Kevlar: Transitioning Helix from Research to Practice

Abstract

Security weaknesses in DoD information systems remain a major challenge for system stakeholders. We have advanced technology transition for technology developed under the Helix and PEASOUP projects to protect Air Force systems of interests. The result is an asset that, if widely deployed by the DoD, would enable a high level of confidence in the security of DoD systems, in particular, confidence that certain classes of critical vulnerabilities were no longer subject to possible exploitation. Our technology, called Kevlar, includes key security technologies are protective transformations and targeted recovery. The protective transformations are applied to application binaries before they are deployed. Salient features of Kevlar include applying high-entropy randomization techniques, automated program repairs, leveraging highly optimized virtual machine technology, and developing a novel framework for program analysis, transformation and composition.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Apr 01, 2015
Accession Number
ADA616998

Entities

People

  • Anh Nguyen-tuong
  • Jack W. Davidson
  • Jason D. Hiser
  • John C. Knight
  • Michele Co

Organizations

  • University of Virginia

Tags

Communities of Interest

  • C4I
  • Cyber

DTIC Thesaurus Topics

  • Air Force
  • Air Force Research Laboratories
  • Command And Control
  • Command And Control Systems
  • Computer Programming
  • Computer Programs
  • Computers
  • Contracts
  • Control Systems
  • Databases
  • Debugging
  • Department Of Defense
  • Governments
  • Information Systems
  • Operating Systems
  • Virtual Machines
  • Vulnerability

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Electrical Engineering
  • Enterprise Information Systems Architecture and Joint Command Capability Interoperability Support.