Space/Time Analysis for Cybersecurity (STAC)
Abstract
The Space/Time Analysis for Cybersecurity (STAC) program is developing techniques to detect vulnerabilities to algorithmic complexity and side channel attacks in software. Historically, adversaries have exploited software implementation flaws through buffer and heap overflow attacks. Advances in operating systems have largely mitigated such attacks, so now cyber adversaries must find new ways of compromising software. Algorithmic complexity and side channel attacks are emerging as the next generation of attacks since they depend on intrinsic properties of the algorithms themselves rather than implementation flaws. News reports have highlighted the first wave of these attacks (CRIME, BREACH, Hash DoS). The STAC program seeks to develop new analysis tools and techniques to detect vulnerabilities to these attacks in the software upon which the U.S. government, military, and economy depend.
Document Details
- Document Type
- Accomplishment
- Publication Date
- Oct 01, 2017
- Source ID
- 220b216544a7362df892bdd7c62d2fb9