The Defense Advanced Research Projects Agency (DARPA) revealed on Tuesday that the final competition for its automated security systems development challenge will take place in 2016 at DEF CON.
DARPA announced the tournament, the Cyber Grand Challenge, back in October 2013, with the goal to develop of a fully automatic network defense system. The solutions developed by participants will go head-to-head in a Capture the Flag (CTF) style competition at the 2016 DEF CON hacking conference in Las Vegas.
“Today’s security methods involve experts working with computerized systems to identify attacks, craft corrective patches and signatures and distribute those correctives to users everywhere—a process that can take months from the time an attack is first launched,” noted DARPA Program Manager Mike Walker.
“The only effective approach to defending against today’s ever-increasing volume and diversity of attacks is to shift to fully automated systems capable of discovering and neutralizing attacks instantly.”
A total of 35 teams from around the world have already signed up for the Cyber Grand Challenge. Most of them are self-funded, but DARPA also runs a “proposal track” for teams that want to be partially funded by the agency. Registration is open until November 2, 2014, with a major qualification event scheduled to take place in June 2015.
The winning team will take home a cash prize of $2 million. The prize for the second place is $1 million, while the team that finishes third gets $750,000.
It’s worth noting that Cyber Grand Challenge participants will not be using commercial operating systems to conduct their tests. DARPA has built an open source operating system specifically for cyber security experiments and research. Dubbed the DARPA Experimental Cybersecurity Research Evaluation Environment (DECREE), the platform is not compatible with any other systems, and has its own executable format.
DECREE is also characterized by simplicity ─ it only has seven OS interface methods ─, and high determinism and reproducibility, which are both crucial aspects for a scientific platform.
DEF CON is one of the largest security conferences in the world and it has defined CTF competitions over the past two decades, so it’s not surprising that DARPA would want to host its event there. However, last year, DEF CON organizers announced that feds were no longer welcome following numerous reports about the National Security Agency’s surveillance programs leaked by Edward Snowden.
Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.
More from Eduard Kovacs
- Industrial Giant ABB Confirms Ransomware Attack, Data Theft
- Zyxel Firewalls Hacked by Mirai Botnet
- New Russia-Linked CosmicEnergy ICS Malware Could Disrupt Electric Grids
- Drop in Insider Breaches Drives Decline in Intrusions at OT Organizations
- Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances
- OAuth Vulnerabilities in Widely Used Expo Framework Allowed Account Takeovers
- New Honeywell OT Cybersecurity Solution Helps Identify Vulnerabilities, Threats
- Rheinmetall Says Military Business Not Impacted by Ransomware Attack
Latest News
- Industrial Giant ABB Confirms Ransomware Attack, Data Theft
- Organizations Worldwide Targeted in Rapidly Evolving Buhti Ransomware Operation
- Google Cloud Users Can Now Automate TLS Certificate Lifecycle
- Zyxel Firewalls Hacked by Mirai Botnet
- Watch Now: Threat Detection and Incident Response Virtual Summit
- NCC Group Releases Open Source Tools for Developers, Pentesters
- Memcyco Raises $10 Million in Seed Funding to Prevent Website Impersonation
- New Russia-Linked CosmicEnergy ICS Malware Could Disrupt Electric Grids
