PREDICT: an important resource for the science of security

Abstract

The Protected Repository for the Defense of Infrastructure Against Cyber Threats (PREDICT) was established by the Department of Homeland Security (DHS) Science and Technology Directorate (S&T) to provide real network operational data and to provide a trusted framework within which to share that data with the cyber security research community. PREDICT was conceived as a distributed repository to provide secure, centralized access to multiple sources of data and to promote data-sharing methods that protect the privacy of the data producers and the security of their networks. It also opened new research programs into the ethics of information and communication technology research [1] and disclosure control. [2] PREDICT initially took a conservative approach to its legal framework, applying the strictest requirements to all data classes regardless of the data's inherent sensitivity. Building on lessons learned through three phases of development, a less cumbersome framework has evolved and access to data for vital cyber security research has increased.