Decision Support for Software Code Analysis

Award Information
Agency:
Department of Defense
Branch
Missile Defense Agency
Amount:
$99,926.00
Award Year:
2010
Program:
SBIR
Phase:
Phase I
Contract:
HQ0006-10-C-7422
Agency Tracking Number:
B093-030-0550
Solicitation Year:
2009
Solicitation Topic Code:
MDA09-030
Solicitation Number:
2009.3
Small Business Information
Sentar, Inc.
315 Wynn Drive, Suite 1, Huntsville, AL, 35805
Hubzone Owned:
N
Socially and Economically Disadvantaged:
N
Woman Owned:
Y
Duns:
174265736
Principal Investigator:
Al Underbrink
Senior Analyst II
(256) 430-0860
al.underbrink@sentar.com
Business Contact:
Peter Kiss
Chief Executive Officer
(256) 430-0860
peter.kiss@sentar.com
Research Institution:
n/a
Abstract
A software tool is proposed for automatically executing both vulnerability and malicious code analyses against both binary and source code files. The analysis tools may be selectively applied, supporting a wide assortment of analysis and verification activities for code targeted at multiple hardware platform types. The proposed concept provides decision support for combining the results of multiple analyses into a recommendation for further action. Potential recommendations include approving the code for integration, pursuing more detailed analysis, forwarding the code for remediation, and rejecting the code. The innovation of the proposed concept is the integration and automation of multiple verification and analysis functions which can increase the trust levels in third-party software. The capacity to verify virtually all third-party software as free of security vulnerabilities and malicious code raises the bar for trustworthiness. Far more comprehensive analyses can be performed in a much more efficient process, thereby ensuring trustworthiness on a much greater scale.

* information listed above is at the time of submission.

Agency Micro-sites

US Flag An Official Website of the United States Government