Federal grants awarded to boost cybersecurity research

Seven organizations earned over $5.6 million in federal money to develop new tools to help researchers better understand and counter cyberattacks.

04/21/2018


Seven organizations earned over $5.6 million in federal money to develop new tools to arm researchers with the latest insight and an increased collection of cybersecurity incident data to understand and counter cyberattacks.

"Cybersecurity research and development, and the ability to develop new solutions, will be enhanced significantly by having access to expanded, improved and new types of data resources," said William N. Bryan, the Department of Homeland Security (DHS) senior official performing the duties of the under secretary for Science and Technology Directorate (S&T). "S&T continues to uniquely champion this R&D resource via the IMPACT project."

The Information Marketplace for Policy and Analysis of Cyber-risk & Trust (IMPACT) project supports the global cyber-risk research community by coordinating and developing real-world data and information-sharing capabilities, including tools, models and methodologies. To accelerate solutions for cyber-risk issues and infrastructure security, IMPACT enables empirical data and information-sharing between and among the global academic, industry and government cybersecurity research and development (R&D) community.

"The value of having a research infrastructure that delivers real-world, largescale and longitudinal data collection, provisioning and analysis to the R&D community is severely underestimated," said Erin Kenneally, S&T's IMPACT program manager. "Too often, such an infrastructure is assumed to exist without deliberate budgeted resources. "IMPACT lowers the barrier to entry for cybersecurity R&D by addressing the operational, legal and administrative costs that otherwise impede scalable and sustainable data-sharing." The organizations earning the awards include:

Galois, Inc., Portland, Ore., was awarded almost $800,000 to develop a disclosure control system for sensitive IMPACT datasets. The "Framework for Information Disclosure with Ethical Security" effort is a scalable, fine-grained technical disclosure control system. It reduces risk for data providers by keeping non-anonymized data cryptographically secure for its lifetime on the IMPACT platform, thereby incentivizing the contribution of sensitive but valuable R&D data.

Georgia Institute of Technology, Atlanta, was awarded almost $500,000 to create threat intelligence datasets. The effort—"Real-World, Largescale Network- and Host-Level Threat Intelligence"—will pull significantly from the malware analysis experience of the institution and its researchers to build the datasets and improve the utility of the datasets for use in threat-detection and remediation decision-making.

Massachusetts General Hospital, Boston, was awarded $950,000 to develop a medical device cybersecurity data repository. This repository, which will be developed through an effort titled "Healthcare Data Generation and Curation for Cybersecurity Analysis," will enhance cyber protection of hospital clinical environments by providing the data cybersecurity researchers can use to develop monitoring rulesets and tools based on changes in response to threats to medical devices and networks. This knowledge will be broadly applicable in other environments.

Parsons Government Services, Inc., Pasadena, Calif., was awarded $749,989 to develop a system to enable organizations to understand their level of exposure to attacks on Internet infrastructure due to interconnectedness with other systems. The "Internet Risk Assessment and Mitigation" effort will enable an organization to examine its exposure to internet infrastructure risks in a systemic manner and take actions to mitigate the risks.

University of California San Diego Center for Applied Data Analysis (CAIDA) was awarded $1.5 million for the effort "Advancing Scientific Study of Internet Security and Topological Stability." UCSD CAIDA will help researchers counter large-scale Internet cyberattacks and incidents by developing datasets that target cybersecurity challenge problems and generating new datasets that reflect immediate threats, vulnerabilities and hazards to the nation's critical communications infrastructure systems. It also will provide unique decision analytics-as-a-service (DAaaS) capabilities by allowing users to model threats in real time using a web application that is capable of fusing disparate control and data plane resources.

University of Southern California Information Sciences Institute, Los Angeles, Calif., was awarded over $650,000 to develop new cyberattack datasets. Through this effort—titled "Los Angeles/Colorado Application and Network Information Community"—researchers will create foundational and derived datasets of various types of internet attacks as well as web-based services and installable tools for use by researchers. It will also provide DAaaS, with a combination of web-based services and installable tools for browsing Internet Protocol v4 and packet header data, capture high-speed data and detect internet of things devices.

University of Wisconsin, Madison, was awarded a $499,716 contract to create new capabilities to collect and fuse data to support decision analytics for the Homeland Security Enterprise (HSE). Under the "Datasets, Methods and Tools for Internet Security Decision Analytics" effort, the team will collect and provide internet physical infrastructure data, logs from web crawls and intrusion detection system and firewall logs. They also will develop methods to link physical layer maps of the internet with routing configuration and application traffic data to enhance risk analysis and on-demand measurement of the internet that are important to HSE (e.g., outages and attacks).

