|Student Name:||Michael Knight, Capt|
|Thesis:||Development of a Response Planner Using UCT Algorithm for Cyber Defense|
|Location:||Bldg 640 Rm 317|
|Date & Time:||02/26/2013 at 0900|
|Abstract:|| A need for a quick response to cyber attacks is a prevalent problem for computer network operators today. There is a small window to respond to a cyber attack when it occurs to prevent significant damage to a computer network. Automated response planners offer one solution to resolve this issue. This work presents Network Defense Planner System (NDPS), a planner dependent on the effectiveness of the detection of the cyber attack. This research first explores making classification of network attacks faster for real-time detection, the basic function Network Intrusion System (IDS) provides. After identifying the type of attack, learning the rewards from the operator to use in a planner is the second important area of this research. Using neural networks, the second area of this research demonstrates that capturing the preferences through samples is feasible. NDPS is implemented as the final area which uses the UCT algorithm which allows for quick plan formulation by searching through predicted network states based on available network actions. Results demonstrate the feasibility of NDPS to be used in real world scenarios since the optimal plans for each attack type can be formulated in real-time allowing for a rapid system response.