Differential Analysis Software Protection

Award Information
Agency:
Department of Defense
Branch
Office of the Secretary of Defense
Amount:
$100,000.00
Award Year:
2003
Program:
SBIR
Phase:
Phase I
Contract:
F33615-03-M-1547
Award Id:
66765
Agency Tracking Number:
O031-0119
Solicitation Year:
n/a
Solicitation Topic Code:
n/a
Solicitation Number:
n/a
Small Business Information
TECHNOLOGY INTERNATIONAL, INC. (Currently Technology International Incorporated of Virginia)
429 West Airline Highway, Suite S, LaPlace, LA, 70068
Hubzone Owned:
N
Minority Owned:
N
Woman Owned:
N
Duns:
057140477
Principal Investigator:
Golden Richard, III
Senior Computer Scientist
(985) 652-1127
techint@rtconline.com
Business Contact:
Zeinab Sabri
President & COO
(985) 652-1127
dr_sabri@rtconline.com
Research Institution:
n/a
Abstract
This Phase I Small Business Innovation Research Project will examine the technical feasibility of a robust, low cost software differential analysis shield (SoftDASh) that comprises several tools and methodologies for effectively countering differentialanalysis of application software. SoftDASh components will be optimized to operate on standard processors (e.g., ADM, Intel, Motorola, etc.) used in any computer system and to minimizes performance degradation of the application software. This developmentis important because differential analysis, a specific type of reverse engineering, can help pinpoint the locations of changes across released versions of software, potentially allowing newly introduced security features to be more easily defeated. Theeffort will examine various differential analysis techniques and identify the strengths and weaknesses of each technique. Based on that, innovative SoftDASh tools and techniques will be identified to counter those differential analysis techniques,including methods to prevent the use of reverse engineering tools such as debuggers and disassemblers, which aid in determining how software has changed across released versions. From those a set of tools and techniques will be recommended forincorporation into a SoftDASh prototype for demonstration in Phase II. Any computer application where software security is a concern would benefit from the SoftDASh technology, especially when the software is vulnerable to differential analysis. Thisincludes applications software, which undergoes several releases to improve security, to introduce new access control mechanisms, or similar. The SoftDASh tools and technologies would be highly marketable in both the DoD and commercial sectors forprotection of high-value software against differential analysis. The SoftDASh technology would also be applicable to any software already in widespread use (DoD or Commercial) where protection is desired for newer versions. The SoftDASh tools would be mostbeneficial for protection of costly special applications software packages that have limited distribution.

* information listed above is at the time of submission.

Agency Micro-sites


SBA logo

Department of Agriculture logo

Department of Commerce logo

Department of Defense logo

Department of Education logo

Department of Energy logo

Department of Health and Human Services logo

Department of Homeland Security logo

Department of Transportation logo

Enviromental Protection Agency logo

National Aeronautics and Space Administration logo

National Science Foundation logo
US Flag An Official Website of the United States Government