You are here

Anti-Malcious Source Scanner

Award Information
Agency: Department of Defense
Branch: Missile Defense Agency
Contract: W9113M-05-C-0084
Agency Tracking Number: 044-0629
Amount: $100,000.00
Phase: Phase I
Program: SBIR
Solicitation Topic Code: MDA04-092
Solicitation Number: 2004.4
Timeline
Solicitation Year: 2004
Award Year: 2005
Award Start Date (Proposal Award Date): 2005-02-07
Award End Date (Contract End Date): 2005-08-06
Small Business Information
190 Green Valley Road
Owens Crossroads, AL 35763
United States
DUNS: 142295422
HUBZone Owned: No
Woman Owned: No
Socially and Economically Disadvantaged: Yes
Principal Investigator
 Luis Lopez
 CTO
 (256) 656-9652
 luis@hiwaay.net
Business Contact
 Luis Lopez
Title: President
Phone: (256) 656-9652
Email: luis@hiwaay.net
Research Institution
N/A
Abstract

2LR proposes to develop a malicious source code scanner that can flag sections of potentially `bad' source code that is vulnerable to exploitation or may contain latent malicious content. This effort will evaluate and compare current methods for detecting malicious code with a novel method based on code-logic signature analysis and discrimination. It will develop pattern classes that are associated with patterns of logic instructions present within actual malcode specimens. We expect malcode control flow logic patterns to cluster in `pattern space' (i.e. revealing code logic pedigrees). This is because specific algorithmic logic must be used to effect specific behaviors. Specific exploits are achieved by specific behaviors. The logic that codes malicious (exploitive) behavior becomes the signature. If a group of malware specimens all use the same exploitive behavior, their signatures will all have similar traits. In some sense, this is akin to DNA patterns and how they also cluster for different pedigrees.

* Information listed above is at the time of submission. *

US Flag An Official Website of the United States Government