Intrusion/Extrusion Detection and Response
The ever-evolving modern threat landscape to IT-systems demands for novel approaches for detecting both external intruders and insiders. Our research is focused on developing new approaches for dealing with such threats. Since the classical fortress approach of IT-Security does not suffice to prevent such sophisticated attacks, we additionally dedicate our research to detecting extrusions i.e. unwanted flow of data to the outside. Such incidents are mostly caused by insider attacks or APTs (Advanced Persistent Threats). In response to security incidents, our research envisions self-protection mechanisms for autonomous systems for mitigating attacks.