You are here

GRASP: Global Recognition of Attacker Signatures and Policy Response

Award Information
Agency: Department of Defense
Branch: Air Force
Contract: FA8650-10-M-1757
Agency Tracking Number: O092-IA1-1060
Amount: $98,644.00
Phase: Phase I
Program: SBIR
Solicitation Topic Code: OSD09-IA1
Solicitation Number: 2009.2
Timeline
Solicitation Year: 2009
Award Year: 2009
Award Start Date (Proposal Award Date): 2009-11-10
Award End Date (Contract End Date): 2010-08-09
Small Business Information
211 N 1st St. Suite 300
Minneapolis, MN 55401
United States
DUNS: 103477993
HUBZone Owned: No
Woman Owned: Yes
Socially and Economically Disadvantaged: No
Principal Investigator
 Dan Thomsen
 Senior Research Scientist
 (612) 789-0559
 dthomsen@sift.info
Business Contact
 Harry Funk
Title: Vice President of Research and Deve
Phone: (612) 578-7438
Email: hfunk@sift.info
Research Institution
N/A
Abstract

GRASP integrates three innovative new technologies: application intrusion detection, proactive deception of attackers, and application intrusion response into technology to collect intelligence on the humans behind cyber attacks and adapt the mandatory operating system policy to prevent the intrusion in the future. Once detected, intruders are silently redirected to the secure GRASP Deception Shell, a software decoy. The Deception Shell presents varying sequences of stimuli. The attackers responses reveal information about the human behind the attack, such as what languages they speak, their cultural knowledge, and their attack skills and resources. Using data mining techniques these attacker metrics create attacker signatures that identify or partially identify the attacker. In response to the intrusion GRASP also adapts the low-level security policy to prevent the intrusion in the future, by monitoring and adapting resource accesses. Safety mechanisms are in place to ensure the evolving security policy does not impact legitimate users conducting mission critical tasks. Together the GRASP components provide intelligence and security currently unavailable to critical applications.

* Information listed above is at the time of submission. *

US Flag An Official Website of the United States Government