Kernel-mode Software Protection to Prevent Piracy, Reverse Engineering, and Tampering of End-Node Applications

Award Information
Agency:
Department of Defense
Branch
Air Force
Amount:
$749,888.00
Award Year:
2008
Program:
SBIR
Phase:
Phase II
Contract:
FA8650-08-C-1360
Agency Tracking Number:
O063-IA6-1063
Solicitation Year:
2006
Solicitation Topic Code:
OSD06-IA6
Solicitation Number:
2006.3
Small Business Information
ASHTON SECURITY LABORATORIES, LLC
12530 Rock Ridge Road, Herndon, VA, 20170
Hubzone Owned:
N
Socially and Economically Disadvantaged:
N
Woman Owned:
N
Duns:
138256834
Principal Investigator:
Gary Grainger
Principal Engineer
(703) 579-6695
ggrainger@ashtonlabs.com
Business Contact:
David Thompson
President
(703) 421-9900
jdt@ashtonlabs.com
Research Institution:
n/a
Abstract
We propose to further the development of a secure integrity monitor for PCs. Its feasibility was determined in Phase I. It uses the System Management Mode of the Intel Pentium architecture (including compatible chips from AMD) to protect itself from tampering or interference by malicious software that is running in kernel mode, such as root-kits. It uses a statistical approach to malicious software detection that is asymmetrical in that it requires more effort from attackers to counter all of its potential protection mechanisms that it is required to actually execute.

* information listed above is at the time of submission.

Agency Micro-sites

US Flag An Official Website of the United States Government