IARPA preps insider threat monitoring projects
The intelligence community will host a meeting next month to brief IT firms on research into insider threat monitoring systems.
The conference, to be hosted by the Intelligence Advanced Research Projects Agency (IARPA), will provide background for an upcoming solicitation on the Scientific Advances to Continuous Insider Threat Evaluation (SCITE) program.
The SCITE program seeks to develop and test methods to detect insider threats through two separate research tracks, IARPA said.
The first track will lead to a new class of indicators, called active indicators, and associated automated detection tools. The SCITE program will develop and rigorously test a diverse array of potential active indicators.
The second track of research will develop Inference Enterprise Models (IEM) that forecast the accuracy of an enterprise in detecting potential threats. SCITE research will develop flexible IEM approaches that could be used to forecast performance of subsets of an enterprise or complete enterprise models.
The SCITE program expects to draw upon the strengths of academia and industry through a number of collaborative and multidisciplinary teams that might be composed of computer scientists, data scientists, social and behavioral scientists, mathematicians, statisticians and subject matter experts.
Meanwhile IARPA has other security irons in the fire. The intell agency’s Cyber-attack Automated Unconventional Sensor Environment (CAUSE) program funds what the organization calls "unconventional" techniques for predicting cyberattacks.
The program aims to detect threats “hours to weeks” ahead of current methods, Robert Rahmer, an IARPA program manager told FCW.
Technology supported by the CAUSE include tools to harvest big data and models for threat forecasting.
"Successful proposers will combine cutting-edge research with the ability to develop robust forecasting capabilities from multiple sensors not typically used in the cyber domain," said an IARPA description of the CAUSE program.
Preparation for both programs are moving forward a month after the White House announced plans for a new cyber threat agency in the Office of the Director of National Intelligence to help integrate threat intelligence gathering and analysis.
Connect with the GCN staff on Twitter @GCNtech.