Gregory Hale is the editor and founder of Industrial Safety and Security Source (ISSSource.com), a news and information Website covering safety and security issues in the manufacturing automation sector. This content originally appeared on ISSSource.com. ISSSource is a CFE Media content partner. Edited by Chris Vavra, production editor, CFE Media, cvavra@cfemedia.com.

ONLINE extra

See related stories from ISSSource linked below.



Engineers' Choice Awards
The Engineers' Choice Awards highlight some of the best new control, instrumentation and automation products as chosen by Control Engineering subscribers.
System Integrator Giants
The System Integrator Giants program lists the top 100 system integrators among companies listed in CFE Media's Global System Integrator Database.
System Integrator of the Year
Each year, a panel of Control Engineering and Plant Engineering editors and industry expert judges select the System Integrator of the Year Award winners in three categories.
Design of Safe and Reliable Hydraulic Systems for Subsea Applications
This eGuide explains how the operation of hydraulic systems for subsea applications requires the user to consider additional aspects because of the unique conditions that apply to the setting
How to Maximize Factory Automation Efficiency with Low Cost Machine Vision
This eGuide illustrates solutions, applications and benefits of machine vision systems.
Wireless Reliability in Harsh Environments
Learn how to increase device reliability in harsh environments and decrease unplanned system downtime.
September 2018
Optimize controls via cloud software, ladder logic simulation, industrial wireless best practices
August 2018
Augmented reality and virtual reality education, autotuning PID control, cybersecurity advice, educating engineers
July 2018
Ladder logic best practices and object-oriented programming, safety instrumented systems, enclosure design issues and challenges, process control advice
Edge Computing
This article collection contains several articles on how today's technologies heap benefits onto an edge-computing architecture such as faster computing, better networking, more memory, smarter analytics, cloud-based intelligence, and lower costs.
Data Center Design
Data centers, data closets, edge and cloud computing, co-location facilities, and similar topics are among the fastest-changing in the industry.
PLCs
Programmable logic controllers (PLCs) represent the logic (decision) part of the control loop of sense, decide, and actuate. Featured articles in this digital report compare PLCs and programmable automation controllers (PACs), industrial PCs, and robotic controllers.
SIDB

Find and connect with the most suitable service provider for your unique application. Start searching the Global System Integrator Database Now!

August 2018
SCADA standardization, capital expenditures, data-driven drilling and execution
June 2018
Machine learning, produced water benefits, progressive cavity pumps
April 2018
ROVs, rigs, and the real time; wellsite valve manifolds; AI on a chip; analytics use for pipelines
John O. Ayuk, PE, CFSE, PMP, CAP
Automation Engineer; Wood Group
Doug Baker
System Integrator; Cross Integrated Systems Group
Jose S. Vasquez, Jr.
Jose S. Vasquez, Jr.
Fire & Life Safety Engineer; Technip USA Inc.
Data Centers: Impacts of Climate and Cooling Technology
This course focuses on climate analysis, appropriateness of cooling system selection, and combining cooling systems.
Safety First: Arc Flash 101
This course will help identify and reveal electrical hazards and identify the solutions to implementing and maintaining a safe work environment.
Critical Power: Hospital Electrical Systems
This course explains how maintaining power and communication systems through emergency power-generation systems is critical.
Engineers' Choice Awards
The Engineers' Choice Awards highlight some of the best new control, instrumentation and automation products as chosen by Control Engineering subscribers.
System Integrator Giants
The System Integrator Giants program lists the top 100 system integrators among companies listed in CFE Media's Global System Integrator Database.
System Integrator of the Year
Each year, a panel of Control Engineering and Plant Engineering editors and industry expert judges select the System Integrator of the Year Award winners in three categories.
Design of Safe and Reliable Hydraulic Systems for Subsea Applications
This eGuide explains how the operation of hydraulic systems for subsea applications requires the user to consider additional aspects because of the unique conditions that apply to the setting
How to Maximize Factory Automation Efficiency with Low Cost Machine Vision
This eGuide illustrates solutions, applications and benefits of machine vision systems.
Wireless Reliability in Harsh Environments
Learn how to increase device reliability in harsh environments and decrease unplanned system downtime.
September 2018
Optimize controls via cloud software, ladder logic simulation, industrial wireless best practices
August 2018
Augmented reality and virtual reality education, autotuning PID control, cybersecurity advice, educating engineers
July 2018
Ladder logic best practices and object-oriented programming, safety instrumented systems, enclosure design issues and challenges, process control advice
Edge Computing
This article collection contains several articles on how today's technologies heap benefits onto an edge-computing architecture such as faster computing, better networking, more memory, smarter analytics, cloud-based intelligence, and lower costs.
Data Center Design
Data centers, data closets, edge and cloud computing, co-location facilities, and similar topics are among the fastest-changing in the industry.
PLCs
Programmable logic controllers (PLCs) represent the logic (decision) part of the control loop of sense, decide, and actuate. Featured articles in this digital report compare PLCs and programmable automation controllers (PACs), industrial PCs, and robotic controllers.
SIDB

