An Official Website of the United States Government
EPP: Empirical Privilege Profiling for Black-Box Software
- Small Business Information
-
Woman-Owned: NoMinority-Owned: NoHUBZone-Owned: No
- Phase 2
-
Fiscal Year: 2006Title: EPP: Empirical Privilege Profiling for Black-Box SoftwareAgency / Branch: DOD / DARPAContract: W31P4Q-06-C-0134Award Amount: $374,923.00
Abstract:
The Principle of Least Privilege says that programs should operate with sufficient privilege to get the job done, but no more, in order to minimize the harm that can be done in case of error. The Empirical Privilege Profiler system (EPP) will collect data about privileges actually exercised by running programs and use that data to create a composite abstract privilege profile for the program. Privilege profiles created by the EPP can be used to guide system administrators in granting program privileges, as well as in intrusion detection, detection of insider misuse, and program development. To create an EPP system, ATC-NY has developed novel technologies for extracting the privileges exercised by programs and for building composite abstract profiles. In Phase II, ATC-NY proposes to integrate those technologies into the prototype of a distributed system that creates composite privilege profiles based on execution of a program at multiple cooperating sites.Small Business Information at Submission:ODYSSEY RESEARCH ASSOC. (FORMERLY AT
33 Thornwood Drive, Suite 500 Ithaca, NY 14850EIN/Tax ID: 161549760DUNS: N/ANumber of Employees:Woman-Owned: NoMinority-Owned: NoHUBZone-Owned: No
Award Information
|
Agency: Department of Defense |
Branch: Defense Advanced Research Projects Agency |
Award ID: 68793 |
Program Year/Program: 2006 / SBIR |
|
Agency Tracking Number: 04SB1-0276 |
Solicitation Year: N/A |
Solicitation Topic Code: N/A |
Solicitation Number: N/A |