Autonomous Detection and Healing of Silent Vulnerabilities

BlueRISC's proposed solution provides a fundamentally new approach to enable autonomous detection of exploitation attempts as well as healing of silent vulnerabilities. It follows a hybrid approach consisting of (i) new static silent vulnerability point and associated path pre-characterization concepts, and (ii) the insertion of minimal and low-overhead runtime support enabled by the vulnerability characterization framework to enable validation, detection and healing at runtime. As opposed to other solutions, which rely on an attacker successfully injecting functionality in order to detect, this solution is also able to detect the exploitation of silent vulnerabilities, which leak information without modifying the system. The solution is CPU and operating system agnostic and thus widely applicable. Initial sectors that will be targeted include the critical infrastructure Energy Sector and the Defense Industrial Base Sector.