Over View
Adversary Engagement Ontology (AEO) is a sub-ontology of the Unified Cyber Ontology that focuses on defining and standardizing the information representation of adversary engagement in the cyber domain. Adversary engagement is the strategic use of denial and deception tactics aimed at increasing the cost and decreasing the value of an adversary’s cyber operations [MITRE ENGAGE™]. The goals of adversary engagement can include detecting adversaries on a network, eliciting intelligence about them, or affecting them by raising the cost and lowering the value of their cyber operations.
AEO aims to standardize and improve consistency of adversary engagement operations planning, to standardize and simplify the documentation and transmission of the deployment configuration of cyber adversary engagement tools and techniques, and to standardize and simplify the monitoring, analysis and reporting of adversary engagement operations. This helps to ensure a consistent and efficient approach to adversary engagement across different organizations and domains. The standardization provided by AEO enables better collaboration and sharing of information among stakeholders, leading to more effective adversary engagement. Basing the foundation of AEO in the Unified Cyber Ontology ecosystem also improves the ease and consistency of integrated data flows between as well as analysis across the Adversary Engagement domain and other cyber application domains.
Current Team Members:
Dr. Vahid Behzadan,
Bibek Upadhayay,
Nancirose Piazza,
Ronald Scarpa
Tools and Dataset:
N/A
Publication:
TBA
GitHub: