Automatic Detection and Patching of Vulnerabilities in Embedded Systems

Award Information
Agency:
Department of Defense
Branch
Defense Advanced Research Projects Agency
Amount:
$100,000.00
Award Year:
2013
Program:
SBIR
Phase:
Phase I
Contract:
W31P4Q-13-C-0170
Agency Tracking Number:
D131-003-0055
Solicitation Year:
2013
Solicitation Topic Code:
SB131-003
Solicitation Number:
2013.1
Small Business Information
BlueRISC Inc
28 Dana Street, Amherst, MA, -
Hubzone Owned:
N
Socially and Economically Disadvantaged:
N
Woman Owned:
N
Duns:
102221665
Principal Investigator:
Kristopher Carver
Technical Director
(413) 359-0599
kris@bluerisc.com
Business Contact:
Sylvia Moritz
Operations Manager
(413) 549-0235
sylvia@bluerisc.com
Research Institution:
n/a
Abstract
In this proposal we outline a binary-level compilation technology and related toolkit to transform an embedded system's firmware to contain automated intrinsic support for both the detection of exploits as well as the patching of the firmware exploited. The toolkit called REDA (Resilience in Embedded devices through Dynamic Allocation) relies on post-compilation analyses and transformations designed to detect, respond to, and heal from an attack.

* information listed above is at the time of submission.

Agency Micro-sites

US Flag An Official Website of the United States Government