Find and connect with the most suitable service provider for your unique application. Start searching the Global System Integrator Database Now!

August 2018
SCADA standardization, capital expenditures, data-driven drilling and execution
June 2018
Machine learning, produced water benefits, progressive cavity pumps
April 2018
ROVs, rigs, and the real time; wellsite valve manifolds; AI on a chip; analytics use for pipelines
John O. Ayuk, PE, CFSE, PMP, CAP
Automation Engineer; Wood Group
Doug Baker
System Integrator; Cross Integrated Systems Group
Jose S. Vasquez, Jr.
Jose S. Vasquez, Jr.
Fire & Life Safety Engineer; Technip USA Inc.
Data Centers: Impacts of Climate and Cooling Technology
This course focuses on climate analysis, appropriateness of cooling system selection, and combining cooling systems.
Safety First: Arc Flash 101
This course will help identify and reveal electrical hazards and identify the solutions to implementing and maintaining a safe work environment.
Critical Power: Hospital Electrical Systems
This course explains how maintaining power and communication systems through emergency power-generation systems is critical.
Engineers' Choice Awards
The Engineers' Choice Awards highlight some of the best new control, instrumentation and automation products as chosen by Control Engineering subscribers.
System Integrator Giants
The System Integrator Giants program lists the top 100 system integrators among companies listed in CFE Media's Global System Integrator Database.
System Integrator of the Year
Each year, a panel of Control Engineering and Plant Engineering editors and industry expert judges select the System Integrator of the Year Award winners in three categories.
Design of Safe and Reliable Hydraulic Systems for Subsea Applications
This eGuide explains how the operation of hydraulic systems for subsea applications requires the user to consider additional aspects because of the unique conditions that apply to the setting
How to Maximize Factory Automation Efficiency with Low Cost Machine Vision
This eGuide illustrates solutions, applications and benefits of machine vision systems.
Wireless Reliability in Harsh Environments
Learn how to increase device reliability in harsh environments and decrease unplanned system downtime.
September 2018
Optimize controls via cloud software, ladder logic simulation, industrial wireless best practices
August 2018
Augmented reality and virtual reality education, autotuning PID control, cybersecurity advice, educating engineers
July 2018
Ladder logic best practices and object-oriented programming, safety instrumented systems, enclosure design issues and challenges, process control advice
Edge Computing
This article collection contains several articles on how today's technologies heap benefits onto an edge-computing architecture such as faster computing, better networking, more memory, smarter analytics, cloud-based intelligence, and lower costs.
Data Center Design
Data centers, data closets, edge and cloud computing, co-location facilities, and similar topics are among the fastest-changing in the industry.
PLCs
Programmable logic controllers (PLCs) represent the logic (decision) part of the control loop of sense, decide, and actuate. Featured articles in this digital report compare PLCs and programmable automation controllers (PACs), industrial PCs, and robotic controllers.
SIDB

Find and connect with the most suitable service provider for your unique application. Start searching the Global System Integrator Database Now!

August 2018
SCADA standardization, capital expenditures, data-driven drilling and execution
June 2018
Machine learning, produced water benefits, progressive cavity pumps
April 2018
ROVs, rigs, and the real time; wellsite valve manifolds; AI on a chip; analytics use for pipelines
John O. Ayuk, PE, CFSE, PMP, CAP
Automation Engineer; Wood Group
Doug Baker
System Integrator; Cross Integrated Systems Group
Jose S. Vasquez, Jr.
Jose S. Vasquez, Jr.
Fire & Life Safety Engineer; Technip USA Inc.
Data Centers: Impacts of Climate and Cooling Technology
This course focuses on climate analysis, appropriateness of cooling system selection, and combining cooling systems.
Safety First: Arc Flash 101
This course will help identify and reveal electrical hazards and identify the solutions to implementing and maintaining a safe work environment.
Critical Power: Hospital Electrical Systems
This course explains how maintaining power and communication systems through emergency power-generation systems is critical.
click me