Together with its small business partner, Smart Information Flow Technologies, Adventium Labs is developing a revolutionary approach to intrusion event correlation and fusion. Doodlebug provides a lightweight event correlation solution that will operate over extremely large areas (e.g., continent-wide). The approach will build a robust, redundant, decentralized network for event correlation, producing rich results by incorporating very large amounts of information. Using large amounts of information, and combining it with relatively simple, and computationally inexpensive operations, Doodlebug will enable detection and identification of both known and novel attacks. In order to incorporate these large numbers of nodes, Doodlebug must stretch across not just administrative domains, but enterprises as well. To make this possible, Doodlebug will incorporate techniques for robust computation even in the face of malicious network members, and will provide strong assurances of the privacy of network nodes.