Identifying Terrorist Activity with AI Plan Recognition Technology
by Jarvis, P., Lunt, T., and Myers, K.
in The Sixteenth Innovative Applications of Artificial Intelligence Conference (IAAI 04)
Published by AAAI Press 2004.
Abstract
We describe the application of plan recognition techniques to support human intelligence analysts in processing national security alert sets by automatically identifying the hostile intent behind them. Identifying the intent enables us to both prioritize and explain the alert sets for succinct user presentation. Our empirical evaluation demonstrates that the approach can handle alert sets of as many as 20 elements and can readily distinguish between false and true alarms. We discuss the important opportunities, for future work, that will increase the cardinality of the alert sets supported by the system to the level demanded by a deployable application. In particular, we outline opportunities to bring the analysts into the process and the opportunities for heuristic improvements to the plan recognition algorithm.
Inferring Intent of Attackers
CAPRE uses plan recognition techniques to automatically determining the intent behind a cluster of security alerts. This allows us to prioritize and explain alert clusters to users.
