View The Document

Accession Number:

AD1085243

Title:

A Diagnostics Approach for Persistent Threat Detection (ADAPT)

Author(s):

Author Organization(s):

Galois, Inc.

Report Date:

2019-11-01

Abstract:

Over the course of the Transparent Computing program, the ADAPT team developed a system for Automated Detection of Advanced Persistent Threats (APTs). The core developments of the Quine distributed graph database together with a newly developed technique for categorical anomaly detection provided the capability to perform probabilistic analysis for all system activity at arbitrarily high speeds. Using policies defined once by a team of experts, the system is able to effectively find and describe considerable APT activity and produce meaningful summaries for a human analyst.

Document Type:

Conference:

Journal:

Pages:

54

File Size:

1.53MB

Contracts:

Grants:

Descriptors:

Identifiers:

transparent computing

SubjectCategory:

Mathematical and Computer Sciences

Communities of Interest:

Materials and Manufacturing Processes

Distribution Statement:

Approved For Public Release

View The Document

View The Document

Accession Number:

AD1085243

Title:

A Diagnostics Approach for Persistent Threat Detection (ADAPT)

Author(s):

Author Organization(s):

Report Date:

2019-11-01

Abstract:

Document Type:

Conference:

Journal:

Pages:

54

File Size:

1.53MB

FA8650-15-C-7557 (FA865015C7557);

Contracts:

Grants:

Descriptors:

Identifiers:

SubjectCategory:

Communities of Interest:

Distribution Statement:

Approved For Public Release

View The Document