Formal Methods for Malware Detection

Award Information
Agency:
Department of Defense
Branch
Office of the Secretary of Defense
Amount:
$100,000.00
Award Year:
2006
Program:
SBIR
Phase:
Phase I
Contract:
FA8750-06-C-0159
Award Id:
78531
Agency Tracking Number:
O053-SP2-1241
Solicitation Year:
n/a
Solicitation Topic Code:
n/a
Solicitation Number:
n/a
Small Business Information
30 River Court, Suite 2301, Jersey City, NJ, 07310
Hubzone Owned:
N
Minority Owned:
N
Woman Owned:
N
Duns:
361627933
Principal Investigator:
MiroslavVelev
President, CEO, CTO
(201) 626-3192
miroslav.velev@aries-da.com
Business Contact:
MiroslavVelev
President, CEO, CTO
(201) 626-3192
miroslav.velev@aries-da.com
Research Institute:
n/a
Abstract
Our objective is to develop highly automatic and scalable formal methods for malware detection. Existing tools for malware detection operate by searching for pattern matches with respect to signatures of known malware, and can account for only limited variations in the malware. That makes these detectors generally incapable of identifying newly released malware. Furthermore, due to the short signatures used for most malware, and the inability of these detectors to account for many code obfuscations, i.e., code transformations that preserve the malicious behavior and produce code with a radically different structure, such malware detectors are virtually incapable of identifying most of the obfuscated variants of known malware. In this proposed research we will: 1) investigate formal methods for detection of malicious intent in binary code; 2) develop automatic formal techniques to detect obfuscations that are based on reordering of the memory accesses in known malware; 3) explore formal approaches to account for obfuscations that are based on replacing instructions with different instructions that have equivalent semantics; and 4) develop efficient translations to SAT of the Boolean formulas generated in formal detection of malware in order to enable our malware detection tool to run on commodity PCs with limited memory.

* information listed above is at the time of submission.

Agency Micro-sites


SBA logo

Department of Agriculture logo

Department of Commerce logo

Department of Defense logo

Department of Education logo

Department of Energy logo

Department of Health and Human Services logo

Department of Homeland Security logo

Department of Transportation logo

Enviromental Protection Agency logo

National Aeronautics and Space Administration logo

National Science Foundation logo
US Flag An Official Website of the United States Government