User and Entity Behavior Analysis
ID: A244-013Type: BOTH
Overview

Topic

User and Entity Behavior Analysis

Agency

Department of DefenseN/A

Program

Type: SBIRPhase: BOTHYear: 2024

Topic Link

https://www.sbir.gov/node/2496873

Additional Information

https://www.defensesbirsttr.mil/SBIR-STTR/Opportunities/
Timeline
  1. 1
    Release Oct 3, 2023 12:00 AM
  2. 2
    Open Oct 3, 2023 12:00 AM
  3. 3
    Next Submission Due Mar 31, 2025 12:00 AM
  4. 4
    Close Mar 31, 2025 12:00 AM
Description

The Department of Defense (DOD) is seeking proposals for User and Entity Behavior Analysis (UEBA) as part of their Small Business Innovation Research (SBIR) program. The objective of this solicitation is to develop a UEBA capability that will streamline authentication to the network and services while enhancing the cybersecurity posture of the tactical network. The UEBA solution will serve as a critical enabler to the Army's Zero Trust Architecture (ZTA) implementation. The technology will leverage data already collected and normalized by the Elastic Stack, including data from various systems and events. The UEBA should include a well-documented and flexible REST API for obtaining necessary telemetry for authorization decisions. The project will be conducted in two phases, starting with a proof of concept in Phase I and the development of a prototype in Phase II. The potential applications of UEBA include IoT monitoring, healthcare security, and finance fraud detection. The solicitation is open until March 31, 2025. For more information, visit the DOD SBIR website.

