CYBER Physical Systems
STR’s Cyber Physical Systems group is a premier innovator and provider of technology solutions for cybersecurity challenges facing the DoD. These solutions secure both legacy and emerging military platforms as well as assess existing systems to rapidly identify and mitigate complex vulnerabilities. STR’s approach to cybersecurity is differentiated by our multi-disciplinary approach; we work in small teams across diverse technologies including: reverse engineering, vulnerability research, formal methods, model-based engineering, machine learning, signal processing, and optimization. This approach enables STR to satisfy the full spectrum of cybersecurity applications.
Autonomous Botnet Cleansing
A key challenge today is the proliferation of botnets—networks of infected computers and devices controlled by an attacker. These botnets can infect public and private computer infrastructure, controlling millions of nodes from large servers to small internet-of-things devices. Attackers can use the infected nodes to launch coordinated cyber-attacks to steal valuable information or disrupt operations. Botnets are extremely difficult to eliminate owing to their distributed nature and span across borders and networks.
STR is exploring how to autonomously identify and neutralize botnet implants. We are developing formally verified software agents that can propagate through networks using advanced artificial intelligence planning algorithms. Our agents perform lateral movement within and across networks, while managing the risk of undesirable side-effects to the host networks. The agents propagate until they reach the infected nodes and then autonomously deploy neutralization effects to cleanse or mitigate the botnet infections. Formal verification ensures that the agents comply with rules of operation.