Kevlar: Transitioning Helix for Research to Practice

Abstract

Security weaknesses in DoD information systems remain a major challenge for system stakeholders. We have advanced technology transition for technology developed under the Helix and PEASOUP projects to protect Air Force systems of interests. The result is an asset that, if widely deployed by the DoD, would enable a high level of confidence in the security of DoD systems, in particular, confidence that certain classes of critical vulnerabilities were no longer subject to possible exploitation. Our technology, called Kevlar, includes key security technologies are protective transformations and targeted recovery. The protective transformations are applied to application binaries before they are deployed. Salient features of Kevlar include applying high-entropy randomization techniques, automated program repairs leveraging highly-optimized virtual machine technology, and developing a novel framework for program analysis, transformation and composition

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Mar 01, 2016
Accession Number
AD1005651

Entities

People

  • Anh Nguyen-tuong
  • Jack W. Davison
  • Jason D. Hiser
  • John C. Knight
  • Michele Co

Organizations

  • University of Virginia

Tags

Communities of Interest

  • C4I
  • Cyber
  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Air Force
  • Air Force Research Laboratories
  • Application Software
  • Central Processing Units
  • Code Injection
  • Computer Programming
  • Computer Programs
  • Computers
  • Computing System Architectures
  • Department Of Defense
  • Graphical User Interface
  • Information Systems
  • Instruction Set Architecture
  • Operating Systems
  • Security
  • Virtual Machines
  • Vulnerability

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Defense Technology Research and Development.
  • Reinforced Composite Materials