Files
No associated files provided.
Similar Opportunities
DOD SBIR 24.4 Annual - User and Entity Behavior Analysis
Active
Department of Defense
The Department of Defense (DOD) is seeking proposals for the topic of "User and Entity Behavior Analysis" as part of their SBIR program. The objective of this research is to develop a UEBA capability that serves as a Policy Decision Point (PDP) in the Tactical Zero Trust Architecture (ZTA). The UEBA will analyze user and entity behavior by collecting activity data and applying advanced analytics to detect anomalies. The solution will leverage data already collected and normalized by the Elastic Stack and incorporate various sources such as Active Directory, endpoint systems, firewalls, and vulnerability scans. The UEBA should include a flexible REST API for obtaining telemetry and making authorization decisions. The project will be conducted in three phases. Phase I requires a proof of concept in the form of a whitepaper, demonstrating the feasibility of developing the UEBA capability. Phase II involves developing a prototype to collect and interpret data, display risk score changes, and allow human decision-making based on alerts. Phase III focuses on dual-use applications, such as embedding AI/ML pattern recognition into cybersecurity operations and applying UEBA to IoT, healthcare, and finance sectors. The project duration is not specified, but the solicitation is open until March 31, 2025. For more information and to submit proposals, interested parties can visit the DOD SBIR website at [solicitation_agency_url].
DOD SBIR 24.4 Annual - Ensuring Sensor Data Security and Integrity
Active
Department of Defense
The Department of Defense (DOD) is seeking proposals for the topic "Ensuring Sensor Data Security and Integrity" as part of its SBIR program. The objective of this topic is to develop a platform that secures sensor data at the individual record level and supports experimentation to advance technology for DoD and Army Data Strategy VAULTIS goals. The platform should be cost-effective, flexible, and implemented through an Application Programming Interface (API) with no data size limitation. It should also ensure the integrity of sensor data throughout its lifecycle and incorporate attributes such as encryption, immutable data storage, audit and logging, and tamper-proof chain of custody. The Army aims to become more data-centric and capable of conducting operations in contested environments. The project will be conducted in two phases, with Direct to Phase II (DP2) proposals accepted for a cost of up to $2,000,000 for an 18-month period of performance. The contractor will be responsible for integrating, testing, demonstrating, and delivering a lightweight and scalable prototype data provenance solution. The solution should secure all sensor data at the individual record level and include database, replication, data audit, and encryption in a single integrated solution. It should also incorporate knowledge graphs, analytic visualization tools, and support data analysis. The use of blockchain technology is highlighted as a potential dual-use application for protecting sensor data fidelity in various sectors such as healthcare, critical infrastructure, smart homes, and autonomous vehicles. The project references the Army's data plan and strategic goals for 2040. The deadline for proposal submission is March 31, 2025. For more information, visit the solicitation link provided: [DOD SBIR 24.4 Annual](https://www.sbir.gov/node/2608861).
DOD SBIR 24.4 Annual - Chief Digital and Artificial Intelligence Office (CDAO) Data Mesh Reference Design (REFDES)
Active
Department of Defense
The Department of Defense (DOD) is seeking proposals for the Chief Digital and Artificial Intelligence Office (CDAO) Data Mesh Reference Design (REFDES). The objective is to establish a set of software services that enable seamless interoperability of data across the Department of Defense (DoD) enterprise while retaining federated control, hosting, and ownership. The DoD aims to break the data out of stovepipes and create a data mesh that allows data users to discover, access, and consume DoD data products via self-service API. The data access must support attribute-based access control (ABAC) and operate in a zero-trust environment. The program consists of three phases, starting with the development of a formal REFDES in Phase I, followed by the creation of a Minimum Viable Product (MVP) in Phase II, and concluding with the delivery of a full production capability in Phase III. The REFDES must address key concepts such as VAULTIS compliance, services communication model and framework, data templating, dynamic attribution association, automated notification services, and cybersecurity and zero trust support. The resulting data mesh will support interoperability for applications in both battlefield and boardroom settings. The proposal submission deadline is March 31, 2025. For more information, visit the [solicitation link](https://www.sbir.gov/node/2602059).
DOD SBIR 24.4 Annual - Small Unmanned Ground Robotic Systems
Active
Department of Defense
The Department of Defense (DOD) is seeking proposals for the development of a cyber-hardened small unmanned ground robotic system. The system should be capable of being operated using both a vendor-developed .apk TAK GOV software controller and a Tomahawk Robotics Grip S20 universal controller. It should integrate the best C2/data link components and be operable with Silvus Technologies and Persistent Systems radios. The system should be designed for intelligence, surveillance, and reconnaissance (ISR) purposes and be able to operate in all-weather conditions within rural and urban environments. The system should have a minimum battery life of 60-90 minutes and a ground control station line-of-sight range capability of 100 meters. The integrated sensors should be able to identify moving armed personnel at specified distances. The system should also have cyber survivability attributes and be capable of carrying various payloads. The Phase I of the project involves conducting a feasibility study to assess the options that satisfy the requirements. The Phase II includes developing, installing, and demonstrating a prototype system. The system has potential applications in a broad range of military operations, enhancing operational situational awareness, reducing cognitive and physical workload, and reducing risk to the user. The project is open for proposals until March 31, 2025. For more information, visit the [solicitation link](https://www.defensesbirsttr.mil/SBIR-STTR/Opportunities/).
DOD SBIR 24.4 Annual - Chief Digital and Artificial Intelligence Office (CDAO) Data Mesh Reference Design (REFDES)
Active
Department of Defense
The Department of Defense (DOD) is seeking proposals for the Chief Digital and Artificial Intelligence Office (CDAO) Data Mesh Reference Design (REFDES). The objective is to make all data across the Department of Defense seamlessly interoperable while retaining federated control, hosting, and ownership. The DOD aims to establish a set of software services that allow data users to discover, access, and consume DoD data products via self-service API. The data access must support attribute-based access control (ABAC) and operate in a zero-trust environment. The program consists of three phases: Phase I involves creating a formal REFDES, Phase II focuses on building a Minimum Viable Product (MVP) version of the design, and Phase III involves delivering a full production capability. The REFDES must address key concepts such as VAULTIS compliance, services communication model and framework, data templating, dynamic attribution association, automated notification services, cybersecurity, and zero trust support. The resulting data mesh will support interoperability for applications in both battlefield and boardroom settings. The solicitation is open until March 31, 2025. For more information, visit the [SBIR topic link](https://www.sbir.gov/node/2602059) or the [solicitation agency website](https://www.defensesbirsttr.mil/SBIR-STTR/Opportunities/).