Award Data

First Responders need to leverage automated (M2M machine-to-machine), mobile connectivity at an incident site. With connectivity automated through M2M network technology, responders would have much improved situational awareness, and can effectively focus their complete attention on the necessary emergency response actions. We propose to develop a futuristic automated M2M device mesh and concept o ...

We propose to design a novel framework and associated algorithms to combine the state-of-the-art in static firmware vulnerability analysis and mitigation with a suite of novel dynamic defensive techniques powered by Red Balloon Security's software Symbiote technology. While Symbiotes have traditionally been used directly to enforce dynamic firmware integrity attestation in embedded devices, we pro ...

Modern civilization relies on a network of embedded devices that are (i) riddled with security vulnerabilities and (ii) remotely hackable. Unfortunately, there seems to be near universal neglect for ensuring the security of these devices. Moreover, the existing IT solutions, such as antivirus software and intrusion-detection systems, do not provide substantial benefits for protection of embedded s ...

ABSTRACT: Autonomous vehicles lack a standardized mechanism for seamless cross-platform sharing of testing frameworks and evaluations of basic tasks. The ability to execute common tests on various hardware platforms is essential in order to be able to e

Secure Decisions is developing a software assurance risk management technology called "Code Ray" to: (1) Improve the speed, accuracy and confidence in detection of vulnerabilities by cross-mapping and normalizing the output of hybrid application security testing (HAST) techniques -- dynamic analysis, dynamic tracing, static analysis and contextual analysis. (2) Enhance prioritization and mitigatio ...

Under our Phase II SBIR we developed a compelling new technology for software assurance called Code Dx. We used initial feedback from government agencies and industry experts, collected during beta testing and Version 1.0 evaluations, to produce Version 1.1 which is technically mature and ready for trial evaluations and sale. However, the path to commercial success requires more than technical cap ...

The current generation of advanced static-analysis tools find vulnerabilities by exploring all possible executions of a program as configured for a single platform. The next quantum leap in capability will be a system that will explore all executions for many different platforms simultaneously. We propose to develop such a system by combining a number of state-of-the-art techniques. Novel continuo ...

We propose to build a system that combines novel automatic test generation techniques with state-of-the-art multi-platform continuous integration technology. The proposed system will automatically generate test data by using a combination of symbolic and concrete executions to intelligently explore the space of inputs. The continuous integration technology will enable the system to detect defects ...

Weidlinger Associates Inc. proposes to develop effective technology for simulating explosive detonations within civil buildings where the propagation of airblast and failure of weak internal walls are strongly coupled. We will conduct a field test program designed to complement other internal detonation testing efforts such as DTRA''s Distinct Cobra, expanding the available database. We will perfo ...

An approach for performing high fidelity modeling for blast and progressive collapse simulations of buildings will be developed. The modeling approach will allow complete simulations of building response to be performed within several days of computing time on desktop PCs. An 'easy to use' modeling interface will also be demonstrated in this effort. All response regimes will be addressed includi ...