Presented by the Digital Innovation Research Capability Platform, Swinburne
The need for cyber resilience is increasingly important in our technology-dependent society, where computing systems, devices and data have been, and will continue to be, the target of cyber attackers, particularly advanced persistent threat (APT) and nation-state / sponsored actors.
There are, however, a number of challenges we need to address in the design of a system to facilitate automated vulnerability and risk detection, investigation, and mitigation. In this presentation, we will briefly discuss the role of automation tools (e.g., using artificial intelligence - AI) and human analysts and the design of our Human-in-the-Loop Explainable-AI-Enabled Vulnerability Detection, Investigation, and Mitigation (HXAI-VDIM) system. In our approach, rather than resolving complex scenario of security vulnerabilities as an output of an AI model, we integrate the security analyst or forensic investigator into the man-machine loop and leverage explainable AI (XAI) to combine both AI and intelligence assistant to amplify human intelligence in both proactive and reactive processes. Our goal is that HXAI-VDIM integrates human and machine in an interactive and iterative loop with security visualization that utilizes human intelligence to guide the XAI-enabled system and generate refined solutions.
Professor Kim-Kwang Raymond Chooreceived the Ph.D. in Information Security in 2006 from Queensland University of Technology, Australia. He currently holds the Cloud Technology Endowed Professorship at The University of Texas at San Antonio (UTSA), and is the founding co-Editor-in-Chief of ACM Distributed Ledger Technologies: Research & Practice, and the founding Chair of IEEE Technology and Engineering Management Society (TEMS)'s Technical Committee on Blockchain and Distributed Ledger Technologies. His research has been supported by U.S. funding agencies (NASA, National Security Agency, National Science Foundation, U.S. Department of Defense, U.S. Office of Juvenile Justice and Delinquency, CPS Energy, LGS Innovations, MITRE, Texas National Security Network Excellence Fund) and Australian funding agencies (Australian Government National Drug Law Enforcement Research Fund, Australian Government Cooperative Research Centre for Data to Decision, Lockheed Martin Australia, auDA Foundation, Government of South Australia, BAE Systems stratsec, Australasian Institute of Judicial Administration Incorporated, Australian Research Council).