Secure Environment for Distributed Development (SEDD) using the Software Pedigree Analyzer (SPA)

Award Information
Agency: Department of Defense
Branch: Air Force
Contract: FA8650-05-C-8042
Agency Tracking Number: O043-SP7-1168
Amount: $99,945.00
Phase: Phase I
Program: SBIR
Awards Year: 2005
Solicitation Year: 2004
Solicitation Topic Code: OSD04-SP7
Solicitation Number: 2004.3
Small Business Information
4900 University Square, Suite 8, Huntsville, AL, 35816
HUBZone Owned: N
Woman Owned: N
Socially and Economically Disadvantaged: N
Principal Investigator
 Leigh Davis
 Principal Analyst II
 (256) 430-0860
Business Contact
 Peter Kiss
Title: CEO
Phone: (256) 430-0860
Research Institution
During large software development projects, assuring tamper-proof source code is often difficult or impossible. Currently, many projects are vulnerable to attacks-both insider and external. The Software Protection Initiative (SPI) is charged with the task of ensuring all modifications to a project's source code can be accounted for using a Software Pedigree Analyzer (SPA). The SPA provides a method for tracking modifications and ensuring user authenticity via a mechanism for non-repudiation. When malicious code is detected, the SPA would allow a project manager to determine exactly which developer made the modification, what specific changes were made, and when the changes occurred. This requires certain data be collected-primarily the who, what, when, where, and how of the source code modifications. Additional capabilities include documenting each change, the ability to revert previous code versions, monitoring personnel activities during source code access, and notifying the proper authorities during abnormal activities. Sentar and SYColeman have teamed to propose a Secure Environment for Distributed Development (SEDD) architecture in order to protect the code pedigree of a software project. SEDD will act as a distributed development environment which programmers access to modify the source code while retaining control over the source code at all times.

* Information listed above is at the time of submission. *

Agency Micro-sites

SBA logo
Department of Agriculture logo
Department of Commerce logo
Department of Defense logo
Department of Education logo
Department of Energy logo
Department of Health and Human Services logo
Department of Homeland Security logo
Department of Transportation logo
Environmental Protection Agency logo
National Aeronautics and Space Administration logo
National Science Foundation logo
US Flag An Official Website of the United States Government