Skip to content Skip to navigation
Seminar
11/20/2014 11:00 am
CoRE Lecture Hall (Room 101)

ARL Cyber Research and Challenges

Dr. Robert Erbacher, Army Research Laboratory (ARL)

Organizer(s): Tina Eliassi-Rad

Abstract

This talk will discuss research at the Army Research Laboratory related to computer security focused on developing foundational knowledge that will lead to the development of novel techniques capable of dealing with real-world cybersecurity scenarios of the future, i.e., sophisticated threats. Future cybersecurity scenarios will necessitate moving away from strictly signature and pattern–based detection techniques and aiding analysts in dealing with the scale of ever increasing numbers of events. Specific research includes:

* Models that aid comprehension of the cyber domain and the challenges and interrelationships therein.

* Development of techniques to aid in “fighting through” attacks and compromises such that missions can be accomplished even under the most adverse conditions, e.g., moving target defense and agility paradigms.

* Novel detection and support techniques. The desire is to develop breakthrough intrusion detection techniques through revolutionary approaches and views of the problem or solution domain. Additionally, how can we support the intrusion detection process to make it more efficient and effective? The goal is to consider redesigning sensors, data transmission and storage paradigms, computational algorithms, incorporate data semantics and context, etc.

* Enable better training, more effective cyber tool development, and reduced cognitive load through the derivation of models of cyber defender cognitive processes.

* Enable novel cognitively oriented display techniques to visually analyze the cyber domain, assess situational awareness, and identify sophisticated adversaries with reduced cognitive load based on proven scientific foundations. Focus especially on the development of the underlying scientific foundations of display approaches.

* The ultimate goal of our research is the defense of complex networks, i.e., tactical networks and the associated soldiers in the field. Such tactical networks incorporate unique challenges due to the dynamic nature of the environment and resource constraints.

Bio

Dr. Erbacher is a computer scientist performing cyber security research at the Army Research Laboratory (ARL) in Adelphi, MD. At ARL, Dr. Erbacher leads research in detection and cognitive foundations of cyber analysts. Dr. Erbacher was cooperative agreement manager (CAM) for the Science for Cyber cooperative agreement (2011-2014), collaborates on the detection focal area of the cyber security collaborative research alliance (Cyber CRA), is the Contracting Officer Representative (COR) for a Phase II SBIR on “Novel Detection Mechanisms for Advanced Persistent Threat”, and is currently the COR for the Applied Research and Experimentation Partner (AR&EP) contract; the AR&P is the industrial partner for the Cyber CRA. Dr. Erbacher is heavily involved in the international community participating in “The Technical Cooperation Program (TTCP), a five-eye focused research cooperation program, and NATO IST-108 (Cyber Defense Situational Awareness). Before joining ARL he was a senior principal scientist with the Northwest Security Institute (NWSI), a non-profit research organization based in Redmond, WA. Prior to joining NWSI, Dr. Erbacher was faculty in the Department of Computer Science Department at Utah State University.  Dr. Erbacher is an Associate Editor for the Journal of Electronic Imaging, Chaired the SPIE Conference on Visualization and Data Analysis for 13 years, was a steering committee member for the SPIE Conference on Visualization and Data Analysis through 2014, was general chair of the Workshops on Systematic Approaches to Digital Forensics Engineering for two years, and currently serves on the steering committee for the Workshops on Systematic Approaches to Digital Forensics Engineering. Dr. Erbacher is on numerous other program committees related to digital forensics, computer security, and visualization and performs extensive reviewing for conferences and journals in these areas. Dr. Erbacher has over 80 publications in these research areas. In keeping with his research interests Dr. Erbacher spent the summers of 2004 through 2006 at AFRL's Rome Labs developing visualization for intrusion detection techniques for the air force under their summer faculty fellowship program. Dr. Erbacher received his BS in Computer Science from the University of Lowell in 1991 and his MS and ScD degrees in Computer Science from the University of Massachusetts-Lowell in 1993 and 1998, respectively.  Dr. Erbacher’s research interests lie in digital forensics, situational awareness, computer security, information assurance, intrusion detection, visualization, cyber-terrorism, and cyber command and control.