{"id":3779,"date":"2023-05-04T16:03:00","date_gmt":"2023-05-04T16:03:00","guid":{"rendered":"https:\/\/new.www.purdue.edu\/newsroom\/?p=3779"},"modified":"2024-06-25T16:06:15","modified_gmt":"2024-06-25T16:06:15","slug":"nsf-funds-institute-to-research-ai-powered-cybersecurity","status":"publish","type":"post","link":"https:\/\/www.purdue.edu\/newsroom\/2023\/Q2\/nsf-funds-institute-to-research-ai-powered-cybersecurity","title":{"rendered":"NSF funds institute to research AI-powered cybersecurity"},"content":{"rendered":"

WEST LAFAYETTE, Ind. —<\/p> \n

Malware. Ransomware. Zero-day exploits. There\u2019s no rest when it comes to protection from cyberattacks. And in an increasingly connected world, with expanding cyber and cyber-physical spaces and access to tools like artificial intelligence, attacks are likely going to become more diverse and sophisticated.<\/p>\n<\/div>\n\n\n

That\u2019s why a group of the nation\u2019s best computer scientists and engineers, led by UC Santa Barbara with major contributions from Purdue and UC Berkeley, have come together to form the National Science Foundation-sponsored<\/a> Institute for Agent-based Cyber Threat Intelligence and OperatioN (ACTION). This $20 million, five-year project is one of seven newly funded National Artificial Intelligence Research Institutes<\/a>. ACTION brings the continuous learning \u2013 and now, reasoning \u2013 of AI to the constant situational awareness and actions that are fundamental to cybersecurity.<\/p>\n\n\n\n

\u201cAI is used routinely now for things like malware analysis to identify malicious documents and malicious webpages,\u201d said UC Santa Barbara computer science professor and cybersecurity expert Giovanni Vigna<\/a>, who will head the project. \u201cWhat we don\u2019t have are entities that are capable of reasoning. This is an opportunity to bring artificial intelligence and security together in a novel way.\u201d<\/p>\n\n\n\n

\u201cThe National AI Research Institutes are a critical component of our Nation\u2019s AI innovation, infrastructure, technology, education and partnerships ecosystem,\u201d said NSF Director Sethuraman Panchanathan. \u201cThese institutes are driving discoveries that will ensure our country is at the forefront of the global AI revolution.\u201d<\/p>\n\n\n\n

Dongyan Xu<\/a>, the Samuel Conte Professor of Computer Science and director of CERIAS<\/a>, the Center for Education and Research in Information Assurance and Security, is Purdue\u2019s principal investigator and ACTION Institute’s use-inspired research lead. He and five other Purdue faculty members \u2013 Elisa Bertino<\/a>, Z. Berkay Celik<\/a>, Ninghui Li<\/a>, Yung-Hsiang Lu<\/a> and Ming Yin<\/a> \u2013 will join ACTION collaborators from the University of California, Santa Barbara; UC Berkeley; Georgia Institute of Technology; the University of Chicago; University of Washington; University of Illinois Chicago; Rutgers University; Norfolk State University; University of Illinois and University of Virginia.<\/p>\n\n\n\n

Purdue University will serve as one of ACTION\u2019s major hubs for research, education, workforce development and technology transfer, leveraging CERIAS programs and initiatives to engage faculty and students, as well as industry and government partners. The Purdue team will contribute expertise in key areas such as cyber-physical security; cyber-physical knowledge discovery, integration and reasoning; and human-AI agent collaboration across the end-to-end cyberdefense lifecycle.<\/p>\n\n\n\n

\u201cI am pleased with Purdue University\u2019s involvement in the newly established NSF AI Institute, where our team of cybersecurity and AI experts will work side-by-side toward groundbreaking advancements in this critical and rapidly evolving field,\u201d said Karen Plaut, Purdue executive vice president for research. \u201cWe are excited to be part of this transformative effort, and the timing couldn\u2019t be better with our recent announcement of the Purdue Computes initiative.” <\/p>\n\n\n\n

Security-inspired AI and AI-empowered security<\/strong><\/h2>\n\n\n\n

Here\u2019s a possible scenario: Cybercriminals gain access to software used by a fictional smart city, a municipality whose water and power distribution infrastructure are automated and integrated. They introduce a software vulnerability that is both complex and too evasive to set off any cyber or physical alarms. From there they use this vulnerability to conduct a supply-chain attack that progressively compromises parts of the cyber-physical system in ways that may seem like glitches and unusual connections, but nothing the threat detection system has been trained to identify. Eventually, they gain access to control systems that allow them to shut down the water and power, effectively paralyzing the city. They do all of this by seemingly trivial actions through encrypted connections that are unnoticed by the intrusion detection systems.<\/p>\n\n\n\n

It’s not an entirely hypothetical situation. In fact, a similar hacking campaign was orchestrated in 2021 that compromised several U.S. government agencies by breaching applications monitoring software created by vendor SolarWinds. This type of attack, according to the researchers, is why a more sophisticated type of AI-powered cybersecurity is needed.<\/p>\n\n\n\n

\u201cThere\u2019s this concept of an AI \u2018stack,\u2019\u201d Vigna said. \u201cImagine multiple layers of functionality that support AI in various ways, such as reasoning, learning, strategic planning and human-AI interaction.\u201d This stack will enable the creation of autonomous, intelligent \u201cagents\u201d that will be able not only to identify a potential attack but also the attacker and also mount a response and conduct recovery.<\/p>\n\n\n\n

The ACTION collaborators will begin by conducting research along four main thrusts: learning and reasoning with domain knowledge, human-agent interaction, multi-agent collaboration, and strategic gaming and tactical planning. These research thrusts act as the foundation of knowledge that can grow to handle large data sets, while extracting semantics and promoting inference and reasoning, in potentially adversarial and combative scenarios.<\/p>\n\n\n\n

Meanwhile, the AI research will inform and be inspired by the end-to-end cyberdefense lifecycle. The ACTION collaborators will develop and customize intelligent agents equipped with the AI stack to perform four main tasks in the cyberdefense lifecycle: threat and vulnerability assessment, attack detection, attack attribution, and attack response and recovery. While performing these tasks, the agents will acquire new knowledge and experience that improves their effectiveness and efficiency over time. <\/p>\n\n\n\n

\u201cToday, any system that has a cyber component, such as a processor or sensor, may face cybersecurity threats,\u201d Xu said. \u201cAdversaries can survey, infiltrate and strike in a matter of seconds. ACTION\u2019s intelligent agent approach to next-generation cybersecurity offers a promising opportunity to out-scale, out-speed and outwit the adversaries.\u201d<\/p>\n\n\n\n

In addition to developing next-generation AI and cybersecurity technologies, ACTION will implement learning and training programs to engage K-12, undergraduate and graduate students, postdoctoral researchers, and working professionals, with an emphasis on outreach to underrepresented communities and the goal of creating a \u201ccybersecurity + AI\u201d talent pipeline.<\/p>\n\n\n\n

About Purdue University<\/strong>\u00a0<\/h2>\n\n\n\n

Purdue University is a top public research institution developing practical solutions to\u202ftoday\u2019s toughest challenges. Ranked in each of the last five years as one of the 10\u202fMost Innovative universities in the United States by U.S. News & World Report,\u202fPurdue delivers world-changing research and out-of-this-world discovery. Committed\u202fto hands-on and online, real-world learning, Purdue offers a transformative\u202feducation to all. Committed to affordability and accessibility, Purdue has frozen\u202ftuition and most fees at 2012-13 levels, enabling more students\u00a0than ever to\u202fgraduate debt-free. See how Purdue never stops in the persistent pursuit of the next\u202fgiant leap at\u202fhttps:\/\/stories.purdue.edu<\/a>\u00a0<\/p>\n\n\n

\n
\n
\n

\n Media contact:<\/strong>\u00a0Rhianna Wisniewski,\u00a0rmwisnie@purdue.edu<\/a>
Source:<\/strong>\u00a0Dongyan Xu,\u00a0dxu@purdue.edu<\/a>\u00a0 <\/p>\n <\/div>\n <\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

WEST LAFAYETTE, Ind. — Malware. Ransomware. Zero-day exploits. There\u2019s no rest when it comes to protection from cyberattacks. And in an increasingly connected world, with expanding cyber and cyber-physical spaces and access to tools like artificial intelligence, attacks are likely<\/p>\n","protected":false},"author":3,"featured_media":3781,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[],"department":[32],"source":[29],"purdue_today_topic":[72],"coauthors":[10],"class_list":["post-3779","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","department-science","source-purdue-news","purdue_today_topic-general"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.purdue.edu\/newsroom\/wp-json\/wp\/v2\/posts\/3779","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.purdue.edu\/newsroom\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.purdue.edu\/newsroom\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.purdue.edu\/newsroom\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.purdue.edu\/newsroom\/wp-json\/wp\/v2\/comments?post=3779"}],"version-history":[{"count":1,"href":"https:\/\/www.purdue.edu\/newsroom\/wp-json\/wp\/v2\/posts\/3779\/revisions"}],"predecessor-version":[{"id":3782,"href":"https:\/\/www.purdue.edu\/newsroom\/wp-json\/wp\/v2\/posts\/3779\/revisions\/3782"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.purdue.edu\/newsroom\/wp-json\/wp\/v2\/media\/3781"}],"wp:attachment":[{"href":"https:\/\/www.purdue.edu\/newsroom\/wp-json\/wp\/v2\/media?parent=3779"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.purdue.edu\/newsroom\/wp-json\/wp\/v2\/categories?post=3779"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.purdue.edu\/newsroom\/wp-json\/wp\/v2\/tags?post=3779"},{"taxonomy":"department","embeddable":true,"href":"https:\/\/www.purdue.edu\/newsroom\/wp-json\/wp\/v2\/department?post=3779"},{"taxonomy":"source","embeddable":true,"href":"https:\/\/www.purdue.edu\/newsroom\/wp-json\/wp\/v2\/source?post=3779"},{"taxonomy":"purdue_today_topic","embeddable":true,"href":"https:\/\/www.purdue.edu\/newsroom\/wp-json\/wp\/v2\/purdue_today_topic?post=3779"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.purdue.edu\/newsroom\/wp-json\/wp\/v2\/coauthors?post=3779"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}