Prevention, Detection and Response

Systems are attacked, and sometimes attacks succeed. This area of our expertise includes intrusion and misuse detection, integrity management issues, audit and logging analysis, sensor and alarm design, strike-back mechanisms, dynamic reconfiguration, honeypots and “jails”, cyberforensics, hacker profiling, deception and psychological operations, information warfare, cyberterrorism, criminal law and computer crime.

Prevention, Detection and Response Projects

Autonomous Aggregate Data Analytics in Untrusted Cloud

Principal Investigator: Bharat Bhargava

Better Static Application Security Testing

Principal Investigator: Lin Tan

Characterizing the Threat Hunt Process

Principal Investigator: Jamie Davis