An Official Website of the United States Government
Software Protection to Fight through an Attack
- Small Business Information
-
Woman-Owned: NoMinority-Owned: NoHUBZone-Owned: No
- Phase 1
-
Fiscal Year: 2009Title: Software Protection to Fight through an AttackAgency / Branch: DOD / OSDContract: FA8650-10-M-1769Award Amount: $100,000.00
Abstract:
New vulnerabilities and attacks on software applications and the underlying systems are discovered daily. Most security research focuses on detection of attacks--typically, by monitoring the execution of an application and detecting anomalous behavior. Little attention has been paid to how an application should respond to an attack. Generally, it is assumed that the application under attack is terminated and, possibly, restarted. While such a response eliminates the threat of being compromised, it is not appropriate for many types of systems: for safety-critical systems, systems that must remain operational for long periods of time, and systems that use persistent data (such as file systems and databases), rebooting to restore a safe state (even when an attack is detected) is often not an option. We propose a tool that will allow applications to recover from attacks and remain operational. The tool will monitor the execution of a program and, once an attack is detected, will repair the application's run-time state corrupted by the attack to keep the application operational. As a separate once-per-application task performed offline, the tool will use a combination of advanced dynamic and static program-analysis techniques to learn the invariants necessary for repairing the application's run-time state.Small Business Information at Submission:GRAMMATECH, INC.
317 N. Aurora Street Ithaca, NY 14850EIN/Tax ID: 161338879DUNS: N/ANumber of Employees:Woman-Owned: NoMinority-Owned: NoHUBZone-Owned: No
Award Information
|
Agency: Department of Defense |
Branch: Office of the Secretary of Defense |
Award ID: 91407 |
Program Year/Program: 2009 / SBIR |
|
Agency Tracking Number: O092-IA3-1105 |
Solicitation Year: N/A |
Solicitation Topic Code: N/A |
Solicitation Number: N/A |