TWC: Medium: Collaborative: Retrofitting Software for Defense-in-Depth

TWC：中：协作：改进纵深防御软件

• 批准号: 1408803
• 负责人: Vinod Ganapathy
• 金额: $ 30万
• 依托单位: Rutgers University New Brunswick
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2014
• 资助国家: 美国
• 起止时间: 2014-09-01 至 2018-08-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1408803&HistoricalAwards=false
• 关键词: TWC; Medium; Collaborative; Retrofitting; Software

The computer security community has long advocated the concept of building multiple layers of defense to protect a system. Unfortunately, it has been difficult to realize this vision in the practice of software development, and software often ships with inadequate defenses, typically developed in an ad hoc fashion.Developers face a number of challenges when protecting a software system with multiple layers of defense. They lack holistic frameworks in which to express policies and mechanisms for different software layers, automated tools to add these defenses, and tools to prove that software enhanced with defenses has an advertised level of assurance.This project develops new techniques to retrofit software for defense in depth. It takes a comprehensive view of the problem, with an emphasis on automated, interactive tools that developers can use to identify site-level security goals, explore the design space of adding security mechanisms, and retrofit legacy code to enforce security policies in a manner that can be machine-verified for assurance. The project develops theory and tools for formal policy language design and validation, static and dynamic code analyses, interactive tools for developers to explore the design space of security, functionality and performance tradeoffs, and methods to formally verify the correctness of program transformations to introduce defenses such as authorization, attacker containment, and auditing mechanisms.The broader impact stems from the improved security of systems and the reduced cost of achieving better security, also education activities in the form of summer schools for graduate, undergraduate and high-school students. The tools developed will be released to the public domain, benefiting software developers in the field.

计算机安全社区长期以来一直倡导建立多层防御来保护系统的概念。 不幸的是，在软件开发实践中很难实现这一愿景，并且软件通常带有不充分的防御，通常以临时方式开发。开发人员在保护具有多层防御的软件系统时面临许多挑战。他们缺乏整体框架来表达不同软件层的策略和机制，缺乏自动化工具来添加这些防御，缺乏工具来证明增强了防御的软件具有广告级别的保证。它对问题有一个全面的看法，重点是开发人员可以用来确定站点级安全目标的自动化交互式工具，探索添加安全机制的设计空间，并改造遗留代码，以机器验证的方式强制执行安全策略。该项目开发了用于正式策略语言设计和验证的理论和工具，静态和动态代码分析，开发人员探索安全，功能和性能权衡的设计空间的交互式工具，以及正式验证程序转换正确性的方法，以引入诸如授权，攻击者遏制，更广泛的影响来自系统安全的改善和实现更好安全的成本降低，以及以研究生、本科生和高中生暑期学校形式开展的教育活动。开发的工具将向公共领域发布，使该领域的软件开发人员受益。