The Department of Energy's Sandia National Laboratories has partnered with Splunk to automate the process for analysts to detect, examine and respond to cyber threats.
The partnership led to the launch of the lab“™s High-Fidelity Adaptive Deception & Emulation System program, which uses the Splunk Enterprise platform to analyze malicious behavior and determine countermeasures, the company said Wednesday.
HADES, a recipient of the Government Innovation Award, works to divert cyber threats into changing targets and to give defenders undetectable view of attacker movements.
“Sending adversaries on the cyber equivalent of a wild goose chase forces bad actors to waste money, time and resources, making cybercriminals incur sunk costs similar to those traditionally experienced only by the defender,“ said Frank Dimina, vice president of public sector at Splunk.
National Technology and Engineering Solutions of Sandia, a Honeywell International subsidiary, helps DOE manage the laboratory.