Security News > 2020 > March > SymTCP: New approach to protecting Army systems without massive amounts of manual intervention

SymTCP: New approach to protecting Army systems without massive amounts of manual intervention
2020-03-09 04:00

An approach to network security that will enhance the effectiveness and timeliness of protection against adversarial intrusion and evasion strategies, has been identified by the Army's corporate laboratory researchers in collaboration with the University of California, Riverside.

To rapidly protect Army systems from attack in ways that don't require massive amounts of manual intervention, the researchers have developed and approach called SymTCP. What is SymTCP?

SymTCP is a proposed approach that can be used to identify previously unknown ways to bypass deep packet inspection, or DPI, checks in networked appliances, often what internet service providers use to prevent malicious attacks from being launched or to censor certain content.

"Identifying strategies that attackers use to evade DPI in networked systems has been generally a manual process," said Dr. Kevin Chan, researcher at the U.S. Army Combat Capabilities Development Command's Army Research Laboratory.

According to the researchers, information must be securely transmitted between domains and within domains for various Army functions, making this research crucial to each of the Army Modernization Priorities in support of enabling Multi-Domain Operations, with direct applicability to the Army's Network Modernization Priority.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/S5-0xGAEppw/