Print Print  
Award Information
Proposal Number: HSHQDC-14-R-00035-H-SB014.2-002-0004-II
Proposal Title: Autonomous Detection and Healing of Silent Vulnerabilities
Topic Number: H-SB014.2-002
Phase: Phase II
Topic Title: Automatic Detection and Patching of Vulnerabilities in Embedded Systems
Organization: BlueRISC, Inc.
Address: 28 Dana St
Amherst, MA 01002-0000  
Abstract: BlueRISC's proposed solution provides a fundamentally new approach to enable autonomous detection of exploitation attempts as well as healing of silent vulnerabilities. It follows a hybrid approach consisting of (i) new static silent vulnerability point and associated path pre-characterization concepts, and (ii) the insertion of minimal and low-overhead runtime support enabled by the vulnerability characterization framework to enable validation, detection and healing at runtime. As opposed to other solutions, which rely on an attacker successfully injecting functionality in order to detect, this solution is also able to detect the exploitation of silent vulnerabilities, which leak information without modifying the system. The solution is CPU and operating system agnostic and thus widely applicable. Initial sectors that will be targeted include the critical infrastructure Energy Sector and the Defense Industrial Base Sector.
Award/Contract Number: D15PC00114
Period of Performance: 09/09/2015 - 09/23/2017
Award/Contract Value: $749,952.01
Award/Obligated Amount: $749,952.01