Software Protection to Deter Malicious Forensic Data Collection and Exploitation

Award Information
Agency:
Department of Defense
Branch
Air Force
Amount:
$750,000.00
Award Year:
2008
Program:
SBIR
Phase:
Phase II
Contract:
FA8650-08-C-1363
Agency Tracking Number:
O063-IA9-1258
Solicitation Year:
2006
Solicitation Topic Code:
OSD06-IA9
Solicitation Number:
2006.3
Small Business Information
GRAMMATECH, INC.
317 N. Aurora Street, Ithaca, NY, 14850
Hubzone Owned:
N
Socially and Economically Disadvantaged:
N
Woman Owned:
N
Duns:
603978321
Principal Investigator:
Colin Van Dyke
Sr. Scientist
(607) 273-7340
colin@grammatech.com
Business Contact:
Ray Teitelbaum
CEO and Chairman
(607) 273-7340
tt@grammatech.com
Research Institution:
n/a
Abstract
Global networks bring both new power and new risks. Mission-critical applications are increasingly spread over national or global networks to enable information gathering and sharing on an unprecedented scale. While this large-scale information sharing promises new efficiencies, each endpoint in a network represents a new point of attack. Sensitive applications running on a network must cope with the possibility that some endpoints have been compromised and are gathering forensic data for malicious ends. We propose a combination of technologies and techniques for protecting sensitive software from malicious forensic data collection. Our approach incorporates the following ideas: Offloading portions of the code to reconfigurable hardware; disguising sensitive applications as benign; using covert channels to communicate with relocated code; and providing artifacts that demonstrate the correctness of the protection.

* information listed above is at the time of submission.

Agency Micro-sites

US Flag An Official Website of the United States Government