TY - CHAP
T1 - Case Study A
T2 - A Prototype Autonomous Intelligent Cyber-Defense Agent
AU - Blakely, Benjamin
AU - Horsthemke, William
AU - Evans, Nate
AU - Harkness, Daniel
N1 - Publisher Copyright:
© 2023, The Author(s), under exclusive license to Springer Nature Switzerland AG.
PY - 2023
Y1 - 2023
N2 - The AICA International Working Group (IWG) spent 2021 collaboratively developing an initial prototype implementation of the AICA reference architecture, AICAproto21. This prototype was built using open-source software components in a containerized manner to allow for the quickest time-to-completion with maximum flexibility for future capabilities. This prototype was a fully self-contained demonstration of the ability of the agent to respond to an indicated attack with a defensive action, though the scope of scenarios was constrained due to the primary focus on the construction of the framework itself. Future work would include incorporation of computational intelligence (i.e., knowledge representation and automated reasoning components) and additional scenarios. The authors found that the chosen approach did lead to a very easy-to-scale solution that is likely to work in a cross-platform manner. Complicating factors encountered include the difficulty in constructing the framework to operate with various external systems in a generalizable way, and the likely host-system impact of needing to run multiple containers simultaneously to achieve desired functionality, especially when host systems could be low-power “things” such as drones, weapons platforms, et cetera. A critical question to answer as work on AICAproto21 and related experimentation continues is whether the effort required to build a more “ground-up” monolithic application is justified by the potential savings in resource consumption and optimization for the specified purpose.
AB - The AICA International Working Group (IWG) spent 2021 collaboratively developing an initial prototype implementation of the AICA reference architecture, AICAproto21. This prototype was built using open-source software components in a containerized manner to allow for the quickest time-to-completion with maximum flexibility for future capabilities. This prototype was a fully self-contained demonstration of the ability of the agent to respond to an indicated attack with a defensive action, though the scope of scenarios was constrained due to the primary focus on the construction of the framework itself. Future work would include incorporation of computational intelligence (i.e., knowledge representation and automated reasoning components) and additional scenarios. The authors found that the chosen approach did lead to a very easy-to-scale solution that is likely to work in a cross-platform manner. Complicating factors encountered include the difficulty in constructing the framework to operate with various external systems in a generalizable way, and the likely host-system impact of needing to run multiple containers simultaneously to achieve desired functionality, especially when host systems could be low-power “things” such as drones, weapons platforms, et cetera. A critical question to answer as work on AICAproto21 and related experimentation continues is whether the effort required to build a more “ground-up” monolithic application is justified by the potential savings in resource consumption and optimization for the specified purpose.
UR - http://www.scopus.com/inward/record.url?scp=85162031431&partnerID=8YFLogxK
U2 - 10.1007/978-3-031-29269-9_19
DO - 10.1007/978-3-031-29269-9_19
M3 - Chapter
AN - SCOPUS:85162031431
T3 - Advances in Information Security
SP - 395
EP - 408
BT - Advances in Information Security
PB - Springer
ER -