Trusted Cyber Risk Research Data Sharing
The Information Marketplace for Policy and Analysis of Cyber-risk & Trust (IMPACT)
program supports the global cyber risk research community by
coordinating and developing real world data and information sharing capabilities (tools, models, and methodologies). In order to accelerate solutions around cyber risk issues and infrastructure security the IMPACT program enables empirical data and information sharing between and among the global cyber security research & development community in academia, industry and the government.
In 2016, PREDICT transitions to IMPACT: Information Marketplace for Policy and Analysis of Cyber-risk & Trust, a name meant to reflect an evolved implementation of the program’s goals:
• Marketplace – A more open platform to connect and socialize data supply & demand;
• Policy and Analysis – Research infrastructure and analysis driven by and for real world issues; and
• Cyber-risk & Trust – Beyond just “defense” and “threats”, Information as a critical infrastructure itself; responsible innovation
IMPACT offers a unique, distributed research data repository supported by a streamlined legal framework and centralized coordination of a controlled distribution of datasets. This centralized brokering and distributed provisioning between the data providers, data hosts and researchers addresses the operational, trust and administrative costs and challenges that impede sustainable and scalable data sharing. IMPACT continually adds new data that is responsive to cyber risk management (e.g., attacks and measurements) so the R&D community has timely and high value information to enhance research innovation and quality. The IMPACT model also serves as a laboratory for testing various data sharing models whether it be traditional batch transfers or newer data-as-a-service (DaaS) and visualization techniques, for example.
IMPACT consists of four components supporting core functional requirements for data sharing: metadata discovery, data and tool matchmaking, trusted brokering, and a social feedback loop.
This project requires the approval of an Institutional Review Board (IRB) application by the University of Michigan’s Health Sciences and Behavioral Sciences Institutional Review Board (IRB-HSBS). The currently approved IRB can be found here. This IRB has been the collective effort of all present and past project PIs, including Prof. Farnam Jahanian, Prof. Michael Bailey, Dr. Joe Adams and Dr. Michael Kallitsis.
AMON: An Open Source Architecture for Online Monitoring, Statistical Analysis and Forensics of Multi-gigabit Streams
• by Michael Kallitsis, Stilian Stoev, Shrijita Bhattacharya, George Michailidis, Merit Technical Report (Merit-TR-2016-01), March 2016.
Leveraging Internet Background Radiation for Opportunistic Network Analysis
• By K. Benson, A. Dainotti, K. Claffy, A. Snoeren, and M. Kallitsis, Internet Measurement Conference (IMC), October 2015.
Taming the 800 Pound Gorilla: The Rise and Decline of NTP DDoS Attacks
• By Jakub Czyz, University of Michigan; Michael Kallitsis and Manish Karir, Merit Network, Inc.; Manaf Gharaibeh and Christos Papadopoulos, Colorado State University; Michael Bailey University of Michigan and University of Illinois. Published in IMC ’14 Proceedings of the 2014 Conference on Internet Measurement Conference, November 2014.
Estimating Internet Address Space Usage through Passive Measurements
• By Alberto Dainotti, Karyn Benson, Alistair King, Michael Kallitsis, Eduard Glatz, Xenofontas Dimitropoulos. Published in ACM SIGCOMM Computer Communication Review, December 31, 2013.
Understanding IPv6 Internet Background Radiation
•By Jakub Czyz, Kyle Lady, Sam Miller, Michael Bailey, Michael Kallitsis, and Manish Karir. In Proceedings of the 13th ACM SIGCOMM Conference on Internet Measurement (IMC ’13), Barcelona, Spain, October 2013.