Dynamic Kernel Monitoring for Attack Detection and Mitigation

Award Information
Agency:
Department of Defense
Amount:
$1,249,410.00
Program:
SBIR
Contract:
FA8650-08-C-1460
Solitcitation Year:
2007
Solicitation Number:
2007.2
Branch:
Air Force
Award Year:
2008
Phase:
Phase II
Agency Tracking Number:
O072-I05-1037
Solicitation Topic Code:
OSD07-I05
Small Business Information
COMPUTER MEASUREMENT LABORATORY, INC.
11985 W. Bowmont St., Boise, ID, 83713
Hubzone Owned:
N
Woman Owned:
N
Socially and Economically Disadvantaged:
N
Duns:
800427838
Principal Investigator
 Rick Hoover
 Principal
 (208) 859-1138
 rphoover@computermeasurementlab.com
Business Contact
 John Munson
Title: Principal
Phone: (509) 330-0455
Email: jmunson@computermeasurementlab.com
Research Institution
N/A
Abstract
In an information warfare scenario, the enemy will deploy an attack that has never been seen before. This attack will completely debilitate both defensive and offensive software capabilities. We have designed and developed a system that will defend against such attacks. The project's major innovation has been a comprehensive approach for tolerating security violations in mission/safety critical software systems. This was accomplished through the use of a security processor that executes in parallel to the main CPU. The monitoring functionality for the monitored application was implemented on a specific hardware device. This adjunct hardware system is able to monitor the execution environment of the total software system unobtrusively. CML has designed and developed an engineering methodology for software process control. If a software system has been compromised, its normal activity profile will change. Processes may then be instituted to restore the system to a nominal state. CML has leveraged dynamic measurement technology to develop an engineering approach to software process control. The objective of this approach is to break the traditional software vulnerability cycle. Through the use of software process control, a software system may be monitored, in real time, for evidence that it has been compromised.

* information listed above is at the time of submission.

Agency Micro-sites

US Flag An Official Website of the United States Government