Print Print  
Award Information
Proposal Number: HSHQDC-14-R-00035-H-SB014.2-002-0006-I
Proposal Title: GenPatcher: Automatically Evolving Invulnerable Systems
Topic Number: H-SB014.2-002
Phase: Phase I
Topic Title: Automatic Detection and Patching of Vulnerabilities in Embedded Systems
Organization: GrammaTech, Inc.
Address: 531 Esty Street
Ithaca, NY 14850-4201  
Abstract: Modern civilization relies on a network of embedded devices that are (i) riddled with security vulnerabilities and (ii) remotely hackable. Unfortunately, there seems to be near universal neglect for ensuring the security of these devices. Moreover, the existing IT solutions, such as antivirus software and intrusion-detection systems, do not provide substantial benefits for protection of embedded systems. To address this problem, we propose GenPatcher, a fully automated end-to-end solution for securing embedded-systems software. GenPatcher will integrate (i) GrammaTech's ongoing research on vulnerability discovery and patch evaluation with (ii) recent breakthroughs in genetic program repair. The key advantage of GenPatcher is that it will be able to operate completely autonomously, without requiring human interaction. Thus we expect GenPatcher to significantly reduce the costs of vetting and deploying critical software. GenPatcher will operate directly on software binaries, even in the absence of source code, and thus, will protect equally well newly developed software, third-party codes, and legacy software. We will build GenPatcher to be easily retargetable to different instruction sets to accommodate a variety of platforms employed in the embedded systems domain.
Award/Contract Number: HSHQDC-14-C-00055
Period of Performance: 09/01/2014 - 02/28/2015
Award/Contract Value: $99,999.99
Award/Obligated Amount: $99,999.99