Galois has received a $6 million contract from the Defense Advanced Research Projects Agency to develop a technology platform that will work to identify cyber threats within enterprise network and system environments.
The company said Monday it will collaborate with the University of Edinburgh, Xerox’s PARC company and Oregon State University to build the Diagnostic Approach for Persistent Threat Detection system against advanced persistent threats.
The ADAPT system will be designed to help system administrators identify malicious activities through analysis of long-term behavior patterns and causality in system activity.
“By tracing the computational provenance of APTs, and by detecting subtle behavioral anomalies that distinguish APTs from normal business logic, ADAPT will offer system operators enhanced situational awareness about security of their networks,” said David Archer, research lead for cryptography and multiparty computation at Galois.
The project is part of DARPA’s Transparent Computing program that aims to give computer users real-time insight into component behaviors during operation as well as help them track cyber threats and facilitate root cause and damage analyses.