You are here

Mission and Information Assurance through Cyber Atomics

Award Information
Agency: Department of Defense
Branch: Air Force
Contract: FA8750-19-C-0086
Agency Tracking Number: F17B-004-0024
Amount: $749,991.00
Phase: Phase II
Program: STTR
Solicitation Topic Code: AF17B-T004
Solicitation Number: 17.B
Solicitation Year: 2017
Award Year: 2019
Award Start Date (Proposal Award Date): 2019-05-01
Award End Date (Contract End Date): 2021-05-15
Small Business Information
1050 W NASA Blvd Suite 155
Melbourne, FL 32901
United States
DUNS: 038379579
HUBZone Owned: No
Woman Owned: No
Socially and Economically Disadvantaged: No
Principal Investigator
 Jacob Staples
 Software Engineer
 (603) 540-7429
Business Contact
 Lynn Lehman
Phone: (919) 244-3946
Research Institution
 Illinois Institute of Technology
 Dr Eunice Santos Dr Eunice Santos
10W 35 st
Chicago, FL 60616
United States

 (860) 268-2845
 Nonprofit College or University

Cyber Risk Assessments for Threatened Environments (CRATE) is a system that produces actionable, mission-level alerts when anomalous behaviors indicative of cyber-attack are discovered within deployed mission-critical cyber-systems. CRATE is particularly relevant to deployment scenarios involving third-party infrastructure, such as deployment to a Platform as a Service (PaaS) provider or other cloud-like ecosystems. These systems may include components provisioned across many geographically disjoint physical and virtual hosts that possibly operate within contested environments such as the Internet (and are therefore subject to cyber-attack). The Phase I CRATE prototype specifically targeted SELinux-compliant platforms but its techniques are well-suited to other Mandatory Access Control (MAC) implementations such as AppArmor, an enhancement that will be explored in the Phase II. The Phase II CRATE system provides real-time visibility and mission-level impact analysis as countermeasures against attacks launched by sophisticated adversaries whose actions would otherwise be detected only after damaging mission readiness. CRATE also detects non-malicious but problematic conditions such as misuse or misconfiguration of cyber-systems. CRATE is a noninvasive technology that operates orthogonally to existing security and monitoring techniques.

* Information listed above is at the time of submission. *

US Flag An Official Website of the United States Government