Sign In

Communications of the ACM

ACM Careers

Computer Scientists Will Describe Software at Virtual Cyber Conference


View as: Print Mobile App Share: Send by email Share on reddit Share on StumbleUpon Share on Hacker News Share on Tweeter Share on Facebook
Sandia computer scientists Vince Urias and Adrian Chavez

Computer scientists Vince Urias (left) and Adrian Chavez (right) will present Sandia cybersecurity tools at a virtual DOE conference.

Credit: Randy Montoya / Sandia National Laboratories

Two Sandia National Laboratories computer scientists have developed cybersecurity platforms they will describe at the Cybersecurity Technology Virtual Showcase. Adrian Chavez and Vince Urias will pitch their software to investors, entrepreneurs, and prospective customers during the virtual conference, which runs July 21-to-30 and is sponsored by the U.S. Department of Energy.

Chavez and Urias led the creation of four technologies to be showcased.

Chavez and his team created an ability to continuously update software without any downtime, making critical systems more secure without affecting their availability.

Called Containerized Application Security for Realtime Software Upgrade and Patching, or CAPSec, the platform runs multiple copies of software simultaneously. One runs while another is updated. Then they seamlessly swap places without dropping any information.

Sandia has also developed Artificial Diversity and Defense Security, or ADDSec, which automatically detects threats within industrial control system computing environments in real time. Machine-learning algorithms recognize anomalous behavior and then classify these anomalies into categories of attacks.

Cloud Hypervisor Forensics and Incident Response Platform, or CHIRP, is a cloud-based platform that enables analysts to track and record attacker actions for forensic analysis. The platform may also be used to disrupt malicious copying, deleting, encrypting, and relocating of data in a cloud-based environment.

CHIRP collects evidence when adversaries attempt to gain access to unauthorized information through malicious online activity and provides information to incident responders in real time without disturbing the user's work or alerting the intruder.

Rather than simply blocking a discovered intruder, Sandia technology can ensnare them in an alternative reality. The High-fidelity Adaptive Deception & Emulation System (Hades) feeds a hacker not what he needs to know but what he wants to believe.

The discovered hacker is led unobtrusively into Hades, where cloned virtual hard drives, memory, and data sets simulate reality. Certain artifacts have been deliberately, but not obviously, altered.

Cyber Capital Partners, a Washington, D.C.-based investment and consulting firm, made the final selection of technologies to be showcased and will host the event in support of the Department of Energy.

Those interested in attending the Cybersecurity Technology Virtual Showcase can register online at www.cybercp.com/doeinl.


 

No entries found