USA flag logo/image

An Official Website of the United States Government

Automatic Generation of Robust Network Intrusion Detection Signatures

Award Information

Agency:
Department of Defense
Branch:
Office of the Secretary of Defense
Award ID:
77973
Program Year/Program:
2008 / STTR
Agency Tracking Number:
O064-NC2-2006
Solicitation Year:
N/A
Solicitation Topic Code:
N/A
Solicitation Number:
N/A
Small Business Information
Reservoir Labs., Inc.
632 Broadway, Suite 803 New York, NY 10012-2614
View profile »
Woman-Owned: No
Minority-Owned: No
HUBZone-Owned: No
 
Phase 2
Fiscal Year: 2008
Title: Automatic Generation of Robust Network Intrusion Detection Signatures
Agency / Branch: DOD / OSD
Contract: W911NF-08-C-0007
Award Amount: $749,989.00
 

Abstract:

In this Phase II STTR project, we propose to develop a system that autonomously and rapidly (1) detects exploitation of application software vulnerabilities (including previously unknown vulnerabilities) via dynamic taint analysis; (2) generates vulnerability signatures identifying nearly all traffic that exploits those same vulnerabilitieseven traffic with no superficial similarities to the observed exploit, and with no false positivesvia semantic analysis of program paths leading to each vulnerability; and (3) deploys these signatures to a network-based intrusion prevention system to prevent further exploits of the same vulnerability on other systems within the protected network. Our unique advantages over competitors stem from several factors. Our semantics-based approach enables broad coverage, even against polymorphic attacks, while fundamentally eliminating the possibility of false positives. Our advanced network intrusion prevention platform enables traffic to be checked against complex signature patterns at line rate up to 10 Gbps. Our system's end-to-end automation will provide effective defense even against rapidly spreading worms spreading via previously unknown (zero-day) exploits.

Principal Investigator:

Steven Reinhardt
Managing Engineer
2127800527
stever@reservoir.com

Business Contact:

Melanie Peters
Business Manager
2127800527
peters@reservoir.com
Small Business Information at Submission:

RESERVOIR LABS., INC.
632 Broadway, Suite 803 New York, NY 10012

EIN/Tax ID: 061303098
DUNS: N/A
Number of Employees:
Woman-Owned: No
Minority-Owned: No
HUBZone-Owned: No
Research Institution Information:
CARNEGIE MELLON UNIV.
Collaborative Innovation Ctr
4720 Forbes Ave., Room 2111
Pittsburgh, PA 15213
Contact: A. J. Abels
Contact Phone: (412) 268-4912
RI Type: Nonprofit college or university