Data Integrity and Confidentiality Resilient Operating System Environment for Multi-Level Security

Award Information
Agency: Department of Defense
Branch: Navy
Contract: M67854-18-C-6513
Agency Tracking Number: N172-105-0491
Amount: $124,998.00
Phase: Phase I
Program: SBIR
Solicitation Topic Code: N172-105
Solicitation Number: 2017.2
Timeline
Solicitation Year: 2017
Award Year: 2018
Award Start Date (Proposal Award Date): 2017-11-30
Award End Date (Contract End Date): 2018-10-01
Small Business Information
8903 Greylock Road, Pikesville, MD, 21208
DUNS: 869458716
HUBZone Owned: N
Woman Owned: N
Socially and Economically Disadvantaged: N
Principal Investigator
 Jonathan Grier
 (410) 220-0962
 jgrier@grierforensics.com
Business Contact
 Sivi Eckhaus
Phone: (410) 220-0969
Email: seckhaus@grierforensics.com
Research Institution
N/A
Abstract
To meet the Marine Corps' need for data integrity, resilience, confidentiality, and multi-level security on hand-held devices, portable computers, and tactical servers, Grier Forensics proposes development and demonstration of Trapeze. Trapeze achieves high protection multi-level security by booting into one of a number of distinct, isolated Security Environments. Security Environments are selected at boot time and then fixed until reboot, enabling true multi-level security. Crucially, Security Environments never contain any operating system critical files. Instead, all critical files reside exclusively in a dedicated Tamper Proof Container (TPC), external to the Security Environments, which is loaded into the environment on boot. Data stored within the TPC can never be modified by any user or application, even in the presence of zero-day vulnerabilities or user privilege escalation. Trapeze uses mechanisms (including SRSS and HOLMES) to enforce data integrity; detect, block, and report any attempts to modify protected files; rapidly restore to a known good configuration; and ensure multi-level security. Using a novel architecture, Trapeze is able to achieve these protections with remarkable high performance and low overhead, including low CPU, RAM, and storage impact. Grier Forensics is experienced in development of similar technologies, and will deliver a high-performance, high-protection solution.

* Information listed above is at the time of submission. *

Agency Micro-sites

SBA logo
Department of Agriculture logo
Department of Commerce logo
Department of Defense logo
Department of Education logo
Department of Energy logo
Department of Health and Human Services logo
Department of Homeland Security logo
Department of Transportation logo
Environmental Protection Agency logo
National Aeronautics and Space Administration logo
National Science Foundation logo
US Flag An Official Website of the United States Government