Dynamic Kernel Monitoring for Attack Detection and Mitigation

Award Information
Agency: Department of Defense
Branch: Air Force
Contract: FA8650-08-C-1460
Agency Tracking Number: O072-I05-1037
Amount: $1,249,410.00
Phase: Phase II
Program: SBIR
Awards Year: 2008
Solicitation Year: 2007
Solicitation Topic Code: OSD07-I05
Solicitation Number: 2007.2
Small Business Information
COMPUTER MEASUREMENT LABORATORY, INC.
11985 W. Bowmont St., Boise, ID, 83713
DUNS: 800427838
HUBZone Owned: N
Woman Owned: N
Socially and Economically Disadvantaged: N
Principal Investigator
 Rick Hoover
 Principal
 (208) 859-1138
 rphoover@computermeasurementlab.com
Business Contact
 John Munson
Title: Principal
Phone: (509) 330-0455
Email: jmunson@computermeasurementlab.com
Research Institution
N/A
Abstract
In an information warfare scenario, the enemy will deploy an attack that has never been seen before. This attack will completely debilitate both defensive and offensive software capabilities. We have designed and developed a system that will defend against such attacks. The project's major innovation has been a comprehensive approach for tolerating security violations in mission/safety critical software systems. This was accomplished through the use of a security processor that executes in parallel to the main CPU. The monitoring functionality for the monitored application was implemented on a specific hardware device. This adjunct hardware system is able to monitor the execution environment of the total software system unobtrusively. CML has designed and developed an engineering methodology for software process control. If a software system has been compromised, its normal activity profile will change. Processes may then be instituted to restore the system to a nominal state. CML has leveraged dynamic measurement technology to develop an engineering approach to software process control. The objective of this approach is to break the traditional software vulnerability cycle. Through the use of software process control, a software system may be monitored, in real time, for evidence that it has been compromised.

* information listed above is at the time of submission.

Agency Micro-sites

SBA logo
Department of Agriculture logo
Department of Commerce logo
Department of Defense logo
Department of Education logo
Department of Energy logo
Department of Health and Human Services logo
Department of Homeland Security logo
Department of Transportation logo
Environmental Protection Agency logo
National Aeronautics and Space Administration logo
National Science Foundation logo
US Flag An Official Website of the United States Government