Multi-Platform Program Analysis

Award Information
Agency:
Department of Homeland Security
Branch
n/a
Amount:
$750,000.00
Award Year:
2010
Program:
SBIR
Phase:
Phase II
Contract:
D11PC20009
Agency Tracking Number:
0922001
Solicitation Year:
2009
Solicitation Topic Code:
H-SB09.2-004
Solicitation Number:
n/a
Small Business Information
GrammaTech, Inc.
317 N. Aurora Street, Ithaca, NY, -
Hubzone Owned:
N
Socially and Economically Disadvantaged:
N
Woman Owned:
N
Duns:
603978321
Principal Investigator:
Paul Anderson
(607) 273-7340
paul@grammatech.com
Business Contact:
Ray Teitelbaum
(607) 273-7340
tt@grammatech.com
Research Institution:
n/a
Abstract
The current generation of advanced static-analysis tools find vulnerabilities by exploring all possible executions of a program as configured for a single platform. Phase I research confirmed that a significant number of platform-specific defects may be missed if analysis is restricted to a single platform. The next quantum leap in capability will be a system that will explore all executions for many different platforms simultaneously. We propose to develop such a system by combining a number of state-of-the-art techniques. Novel continuous integration technology will allow distribution of concurrent analyses across a farm of heterogeneous machines. Advances in our static-analysis engine will exploit machine-code analysis to ferret out subtle platform-specific differences in behavior. Intelligent test-case-generation technology will find test inputs that trigger platform-specific defects. The results of these analyses will be collated, filtered, ranked, and presented to the analyst as a single combined report. The resulting analysis system will appeal to software producers in many market segments, including communications, medical electronics, avionics, and industrial control.

* information listed above is at the time of submission.

Agency Micro-sites

US Flag An Official Website of the United States Government