Run-Time Process Monitoring

Award Information
Agency:
Department of Defense
Branch
Air Force
Amount:
$99,947.00
Award Year:
2005
Program:
SBIR
Phase:
Phase I
Contract:
FA8650-05-C-8032
Agency Tracking Number:
O043-SP5-1118
Solicitation Year:
2004
Solicitation Topic Code:
OSD04-SP5
Solicitation Number:
2004.3
Small Business Information
GRAMMATECH, INC.
317 N. Aurora Street, Ithaca, NY, 14850
Hubzone Owned:
N
Socially and Economically Disadvantaged:
N
Woman Owned:
N
Duns:
n/a
Principal Investigator:
David Melski
Senior Scientist
(607) 273-7340
melski@grammatech.com
Business Contact:
Ray Teitelbaum
CEO
(607) 273-7340
tt@grammatech.com
Research Institution:
n/a
Abstract
Malicious logic may be intentionally inserted into software as is the case with insider attack, or innocent mistakes may open vulnerabilities to worms and the like. We propose a double edged approach to inserting monitoring logic for machine code on all operating systems in order to ensure that: (1) Interactions with the operating system are consistent with the original code, and (2) the interactions with the operating system obey arbitrary security policies that may be specified at will by the user. Approach (1) restricts the program to its intended behavior; this prevents attacks from worms and viruses and offers protection against unanticipated attacks that cause the program to behave in an abhorrent fashion. Approach (2) prevents insider attack by explicitly disallowing malicious behavior that the attacker has managed to insert into the "intended" program behavior.

* information listed above is at the time of submission.

Agency Micro-sites

US Flag An Official Website of the United States Government