OCTOBER 27, 2020 — Researchers in UTSA’s College of Business Cyber Center for Security and Analytics have partnered with Raytheon Intelligence & Space to study the use of artificial intelligence to detect malicious attacks.
The project, funded by a $447,000 grant from Raytheon Intelligence & Space, is being led by Nicole Beebe, professor and chair of UTSA’s Department of Information Systems and Cyber Security; Paul Rad, associate professor of information systems and cyber security; and Eric Bachura, assistant professor of information systems and cyber security. Luis Selvera, a graduate student, is also assisting with the project.
“Today’s security analysts and threat hunters are overloaded with data and mired down by manual processes,” said Beebe. “Automation, cyber analytics, machine learning, artificial intelligence and other enabling technologies need to be integrated into current concepts of operations in order to allow them to spend time on higher-priority mission activities. We are very excited to partner with Raytheon to solve these challenging problems.”
“Raytheon Technologies is proud to partner with UTSA’s world-class faculty who will bring cutting-edge artificial intelligence and machine learning techniques to tackle urgent cyber challenges facing our nation’s computer systems,” said John DeSimone, vice president of Cyber, Training and Services at Raytheon Technologies. “Our partnership with UTSA demonstrates our commitment to leading innovation and to continued development of expertise for our nation’s cyber workforce.”
Identifying abnormal behavior automatically to detect attacks on systems based on operational system and network logs could function as a powerful proactive security tool, especially during a pandemic, since more people are working remotely online.
The joint research with Raytheon Intelligence & Space resulted in anomaly detection from system and network logs using transformer-based AI system, an automated way of detecting abnormal behavior from log files.
“By combining natural language-based learning models, the anomaly detection framework parses the information stored in log data, learns normal behavior from the parsed log data and detects abnormal behaviors from new log entries,” said Rad.
Building upon previous work conducted by Cyber Center faculty, the team built a natural language processing model for detecting time-series patterns on logs. The model’s architecture consists of three components: parsing, training and detection. Then, the team trained the model using “normal” behavior patterns and known threats for predicting future threats.
“With our language model, we wanted to determine if system log files and network logs could be treated similar to finding misinformation in text files or social networks,” said Rad. “Using transformer models, we learned the distribution of good versus bad behavior, which would almost be undetectable to the human eye.”
In phase 2 of the project, which began this fall, the researchers will expand their approach to multimodal log files and build a federated AI algorithm as well as develop a spectral feature based approach to anomaly detection.
UTSA’s Cyber Center for Security and Analytics conducts high-impact, applied cyber security and data science research, development, operations and training to address imperative societal issues and national challenges.
UTSA Today is produced by University Communications and Marketing, the official news source of The University of Texas at San Antonio. Send your feedback to news@utsa.edu. Keep up-to-date on UTSA news by visiting UTSA Today. Connect with UTSA online at Facebook, Twitter, Youtube and Instagram.
Covidence is a systematic & scoping review tool used to streamline the process of screening and reviewing articles. Using this software, research teams can easily import studies, perform automatic deduplication, and extract data using templates. This workshop will show attendees how to start a review in Covidence, add collaborators, and get started on screening.
Virtual (Zoom)In this workshop, attendees will be introduced to Pandas, a Python tool for working with data easily. It makes it simple to organize and analyze information when data is organized and categorized, like spreadsheets or tables.
Group Spot B, John Peace LibraryEach fall and spring semester, students convene at the Main Campus at UTSA with booths, ideas and prototypes. A crowd of judges, local organizations, students, faculty and sponsors walk around and talk to the students about their projects and ask questions. Students get the real-life experience of "pitching" their project with hopes of getting funding or support to move to the next level.
UTSA Convocation Center, Main CampusJoin the doctoral candidates for the Doctoral Conferreal Ceremony and celebrate their accomplishments.
Arts Building Recital Hall, Main CampusCelebrate the graduates from the Carlos Alvarez College of Business, College of Education and Human Development, Margie and Bill Klesse College of Engineering and Integrated Design and University College.
AlamodomeCelebrate the graduates from the College for Health, Community and Policy, College of Liberal and Fine Arts and College of Sciences.
AlamodomeThe University of Texas at San Antonio is dedicated to the advancement of knowledge through research and discovery, teaching and learning, community engagement and public service. As an institution of access and excellence, UTSA embraces multicultural traditions and serves as a center for intellectual and creative resources as well as a catalyst for socioeconomic development and the commercialization of intellectual property - for Texas, the nation and the world.
To be a premier public research university, providing access to educational excellence and preparing citizen leaders for the global environment.
We encourage an environment of dialogue and discovery, where integrity, excellence, respect, collaboration and innovation are fostered.
