You are here

Human Attributes & Behaviors Influencing Troubled Software (HABITS)

Award Information
Agency: Department of Defense
Branch: Defense Advanced Research Projects Agency
Contract: 140D6319C0014
Agency Tracking Number: D2-2191
Amount: $1,498,014.00
Phase: Phase II
Program: SBIR
Solicitation Topic Code: SB172-007
Solicitation Number: 17.2
Timeline
Solicitation Year: 2017
Award Year: 2019
Award Start Date (Proposal Award Date): 2019-03-01
Award End Date (Contract End Date): 2022-04-30
Small Business Information
1221 Connecticut Ave NW 4th Floor
Washington, DC 20036
United States
DUNS: 079360917
HUBZone Owned: No
Woman Owned: No
Socially and Economically Disadvantaged: No
Principal Investigator
 David Esler
 Technical Specialist
 (202) 706-7027
 david.esler@starlab.io
Business Contact
 Irby Thompson
Phone: (202) 706-7027
Email: admin@starlab.io
Research Institution
N/A
Abstract

Developing secure software is notoriously difficult, partially evidenced by the increasing trend in vulnerabilities disclosed per year. While significant effort has gone into developing tools and automated test frameworks, human behavioral aspects of the software development process have remained relatively unexplored. These behavioral aspects, such as relying on inexperienced developers or prolonged periods of conflict among team members, are often responsible for the propagation of bugs and vulnerabilities, the delay of security patches, the postponement in product releases, and the abandonment of entire open source projects. Star Lab proposes to research and develop an approach to integrate these human dimensions into security metrics and the software development process. This effort’s goal is to reduce the incidence of faulty and/or insecure code attributable to these human factors. Star Lab will develop tools to collect, condition, and fuse publicly available communications and development artifacts from individuals participating in open source development communities. This data will then inform behavioral security models for evaluating individuals in a software development community and the community’s practices.

* Information listed above is at the time of submission. *

US Flag An Official Website of the United States Government