Accession Number : ADA616998


Title :   Kevlar: Transitioning Helix from Research to Practice


Descriptive Note : Final technical rept. Feb 2013-Nov 2014


Corporate Author : VIRGINIA UNIV CHARLOTTESVILLE DEPT OF COMPUTER SCIENCE


Personal Author(s) : Davidson, Jack W ; Knight, John C ; Co, Michele ; Hiser, Jason D ; Nguyen-Tuong, Anh


Full Text : https://apps.dtic.mil/dtic/tr/fulltext/u2/a616998.pdf


Report Date : Apr 2015


Pagination or Media Count : 33


Abstract : Security weaknesses in DoD information systems remain a major challenge for system stakeholders. We have advanced technology transition for technology developed under the Helix and PEASOUP projects to protect Air Force systems of interests. The result is an asset that, if widely deployed by the DoD, would enable a high level of confidence in the security of DoD systems, in particular, confidence that certain classes of critical vulnerabilities were no longer subject to possible exploitation. Our technology, called Kevlar, includes key security technologies are protective transformations and targeted recovery. The protective transformations are applied to application binaries before they are deployed. Salient features of Kevlar include applying high-entropy randomization techniques, automated program repairs, leveraging highly optimized virtual machine technology, and developing a novel framework for program analysis, transformation and composition.


Descriptors :   *COMPUTER SECURITY , COMPUTER PROGRAMS , DEPARTMENT OF DEFENSE , INFORMATION SYSTEMS , VULNERABILITY


Subject Categories : Computer Systems Management and Standards


Distribution Statement : APPROVED FOR PUBLIC RELEASE