Defence & Security Accelerator (DASA) Competition
This DASA competition seeks proposals for novel approaches to predictive cyber security.
The Defence and Security Accelerator (DASA) has launched a competition to seek novel approaches to predict and counter cyber threats in defence and security. Through Phase 1 of the competition, £1 million of funding is available to fund proof-of-concept technologies, above Technology Readiness Level (TRL) 2. DASA anticipates funding around 5 to 10 proof-of concept research projects of up to 6 months duration. Additional funding may be available for future phases.
A summary of the competition is as follows:
Traditional cyber security methods only respond to known threats. However, as our understanding of adversaries and attack patterns improves, and increased computing power and data growth continues to drive the Artificial Intelligence revolution, new possibilities are emerging to get ahead of threats and predict future cyber attacks.
Computing infrastructure is a key component of nearly all modern defence systems and provides another attack surface for adversaries. Cyber security has been in an arms race for decades, with hackers continuously exposing new vulnerabilities and developers racing to patch them. Approaches to cyber defence have historically been reactive, relying on whitelists, known (virus/malware) signatures, or more recently on broader machine-learning detection methods. Such reactive methods are forensic or, at best, real-time. There has been limited effort in predicting events related to a cyber attack (prior to, or during the attack) and very few fully-developed and deployable tools exist with predictive capability.
Forecasting future events is not a new concept and predictive analytics drives many areas of industry. DASA are interested in novel approaches to cyber security that can predict the most likely offensive cyber events and/or predict optimal defensive cyber actions, to enable proactive defence in a hostile and contested cyber environment. This competition is anticipated to:
- adapt and implement predictive approaches from other industries to the cyber security domain
- create and implement novel predictive analytics specific to the cyber security domain
- exploit empirical observation-based models of attackers to make predictions (for example of adversary tactics, techniques and procedures; of kill-chains; of attacker competency levels)
- automate the assimilation of (text-based) knowledge collected for many systems (such as known risks or vulnerabilities), and transfer that knowledge to new systems that have the same (or similar) components and operating procedures
- develop approaches to recognise patterns of life that are not time-based, but sequence based
- build on alerts from reactive methods to forecast future offensive cyber events, and thereby predict optimal cyber defences
Proposals that are not in scope include: those that focus on theoretical models, or that lack implementation to real data, and those that ingest social media feeds or other public data of a personal nature.
Predicting vulnerabilities in hardware/software, and monitoring the `health’ of a system are only acceptable if used as components in a larger predictive engine.
Proactive intelligence gathering via the use of honeypots is in scope. Proposals that make use of open-source data formats (for example, threat intelligence reporting, sharing and ingesting) are encouraged. Preference may be given to proposals that forecast future events, rather than predict past events that were overlooked.
DASA seeks to promote collaboration between academia and industry to develop novel tools to prediction in the cyber security domain. All proposals should highlight how subsequent phases will build on the initial phase of development and all phases should include a demonstration as a deliverable. The initial phase may make use of data from enterprise systems (such as standard office equipment) but subsequent phases should show capability when using data from military operational technology.
The initial phase may be demonstrated within a representative business enterprise system but subsequent phases should be applicable to the unique systems, circumstances, threats and opportunities that MOD faces.
Details on how to apply will be included in the full competition document, which will soon be available on the competition webpage, which you can find here.
The competition will close at midday on 5 November 2018
Latest News from
techUK members donate $1 million to Take Five campaign to tackle fraud15/09/2021 14:05:00
Tech companies join banking industry to tackle fraud
Announcing September's Geospatial Champion10/09/2021 16:25:00
You can read our exclusive interview with techUK's new Geospatial Champion below #GeospatialFuture.
Young people urged not to miss out on flourishing tech job opportunities10/09/2021 11:25:00
Report by global emerging talent and reskill training provider, mthree has revealed that misconceptions and a lack of awareness are preventing many young people from pursuing technology careers.
Talking 5 with Local Public Services Member Capita09/09/2021 16:25:00
Georgina Maratheftis, Head of Local Public Services, techUK and Paul Abraham, Managing Director & Client Partner – Capita Local Public Service at Capita discuss how digital is transforming local public services and the need for an outcome based approach.
New Border Innovation Hub Goes Live09/09/2021 11:25:00
Cabinet Office has published a Border Innovation Hub where industry can find information and the tools it needs from across Government in order to innovate at the border.
Striking a balance in your hybrid workplace strategy for a greater user experience08/09/2021 16:15:00
The pandemic has managed to accelerate workplace transformation efforts as people shifted from office to digital collaboration from home. Technology has enabled employees to work remotely for more than a decade. But the pandemic has brought it into sharp focus as entire organizations had to adopt remote working. From rapidly adjusting with stopgap measures to ensuring business continuity, to planning on how to get the workforce safely back into the office, we are entering the next phase of hybrid work!
The workplace for the future – How can the cloud support the changing needs of the digital workforce beyond Covid-19?07/09/2021 16:25:00
techUK are on the cusp of a new era where the interaction between office based work, and cloud technology provides an opportunity for an evolution in working practice which can be to everyone’s benefit, writes Tom Boggis of BBG Real Estate.
Tech Industry Gold accreditation extended to training programmes to help tackle digital skills shortages07/09/2021 14:33:00
Building on a long heritage in degrees and degree apprenticeships, Tech Industry Gold accreditation is now extended to intensive training programmes, providing high quality pathways into employment.