NCSA CyberSecurity Team Awarded NSF Grants

January 21, 2016

Jan. 21 — In a span of 24 hours, The CyberSecurity team at the NCSA received news on four grants—two for continuing work, and two for starting new projects.

At the beginning of September, Alex Withers, senior security engineer for the CyberSecurity team, was awarded a $499,136 grant from the National Science Foundation (NSF) to build a tool to detect malicious activity. Designed to fit inside an existing security environment, the tool consumes security logs and examines separate events that may have led up to malicious activity.

For example, if a desktop reaches out remotely to another computer, it might not be malicious activity. However, if someone received a suspicious email, downloaded a program from the email, and then experienced their desktop reaching out to another computer, it could be suspicious.

Withers acknowledges that it can be hard to link events that are seemingly unrelated, and more difficult to link them correctly without being influenced by confirmation bias. The tool, called “AttackTagger,” is meant to make it easier to link events without getting false results.

The tool stems from research by professor of electrical and computer engineering Ravi Iyer’s DEPEND group, providing a practical application for the data and research.

“It’s a great idea to transform research into a tool readily deployed,” Withers says.

The research was the result of a five-year span of data taken from the NCSA’s incident reports written by security analysts. In those, analysts went back after the fact, looked at the logs of events that occurred and determined what events happened in sequence. The DEPEND group used NCSA’s data in their research and development of the AttackTagger tool.

Eric Badger, a graduate student working with DEPEND, works on architecture for data flow, or a pipeline, to help confirm that AttackTagger works well. The attack detection happens in real time, as the events move from the host and network through the pipeline, where they end up in attack detection software. While the previous research dealt with an ideal set of events, Badger’s current research deals with practical, real-world events.

“We might not get exactly the same false-positive and true-positive levels that we had in our previous research,” Badger says. “But we’re hoping for at least something that is fairly manageable, and that we can improve on in a real world setting.”

One thing that Badger made sure of was that the source code for the pipeline architecture was open source, or available for anyone to look at or change.

“You can take this system and mold it to be your own easily, instead of taking this prepackaged, ‘take-it-or-leave-it’ kind of thing,” Badger says.

Withers, along with Integrated CyberInfrastructure director Randal Butler and CyberSecurity director Adam Slagell, received a $499,206 grant to create Science DMZ Actionable Intelligence Appliance (SDAIA), which enhances the security infrastructure of open science networks.

The Science DMZ model benefits universities in how it allows them to transfer large amounts of data without firewalls or other devices in the way.

SDAIA will help keep those open networks secure.

Since some universities may be able to share computing capabilities but have limited IT departments, so SDAIA keeps the front part of the network secure. One part is through a honeypot, a mechanism that lures attackers in and then uses the information gathered against them. The other part is how it benefits universities by sharing data about attacks, which can alert other sites of threats.

By sharing data, SDAIA allows researchers to possibly see patterns in the attacks. Through this, it provides the opportunity to strengthen the security of sites and lets researchers be able to focus on more important things.

“What Science DMZ protects are mainly networks to facilitate science. If they’re not secured, it ends up disrupting resources, spending more time preventing attacks, which prevents the science from flowing,” Withers says.

Slagell notes that the SDAIA and the Science DMZ are both small pieces of a bigger puzzle.

“The Science DMZ is helping to remove bottlenecks in science, and we’re helping to secure (the Science DMZ) so that those resources are available and people start making use of them and connecting these together,” Slagell said. “It’s part of a larger goal for NSF, building up this infrastructure and building out across the nation, investing in it. It’s part of a longer story.”

The other grants allowed senior research scientist Jim Basney to continue work on CILogon and the Center for Trustworthy Scientific Cyberinfrastructure (CTSC).

Awarded a $499,973 grant, CILogon 2.0 is a project that works to allow researchers to access online resources like supercomputers, wikis and data stores by using their campus credentials. It allows scientists to spend less time on setting up security and identity verification systems and more time on their scientific collaboration. The CILogon project began in September of 2009, and CILogon 2.0 is the “next generation of CILogon,” says Basney.

In addition to taking the project to an international level, Basney is also utilizing COManage to manage groups of researchers and let researchers “define the membership of their collaboration.” Basney is working with the COManage experts at Spherical Cow Group on this aspect of the project.

For example, if a researcher used CILogon, it can tell who the person is, but won’t know if they’re a member of a group, which is needed to allow data sharing with the other people in that group.

“Projects that are using the current CILogon are required to provide their own group management capability, but when we bring COManage into CILogon 2.0, then we give them a bundled solution so that they get the identity and group management together.”

