Assured Micropatching (AMP)
Abstract
The Assured Micropatching (AMP) program, building on technical challenges encountered in the Computers and Humans Exploring Software Security (CHESS) program, also budgeted in this PE and Project, will develop technologies to enable the rapid production of targeted micropatches to repair legacy program binaries with strong guarantees. At present, the emergency patching of legacy software, even if all relevant information is available, takes far too long, leaving critical systems with known flaws vulnerable to adversary attack. AMP will create the capability to analyze, modify, and fix legacy software in binary form even when the original source code and/or build process is not fully available. The AMP technical approach involves automatic discovery of known vulnerable components, goal-driven decompilation to isolate and analyze the vulnerable binary components, and minimal-change patching and recompilation to rebuild affected binaries with strong guarantees that the patch will not impair the functions of the system. The technologies developed by AMP aim to enable cyber defenders to quickly and accurately patch legacy binaries in the deployed software systems upon which our military depends.
Document Details
- Document Type
- Accomplishment
- Publication Date
- Oct 01, 2021
- Source ID
- ae935d330d4c98779b6c26e44b8c26f7