You are here

Toolkit for Managing Evaluation and Testing for Red Team Investigations of Cyber Security (METRICS)

Award Information
Agency: Department of Defense
Branch: Air Force
Contract: FA8750-13-C-0080
Agency Tracking Number: O123-IA1-1034
Amount: $149,952.00
Phase: Phase I
Program: SBIR
Solicitation Topic Code: OSD12-IA1
Solicitation Number: 2012.3
Timeline
Solicitation Year: 2012
Award Year: 2013
Award Start Date (Proposal Award Date): 2013-02-25
Award End Date (Contract End Date): 2013-08-25
Small Business Information
625 Mount Auburn Street
Cambridge, MA -
United States
DUNS: 115243701
HUBZone Owned: No
Woman Owned: No
Socially and Economically Disadvantaged: No
Principal Investigator
 Sean Guarino
 Senior Scientist
 (617) 491-3474
 sguarino@cra.com
Business Contact
 Mark Felix
Title: Contracts Manager
Phone: (617) 491-3474
Email: mfelix@cra.com
Research Institution
N/A
Abstract

Adversaries have become increasingly proficient at cyber attacks against our military"s command and control (C2) infrastructure. Maintaining security requires high-fidelity assessments of software services, often implemented as cyber Red Team exercises in which Systems Under Test (SUTs) are subjected to attacks designed to evaluate defensive capabilities. These tests produce massive amounts of data with subtle patterns and effects that can be difficult to interpret post-experimentally, let alone in real time where these effects would enable more thorough, dynamic, and realistic testing of SUT security. To address this need, we propose to design and demonstrate a toolkit for Managing Evaluation and Testing for Red Team Investigations of Cyber Security (METRICS). The METRICS toolkit includes four key components: (1) a library of contextualized metrics that incorporate a full understanding of system and attack implications to support real-time assessment of the SUT cyber defense; (2) intuitive authoring tools for customizing and developing metrics for evolving SUTs, attacks, and experiment needs; (3) adaptable and adaptive visualizations that present analysis results in manner that ensures observability of critical patterns during ongoing experiments; and (4) a collection harness that employs COTS packet sniffers and agent-based data collection tools to non-intrusively collect data for analysis.

* Information listed above is at the time of submission. *

US Flag An Official Website of the United States Government