.
We have two issues.
·
How to fund a project that will develop
a single stratified knowledge base on events-types that occur in the Internet.
·
How to bring attention to the fact that
the computer security profession is gaining more and more stability based on
the current definition of the problem and its management.
The innovation that we have developed is quite
different from anything that exists otherwise.
A small group of scientists have developed an information system
for visualization of abstractions about event types. Our preliminary work indicates that the system is able to
aggregate the *signature* data at the bit stream level, system call level,
firewall level, Intrusion Detection System (IDS) level, distributed IDS level,
etc; as members of a small set (100 - 1200 in number) of event types at each of
these levels. These event-types are
abstractions, like the counting numbers, and thus provide knowledge without
unnecessary detail.
The binding between levels is based on logic that Prueitt derived
from Soviet information war theory and semiotic control language. Top down control algorithmically connects
details with visualization elements.
The public will "know" what is going on in the Internet and
will be able to take an active role in governing the nature of this new world.
The success of any deep innovation will change some
value propositions for some computer security companies. The BCNGroup Founders are scientists. This has been a difficult issue for our
small group to work with.
Consider the simple question of whether or not the notion of a
Cyber Defense Knowledge Base (CBKM) is scientifically and logically sound. If
so, do cultural and economic barriers block its deployment?
The CDKB could radically change the Nation’s vulnerability to
cyber war and cyber terrorism. A public discussion on issues regarding cyber
threats and the public
involvement solution to Infrastructure design issues are
essential.
BCNGroup.org
Chantilly Virginia
February 12,
2002