ATOLLO Technology Solutions, LLC (ATOLLO) has developed an Adaptive Network Security for IoT Systems (ANSIS) technology based on our patent-pending Physical & Cyber Integrated Security Intrusion Detection System. ANSIS is designed to deliver effective IoT cyber security through a novel behavioral monitoring technology coupled with robust network traffic flow monitoring. ANSIS sensors seamlessly integrate into existing IoT network environments to profile all network ingress, egress, incidents, anomalies, and other cyber-physical activities resulting in the establishment of a security baseline for each network. Unlike existing techniques which monitor IoT devices as an aggregation of simple network devices, we have developed a novel approach that adapts to various environmental and domain conditions ((including ICS equipment conditions and related set points, etc. that cause observable deviations in environment behaviors), with minimal involvement from the users, and s the domain norms automatically using data from the normal operation of the IoT systems. Under this proposal, ATOLLO proposes to deliver a cybersecurity solution that addresses the security vulnerabilities of Air Force IoT systems. We will identify vulnerabilities and threats related to base-wide IoT-enabled systems that underly various DAF controls systems including legacy Radio-Frequency Identification (RFID) systems used for inventory tracking and asset management; base industrial control systems (ICS); access control systems (ACS); and other IoT-enabled Combat and Logistics Systems environments. The project will then identify mitigation strategies to combat those threats through ANSIS inherent capabilities for detecting abnormal network activities that deviate from network security baselines. The robust adaptive network security capabilities offered by ANSIS, including network and system behavior-based anomaly detection, will vividly expose anomalous and malicious network activities, that can threaten DAF IoT systems, and afford DAF security personnel and operators the ability to reduce cyber-attack detection time, such as during the SolarWinds hack, from 9 months to less than one (1) day on an IoT network. ANSIS will reduce the time to detect cyber-attacks directed towards IoT/ACS/ICS systems by over 90%. The introduced efficiency vastly reduces the time, manpower, and capital-intensive resources spent on critical cyber-attack detections and the resultant clean up.
