| Integrated Fault/Intrusion Detection and Correlation | |
|---|---|
| Chadha, Ritu ORGANIZER: Chadha, Ritu | |
| This session will discuss the state of the art in the areas of intrusion detection, fault diagnosis, and correlation of network intrusion events with network failures. With the advent of the networked battlefield, automated fault and intrusion detection have become increasingly critical components for the future forces. Programs such as Future Combat Systems require advanced intrusion detection capabilities to ensure integrity and protection of military networks. Soft as well as hard faults must be correlated with network intrusions in order to produce a coherent view of the network fault status. In addition to fault and intrusion detection, sophisticated correlation capabilities will be required to be able to sift through the large volumes of data and alerts produced by intrusion and fault detection systems. Correlation should take into account not only security-related alerts, but should be able to correlate such alerts with network events such as performance degradation, service unavailability, and hard failures, in order to diagnose root causes of network problems. Finally, techniques for automatically responding to diagnosed attacks and network faults including degradations are of paramount importance to maximize the level of automation of battlefield networks. | |
| Dr. Ritu Chadha is Chief Scientist and Director of the Policy Management research group in Applied Research at Telcordia Technologies, where she has been working since 1992. She is the Chief Engineer for Telcordia's Future Combat Systems (FCS) Network Management System subcontract with Northrop Grumman. She was the program manager for the CERDEC DRAMA (Dynamic Re-Addressing and Management for the Army) project, a 5-year Science and Technology Objective (STO) focused on the design, prototyping, and field demonstration of a policy-based network management system for mobile ad hoc networks. Dr. Chadha is an active participant in standards bodies such as the IETF. She has presented tutorials and invited speeches at several industry conferences and has published over 50 refereed papers in journals and conferences. She has presented tutorials and invited speeches at several industry conferences. Dr. Chadha received her Ph.D. in Computer Science from the University of North Carolina at Chapel Hill in 1991. Her research interests include policy-based management, network and service management for IP-based networks, ad hoc networking, and automated reasoning. | |