You are here

Software Trustworthiness Assessment Tool (STAT)

Award Information
Agency: Department of Defense
Branch: Air Force
Contract: FA8750-07-C-0093
Agency Tracking Number: F071-069-0729
Amount: $99,981.00
Phase: Phase I
Program: SBIR
Solicitation Topic Code: AF071-069
Solicitation Number: 2007.1
Timeline
Solicitation Year: 2007
Award Year: 2007
Award Start Date (Proposal Award Date): 2007-04-23
Award End Date (Contract End Date): 2008-04-23
Small Business Information
625 Mount Auburn Street
Cambridge, MA 02138
United States
DUNS: 115243701
HUBZone Owned: No
Woman Owned: No
Socially and Economically Disadvantaged: No
Principal Investigator
 Curt Wu
 Chief Software Engineer
 (617) 491-3474
 cwu@cra.com
Business Contact
 Paul Gonsalves
Title: Vice President
Phone: (617) 491-3474
Email: pgonsalves@cra.com
Research Institution
N/A
Abstract

Warfighters are increasingly dependent on systems that must be reliable and secure to perform their missions. There is a growing concern about software system security because many current software systems are neither reliable nor secure. With the possibility of external agents and conditions accidentally or purposefully degrading system performance, software should ideally be secure from these threats. In short the software must be trustworthy. A method is needed for the system administrator to assess the current security level of a system and gain insight into active vulnerabilities, so risk can be actively managed rather than incorrectly assumed to be at a constant level. Also, an approach is needed to learn during runtime what behavior at a system level is “normal” and by extension, trustworthy, and what is unusual and potentially untrustworthy. We are pleased to submit this proposal to design and demonstrate the feasibility of a Software Trustworthiness Assessment Tool (STAT). This effort will investigate techniques for assessing the software trustworthiness of an integrated system during runtime. We anticipate that the results of this effort will be widely applicable to any software system where trustworthiness is a concern and analysis of individual application trustworthiness is not sufficient.

* Information listed above is at the time of submission. *

US Flag An Official Website of the United States Government