Situ

Title: Situ

Software · Mon Jun 16 00:00:00 EDT 2014

OSTI ID:1232450

Rapidly discovering novel and sophisticated cyber attacks and providing situation aware-ness to analysts are unsolved problems in cyber security. We have developed a platform that scores events in real-time based on probabilistic models to define how typical an event is. This anomaly detection approach is based on unsupervised, probabilistic modeling of data at multiple scales. Scoring events based on multiple scales allows the system to 1) score anomalousness at different levels to detect important events that would otherwise be hidden, and 2) explain to users why an event is anomalous, not just that it is. The system was designed to address several challenges: 1) scaling to very high volume, heterogeneous, streaming data, and 2) minimizing the time from observation to discovery to understanding. The prototype has the real-time framework for pushing scored events to a web-based visualization.

To order this software or receive further information, please fill out the following request: Request Software

Cite

Export

Save

Short Name / Acronym:: SITU; 003750WKSTN00

Version:: 00

Programming Language(s):: Medium: X; OS: Linux; Compatibility: Workstation

Research Organization:: Oak Ridge National Laboratory (ORNL), Oak Ridge, TN (United States)

Sponsoring Organization:: u

Contributing Organization:: John R. Goodall and Joel W. Reed

DOE Contract Number:: AC05-00OR22725

OSTI ID:: 1232450

Country of Origin:: United States

Similar Records

nSnare™

Software · Tue Sep 22 00:00:00 EDT 2015 · OSTI ID:1232450

Hoying, Andrew

Situational Awareness of Network System Roles (SANSR)

Software · Fri Jan 18 00:00:00 EST 2019 · OSTI ID:1232450

Huffer, Kelly M.; Reed, Joel W.

Opdefender Network Monitoring And Control System

Software · Tue Apr 06 00:00:00 EDT 2021 · OSTI ID:1232450

Johnson, Briam E.; McCarty, Michael V.; Watts, Kristopher

Title: Situ

Citation Formats

Similar Records

Related Subjects