Building on recent advances in Artificial Intelligence (AI) and Machine Learning (ML) the Cyber defense research community has been motivated to develop new dynamic and sustainable defenses through adaptive cyber defense. The cyber domain cannot currently be reliably and effectively defended without extensive reliance on human experts. Skilled cyber defenders are in short supply and often cannot respond fast enough to cyber threats.
With the growing adoption of AI and ML techniques to both cyber and non-cyber settings, there is an increasing need to bridge the critical gap between AI and Cyber research and practitioners. We must accelerate our efforts to create semi-autonomous cyber defenses that can learn to recognize and respond to cyber attacks or discover and mitigate weaknesses in cooperation with other cyber operation systems and human experts. Furthermore, these defenses must be adaptive, and able to evolve over time to take into account changes in attacker behavior, benign changes in the systems, and expected drift in user behavior over time.
The ACD Workshop will focus on sharing research that explores unique applications of AI and ML as an emerging technology underpinning foundational capabilities of adaptive cyber defense. The Workshop will be comprised of technical presentations and a panel discussion focused on open problems and potential research solutions. This domain consists of challenging problems of critical importance to national and global security. Participation in this workshop will offer potentially unprecedented opportunities to stimulate research and innovation in this area.
Topics of interest include (but are not limited to):
Autonomous and semi-autonomous reasoning and response for cyber domains.
Human-machine teaming for adaptive defense systems.
Artificial intelligence (AI) and machine learning (ML) for cyber environments.
Reasoning and course of action (COA) decision making in cyber operations.
Predictive analytics for proactive stance to cyber threats and opportunities.
Cognitive modeling of cyber defenders and attackers.
Multi-agent and distributed AI solutions for semi-autonomous collaboration for cyber operations.
Automated intrusion detection and response, including AI additions to Security Orchestration, Automation and Incident Response (SOAR).
Moving target defenses with adaptive (rather than random) strategies.
Command and control for automated cyber response.
Cyber simulation environments developed for testing and validation of AI techniques.
Realistic models of human behavior in cyber domains
Explorations of problem similarities between cyber and non-cyber domains.
Adaptive cyber defense use cases and issues with adoption.