The Advanced Host-Level Surveillance (AHLS) DND/NSERC project – Final report

PDF

Authors
  1. Couture, M.
Corporate Authors
Defence Research and Development Canada, Valcartier Research Centre, Quebec QC (CAN)
Abstract
The detection of anomalies in deployed software systems (during their operation) is an important challenge that must be addressed on a continuing basis. These systems are complex and imperfect, and will always suffer from unknown vulnerabilities that could be exploited by malicious software, using methods that become ever more complex as time goes by. Another aspect of the problem concerns the commercial security systems that provide anomaly and undesirable behaviour detection. Often, the detection surface of these systems is incomplete. Further, certain types of detectors, despite contributing to the completion of said detection surface, suffer from sometimes very high false positive rates, which makes them impractical. DRDC, an agency of DND, sets up research and development projects that aim to develop new technologies that could improve the anomaly detection capabilities of defence software systems. The DND/NSERC programme is often used to define and initiate such projects. One of these is the four-year “Advanced Host-Level Surveillance (AHLS)” project. Researchers from the academic, industrial and DRDC communities joined together to form a research team that sought to improve the following aspects of online software system surveillance: a) the online capture and management of data representative of the systems’ behaviours and states, and b) the analysis of these data in order to detect software anomalies with as low/high false/true positive rates as possible. These

Il y a un résumé en français ici.

Keywords
Cyber-threat;Online cyber-surveillance;software system
Report Number
DRDC-RDDC-2017-R003 — Scientific Report
Date of publication
01 Jan 2017
Number of Pages
125
DSTKIM No
CA044544
CANDIS No
805127
Format(s):
Electronic Document(PDF)

Permanent link

Document 1 of 1

Date modified: