Skip to Main Content U.S. Department of Energy
Asymmetric Resilient Cybersecurity

Research Agenda

We are delivering the theory, processes, methodologies, and algorithms that will enable a resilient cyber infrastructure with an asymmetric advantage to thwart adversaries who seek to infiltrate and damage our national security through digital means.

Asymmetric Resilient Cybersecurity

Three-tiered approach

  • Theory of resilience that allows us to manipulate asymmetry
  • Models and metrics that inform the quality of resilience
  • Methods that provide validation of the approach

Across layers

  • Treat systems as attributes

Look in, not out

  • Assume the adversary is already in
  • Focus on achieving mission
  • Sense problems by loss of functionality

ARC Project Alignment

Asymmetric Resilient Cybersecurity

The ARC resilience concept is built on a modification of the Observe-Orient-Decide-Act (OODA) loop that is inward-focused. We call this the DRDA loop, or the Discover-Reason-Decide-Act loop.

Through our projects, we are developing and bringing in technologies that address each quadrant and that will manipulate networks and systems.

Components in this loop are relevant for non-resilience applications as well, including state-based sensors, awareness of complex systems, and decision support.

The Cyber Environment

Asymmetric Resilient Cybersecurity

Cyber systems are fuzzy and have systems connected by networks, users, data, and applications spread around them. Pieces of this environment are in flux, and will continue to be made worse with trends such as bring your own device and IoT. The technology loop we are building sits on top of this complex system and uses the sources of information (sensors, log files, etc.), along with novel model-based metrics using data that is already in the system, to inform our analysis and reasoning. Findings can be directly connected back to the system to change it at points where change is possible (configuration points, or other control points), or to inform a human what is going on for the purpose of decision support.

Asymmetric Resilient Cybersecurity

The ARC Team