权益分类	功能权益	普通用户	{{item.name}}会员
{{category.name}}	{{benefitItem.name}}

EAGER: SaTC-EDU: A Life-Cycle Approach for Artificial Intelligence-Based Cybersecurity Education

EAGER：SaTC-EDU：基于人工智能的网络安全教育的生命周期方法

基本信息

批准号：
2114680
负责人：
Elisa Bertino
金额：
$ 29.82万
依托单位：
Purdue University
依托单位国家：
美国
项目类别：
Standard Grant
财政年份：
2021
资助国家：
美国
起止时间：
2021-05-01 至 2023-10-31
项目状态：
已结题

来源：
https://www.nsf.gov/awardsearch/showAward?AWD_ID=2114680&HistoricalAwards=false
关键词：
EAGER SaTC EDU Life Cycle

项目摘要

In order to devise more effective defenses against a rising number of cyber attacks, recent security solutions leverage artificial intelligence (AI) techniques. While there are plenty of publicly available AI approaches to cybersecurity, successful use depends on users’ technical and soft skills. Moreover, AI-based approaches have been intensely scrutinized with respect to their security and ethics, delaying deployment. AI itself can be attacked and there can also be issues with discrimination in AI-based classification. Thus, for AI to be effectively and quickly adopted for cybersecurity, AI security and ethics need to be assured. Training cybersecurity professionals to understand how to effectively use AI for cybersecurity and to be aware of AI security and ethics issues is critical for effective design and deployment of AI-based cybersecurity solutions. Future cybersecurity professionals must also be able effectively to communicate relevant information related to AI-based security mechanisms and policies to a variety of stakeholders. This project will design competency-driven educational activities focusing on AI techniques for cybersecurity that will increase the effective and ethical application of AI-enhanced cybersecurity. The project’s educational approach is based on four interrelated pillars. The first pillar focuses on educational activities covering a systematic AI-powered approach to cybersecurity, based on defender and attacker perspectives. The second pillar focuses on educational activities covering a systematic analysis of categories of AI attack and corresponding mitigation techniques. The third and fourth pillars focus on AI ethics and approaches to cybersecurity communications, respectively. A combination of social, philosophical, and technical perspectives will create a unique approach to cybersecurity communication. Together, the pillars provide a systematic perspective of AI-powered cybersecurity. They provide both foundational and technical competencies related to AI ethics and cybersecurity communication that benefit multiple stakeholders, from students and educators to employers and regulators. An important goal of the project is to make sure that students and educators understand that cybersecurity, including AI-based defense techniques, requires deployment of different types of defense approaches. The project includes design of educational projects, focusing on well-known data breaches and other types of attack and how AI-based security techniques could prevent or mitigate these attacks.This project is supported by a special initiative of the Secure and Trustworthy Cyberspace (SaTC) program to foster new, previously unexplored, collaborations between the fields of cybersecurity, artificial intelligence, and education. The SaTC program aligns with the Federal Cybersecurity Research and Development Strategic Plan and the National Privacy Research Strategy to protect and preserve the growing social and economic benefits of cyber systems while ensuring security and privacy.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

为了针对越来越多的网络攻击设计更有效的防御措施，最近的安全解决方案利用了人工智能(AI)技术。虽然有很多公开可用的人工智能方法来解决网络安全问题，但成功的使用取决于用户的技术和软技能。此外，基于人工智能的方法在安全和道德方面受到了严格审查，推迟了部署。人工智能本身可能会受到攻击，在基于人工智能的分类中也可能存在歧视问题。因此，为了有效和快速地将人工智能应用于网络安全，需要确保人工智能的安全和道德。培训网络安全专业人员，了解如何有效地将人工智能用于网络安全，并意识到人工智能安全和道德问题，对于有效设计和部署基于人工智能的网络安全解决方案至关重要。未来的网络安全专业人员还必须能够有效地将与基于人工智能的安全机制和政策相关的信息传达给各种利益攸关方。该项目将设计以能力为导向的教育活动，重点是网络安全的人工智能技术，这将增加人工智能增强的网络安全的有效和道德应用。该项目的教育方法基于四个相互关联的支柱。第一个支柱侧重于教育活动，涵盖基于防御者和攻击者的系统的人工智能支持的网络安全方法。第二个支柱侧重于教育活动，涵盖对人工智能攻击类别和相应缓解技术的系统分析。第三和第四个支柱分别侧重于人工智能伦理和网络安全通信方法。社会、哲学和技术角度的结合将创造一种独特的网络安全通信方法。这些支柱共同为人工智能支持的网络安全提供了一个系统的视角。它们提供与人工智能伦理和网络安全通信相关的基础和技术能力，使从学生和教育工作者到雇主和监管机构的多个利益攸关方受益。该项目的一个重要目标是确保学生和教育工作者理解网络安全，包括基于人工智能的防御技术，需要部署不同类型的防御方法。该项目包括教育项目的设计，重点是众所周知的数据泄露和其他类型的攻击，以及基于人工智能的安全技术如何防止或缓解这些攻击。该项目由安全和值得信赖的网络空间(SATC)计划的一个特别倡议支持，该计划旨在促进网络安全、人工智能和教育领域之间新的、以前从未探索过的合作。SATC计划与联邦网络安全研究和发展战略计划和国家隐私研究战略保持一致，以保护和维护网络系统日益增长的社会和经济效益，同时确保安全和隐私。该奖项反映了NSF的法定使命，并通过使用基金会的智力优势和更广泛的影响审查标准进行评估，被认为值得支持。