$6.89M
Program Grant
RL
Approach
APT
Threat Model
Overview
RAMPART develops reinforcement learning-based AI agents that can autonomously defend computer networks against advanced persistent threats (APTs). The system creates realistic network topologies and trains defender agents through adversarial interaction with attacker agents in a “cyber gym” environment.
Approach
The RAMPART framework addresses three core challenges:
- Realistic Environment Generation — Instantiating network topologies that faithfully represent real-world enterprise and OT networks, including vulnerabilities, configurations, and traffic patterns.
- Adversarial Training — Training defender agents against progressively sophisticated attacker agents using multi-agent reinforcement learning.
- Transferability — Ensuring trained agents can generalize to unseen network configurations and novel attack strategies.
Key Contributions
My contributions to RAMPART include the design and implementation of the realistic network environment generator, the integration of reinforcement learning algorithms for the defender agent, and evaluation of the system against standard cyber attack benchmarks.
Media Coverage
Vanderbilt Engineering
DARPA — Trilateral