You are here

Detection and Analysis of Threatsto the Energy Sector (DATES) May 2008

A groundbreaking integrated capability in intrusion detection, security event management, and sector-wide threat analysis.

The two-year DATES project is a groundbreaking effort to develop the first integrated intrusion detection, security incident/event management (SIEM), and large-scale threat analysis capability for the energy sector. DATES will provide control system operators with enhanced incident detection and alerting tools through rigorous monitoring of threats at the network, host, and device levels. Integrating SIEM capabilities, the system will use attack models and information from prior events to automatically correlate alarms, distinguishing malicious cyber incidents from minor disruptions.