than current models to cope with the results of vulnerabilities introduced by the projected increase in internet-enabled devices. The thesis further proposed a future model called Automated Defense of Cyber Systems, built upon three core technological components: sensors, autonomics, and artificial intelligence. Our conclusion is that automation is the future of cyber defense, and that advances are being made in each of the three technological components to support needed productivity gains for information technology security personnel. Continued advances will occur piecemeal, and it is recommended that network defenders make incremental investments consistent with an automated defensive strategy.
Type
Thesis
Description
Series/Report No
Department
National Security Affairs
Organization
Identifiers
NPS Report Number
Sponsors
Funder
Format
Citation
Distribution Statement
Approved for public release; distribution is unlimited.
Rights
This publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.
Collections