The other project that Basney is part of—CTSC—was started in October of 2012. The NSF awarded the project a follow-on grant of $4,999,709 to continue for another three years. Of that total grant, $1,374,035 is budgeted for the NCSA.

The CTSC project, led by Indiana University in partnership with NCSA, Pittsburgh Supercomputing Center, and University of Wisconsin, aims to help other NSF projects improve their security.

The CTSC works with projects to develop security plans and solve technical security problems. CTSC staff work with people on the project they’re assisting to produce a report, technical results or a security program plan the project can implement.

In addition to working with projects individually, the CSTC also holds a cybersecurity summit each August where representatives of the NSF facilities discuss their security challenges and host presentations.

Source: Susan Szuch, NCSA

Subscribe to HPCwire's Weekly Update!

Be the most informed person in the room! Stay ahead of the tech trends with industy updates delivered to you every week!

NSF Project Sets Up First Machine Learning Cyberinfrastructure – CHASE-CI

July 25, 2017

Earlier this month, the National Science Foundation issued a $1 million grant to Larry Smarr, director of Calit2, and a group of his colleagues to create a community infrastructure in support of machine learning research Read more…

By John Russell

DARPA Continues Investment in Post-Moore’s Technologies

July 24, 2017

The U.S. military long ago ceded dominance in electronics innovation to Silicon Valley, the DoD-backed powerhouse that has driven microelectronic generation for decades. With Moore's Law clearly running out of steam, the Read more…

By George Leopold

Graphcore Readies Launch of 16nm Colossus-IPU Chip

July 20, 2017

A second $30 million funding round for U.K. AI chip developer Graphcore sets up the company to go to market with its “intelligent processing unit” (IPU) in 2017 with scale-up production for enterprise datacenters and Read more…

By Tiffany Trader

HPE Extreme Performance Solutions

HPE Servers Deliver High Performance Remote Visualization

Whether generating seismic simulations, locating new productive oil reservoirs, or constructing complex models of the earth’s subsurface, energy, oil, and gas (EO&G) is a highly data-driven industry. Read more…

Trinity Supercomputer’s Haswell and KNL Partitions Are Merged

July 19, 2017

Trinity supercomputer’s two partitions – one based on Intel Xeon Haswell processors and the other on Xeon Phi Knights Landing – have been fully integrated are now available for use on classified work in the Nationa Read more…

By HPCwire Staff

NSF Project Sets Up First Machine Learning Cyberinfrastructure – CHASE-CI

July 25, 2017

Earlier this month, the National Science Foundation issued a $1 million grant to Larry Smarr, director of Calit2, and a group of his colleagues to create a comm Read more…

By John Russell

Graphcore Readies Launch of 16nm Colossus-IPU Chip

July 20, 2017

A second $30 million funding round for U.K. AI chip developer Graphcore sets up the company to go to market with its “intelligent processing unit” (IPU) in Read more…

By Tiffany Trader

Fujitsu Continues HPC, AI Push

July 19, 2017

Summer is well under way, but the so-called summertime slowdown, linked with hot temperatures and longer vacations, does not seem to have impacted Fujitsu's out Read more…

By Tiffany Trader

Researchers Use DNA to Store and Retrieve Digital Movie

July 18, 2017

From abacus to pencil and paper to semiconductor chips, the technology of computing has always been an ever-changing target. The human brain is probably the com Read more…

By John Russell

The Exascale FY18 Budget – The Next Step

July 17, 2017

On July 12, 2017, the U.S. federal budget for its Exascale Computing Initiative (ECI) took its next step forward. On that day, the full Appropriations Committee Read more…

By Alex R. Larzelere

Women in HPC Luncheon Shines Light on Female-Friendly Hiring Practices

July 13, 2017

The second annual Women in HPC luncheon was held on June 20, 2017, during the International Supercomputing Conference in Frankfurt, Germany. The luncheon provid Read more…

By Tiffany Trader

Satellite Advances, NSF Computation Power Rapid Mapping of Earth’s Surface

July 13, 2017

New satellite technologies have completely changed the game in mapping and geographical data gathering, reducing costs and placing a new emphasis on time series Read more…

By Ken Chiacchia and Tiffany Jolley

Intel Skylake: Xeon Goes from Chip to Platform

July 13, 2017

With yesterday’s New York unveiling of the new “Skylake” Xeon Scalable processors, Intel made multiple runs at multiple competitive threats and strategic Read more…

