Covert Loading and Execution of Software Protections to Reduce Adversarial Detection

Award Information
Agency:
Department of Defense
Amount:
$100,000.00
Program:
SBIR
Contract:
FA8650-08-M-1432
Solitcitation Year:
2008
Solicitation Number:
2008.1
Branch:
Air Force
Award Year:
2008
Phase:
Phase I
Agency Tracking Number:
O081-IA2-1145
Solicitation Topic Code:
OSD08-IA2
Small Business Information
GRAMMATECH, INC.
317 N. Aurora Street, Ithaca, NY, 14850
Hubzone Owned:
N
Woman Owned:
N
Socially and Economically Disadvantaged:
N
Duns:
603978321
Principal Investigator
 Thomas Johnson
 Software Engineer
 (607) 273-7340
 tjohnson@grammatech.com
Business Contact
 Ray Teitelbaum
Title: CEO
Phone: (607) 273-7340
Email: tt@grammatech.com
Research Institution
N/A
Abstract
A number of software defenses exist that frustrate attempts to examine or tamper with a protected application. However, attackers are unlikely to approach the defenses head-on. One weak point is during installation and deployment of defenses. There is sort of a “who came first” game played between the protected application and the attacker. If the attacker arrives first, then they can observe the defenses as they are setup, gaining great insight into how the protections can be subverted. This opening must be prevented. We envision a technique that enhances existing defenses by protecting the loading phase of the sensitive application. Under this system, attackers are denied access to system initialization and sensitive software is made inseparable from the OS, thereby preventing attack before protection can be raised against it.

* information listed above is at the time of submission.

Agency Micro-sites

US Flag An Official Website of the United States Government