AESOP - Automatic Extraction and verification of Security features Of Programs

Award Information
Agency:
Department of Defense
Branch
Air Force
Amount:
$99,993.00
Award Year:
2005
Program:
SBIR
Phase:
Phase I
Contract:
FA8650-05-C-8037
Agency Tracking Number:
O043-SP6-1018
Solicitation Year:
n/a
Solicitation Topic Code:
n/a
Solicitation Number:
n/a
Small Business Information
ATC - NY
33 Thornwood Drive, Suite 500, Ithaca, NY, 14850
Hubzone Owned:
N
Socially and Economically Disadvantaged:
N
Woman Owned:
N
Duns:
n/a
Principal Investigator:
Daryl McCullough
Senior Principal Scientist
(607) 257-1975
daryl@atc-nycorp.com
Business Contact:
Richard Smith
Controller
(607) 257-1975
rick@atc-nycorp.com
Research Institution:
n/a
Abstract
To address the threat of malicious third party software modules, ATC-NY, Professor Dexter Kozen, Cornell University, and Architecture Technology Corporation, will create AESOP, a static analysis tool that automatically extracts a digest of the security-relevant behavior of a software module at compile-time, which can be verified at load-time for accuracy and for compliance with a security policy. This digest will act as a code pedigree guaranteeing the trustworthiness of the program. Examples of policies that will be supported include the specification of proper I/O behavior and restrictions on the access to system operations and resources.

* information listed above is at the time of submission.

Agency Micro-sites

US Flag An Official Website of the United States Government