By Doug Black

Google Pulls Back the Covers on Its First Machine Learning Chip

April 6, 2017

This week Google released a report detailing the design and performance characteristics of the Tensor Processing Unit (TPU), its custom ASIC for the inference Read more…

By Tiffany Trader

Nvidia Responds to Google TPU Benchmarking

April 10, 2017

Nvidia highlights strengths of its newest GPU silicon in response to Google's report on the performance and energy advantages of its custom tensor processor. Read more…

By Tiffany Trader

Quantum Bits: D-Wave and VW; Google Quantum Lab; IBM Expands Access

March 21, 2017

For a technology that’s usually characterized as far off and in a distant galaxy, quantum computing has been steadily picking up steam. Just how close real-wo Read more…

By John Russell

HPC Compiler Company PathScale Seeks Life Raft

March 23, 2017

HPCwire has learned that HPC compiler company PathScale has fallen on difficult times and is asking the community for help or actively seeking a buyer for its a Read more…

By Tiffany Trader

Trump Budget Targets NIH, DOE, and EPA; No Mention of NSF

March 16, 2017

President Trump’s proposed U.S. fiscal 2018 budget issued today sharply cuts science spending while bolstering military spending as he promised during the cam Read more…

By John Russell

CPU-based Visualization Positions for Exascale Supercomputing

March 16, 2017

In this contributed perspective piece, Intel’s Jim Jeffers makes the case that CPU-based visualization is now widely adopted and as such is no longer a contrarian view, but is rather an exascale requirement. Read more…

By Jim Jeffers, Principal Engineer and Engineering Leader, Intel

Nvidia’s Mammoth Volta GPU Aims High for AI, HPC

May 10, 2017

At Nvidia's GPU Technology Conference (GTC17) in San Jose, Calif., this morning, CEO Jensen Huang announced the company's much-anticipated Volta architecture a Read more…

By Tiffany Trader

Facebook Open Sources Caffe2; Nvidia, Intel Rush to Optimize

April 18, 2017

From its F8 developer conference in San Jose, Calif., today, Facebook announced Caffe2, a new open-source, cross-platform framework for deep learning. Caffe2 is the successor to Caffe, the deep learning framework developed by Berkeley AI Research and community contributors. Read more…

By Tiffany Trader

Leading Solution Providers

How ‘Knights Mill’ Gets Its Deep Learning Flops

June 22, 2017

Intel, the subject of much speculation regarding the delayed, rewritten or potentially canceled “Aurora” contract (the Argonne Lab part of the CORAL “ Read more…

By Tiffany Trader

Reinders: “AVX-512 May Be a Hidden Gem” in Intel Xeon Scalable Processors

June 29, 2017

Imagine if we could use vector processing on something other than just floating point problems.  Today, GPUs and CPUs work tirelessly to accelerate algorithms Read more…

By James Reinders

Russian Researchers Claim First Quantum-Safe Blockchain

May 25, 2017

The Russian Quantum Center today announced it has overcome the threat of quantum cryptography by creating the first quantum-safe blockchain, securing cryptocurrencies like Bitcoin, along with classified government communications and other sensitive digital transfers. Read more…

By Doug Black

MIT Mathematician Spins Up 220,000-Core Google Compute Cluster

April 21, 2017

On Thursday, Google announced that MIT math professor and computational number theorist Andrew V. Sutherland had set a record for the largest Google Compute Engine (GCE) job. Sutherland ran the massive mathematics workload on 220,000 GCE cores using preemptible virtual machine instances. Read more…

By Tiffany Trader

Google Debuts TPU v2 and will Add to Google Cloud

May 25, 2017

Not long after stirring attention in the deep learning/AI community by revealing the details of its Tensor Processing Unit (TPU), Google last week announced the Read more…

By John Russell

Groq This: New AI Chips to Give GPUs a Run for Deep Learning Money

April 24, 2017

CPUs and GPUs, move over. Thanks to recent revelations surrounding Google’s new Tensor Processing Unit (TPU), the computing world appears to be on the cusp of Read more…

By Alex Woodie

Six Exascale PathForward Vendors Selected; DoE Providing $258M

June 15, 2017

The much-anticipated PathForward awards for hardware R&D in support of the Exascale Computing Project were announced today with six vendors selected – AMD Read more…

By John Russell

Top500 Results: Latest List Trends and What’s in Store

June 19, 2017

Greetings from Frankfurt and the 2017 International Supercomputing Conference where the latest Top500 list has just been revealed. Although there were no major Read more…

By Tiffany Trader

  • arrow
  • Click Here for More Headlines
  • arrow
Share This