Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Government //

Cybersecurity

2/23/2010
03:04 PM
50%
50%

Navy Planning Prototype Cyber-Network Security System

Seeking proposals for a system that ensures cyber operations aren't shut down in the event of a cyber war

The U.S. Navy is seeking proposals for security technologies to build a prototype system that would ensuring cyber operations aren't shut down in the event of a cyber war.

The Navy plans to spend $16 billion through 2015 on the project, according to a notice on the Office of Naval Research Web site.

The notice calls for proposals for a "pro-active cyber network defense and information assurance" solution that can be adapted and integrated into an "advanced prototype."

The prototype "will ensure maximum continuity of cyber operations and availability of national assets and data during cyber conflict," according to the notice.

The Navy also hopes to use the prototype to develop new technologies to protect all data coming and going through the Department of the Navy (DON) networks.

Specifically, the Navy is interested in algorithms for the detection of malware that extend beyond conventional anti-virus detection algorithms, and techniques that discover malware entry points.

Other technologies of interest include: algorithms that can distinguish legitimate network traffic communications from malicious communications; data-mining methods and algorithms for correlating and fusing large-scale complex data sets; security-enabled protocols that ensure proper network functionality during cyber attacks; and protocols that provide network-based configuration and control of security components.

Additionally, proposals are welcome on techniques to map and track the activity of networks and be able to use that information to geo-locate the sources and target of suspicious activity.

The Navy plans to award up to five, and companies have until May 21 to submit proposals.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Stop Defending Everything
Kevin Kurzawa, Senior Information Security Auditor,  2/12/2020
Small Business Security: 5 Tips on How and Where to Start
Mike Puglia, Chief Strategy Officer at Kaseya,  2/13/2020
Architectural Analysis IDs 78 Specific Risks in Machine-Learning Systems
Jai Vijayan, Contributing Writer,  2/13/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
How Enterprises Are Developing and Maintaining Secure Applications
How Enterprises Are Developing and Maintaining Secure Applications
The concept of application security is well known, but application security testing and remediation processes remain unbalanced. Most organizations are confident in their approach to AppSec, although others seem to have no approach at all. Read this report to find out more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-2228
PUBLISHED: 2020-02-19
The XStream extension in HP Fortify SCA before 2.2 RC3 allows remote attackers to execute arbitrary code via unsafe deserialization of XML messages.
CVE-2014-2727
PUBLISHED: 2020-02-19
The STARTTLS implementation in MailMarshal before 7.2 allows plaintext command injection.
CVE-2015-2104
PUBLISHED: 2020-02-19
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
CVE-2014-3622
PUBLISHED: 2020-02-19
Use-after-free vulnerability in the add_post_var function in the Posthandler component in PHP 5.6.x before 5.6.1 might allow remote attackers to execute arbitrary code by leveraging a third-party filter extension that accesses a certain ksep value.
CVE-2016-10000
PUBLISHED: 2020-02-19
Insufficient type checks were employed prior to casting input data in SimpleXMLElement_exportNode and simplexml_import_dom. This issue affects HHVM versions prior to 3.9.5, all versions between 3.10.0 and 3.12.3 (inclusive), and all versions between 3.13.0 and 3.14.1 (inclusive).