TWC: Medium: Collaborative: Retrofitting Software for Defense-in-Depth

TWC：中：协作：改进纵深防御软件

• 批准号: 1408880
• 负责人: Trent Jaeger
• 金额: $ 30万
• 依托单位: Pennsylvania State Univ University Park
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2014
• 资助国家: 美国
• 起止时间: 2014-09-01 至 2019-08-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1408880&HistoricalAwards=false
• 关键词: TWC; Medium; Collaborative; Retrofitting; Software

The computer security community has long advocated the concept of building multiple layers of defense to protect a system. Unfortunately, it has been difficult to realize this vision in the practice of software development, and software often ships with inadequate defenses, typically developed in an ad hoc fashion.Developers face a number of challenges when protecting a software system with multiple layers of defense. They lack holistic frameworks in which to express policies and mechanisms for different software layers, automated tools to add these defenses, and tools to prove that software enhanced with defenses has an advertised level of assurance.This project develops new techniques to retrofit software for defense in depth. It takes a comprehensive view of the problem, with an emphasis on automated, interactive tools that developers can use to identify site-level security goals, explore the design space of adding security mechanisms, and retrofit legacy code to enforce security policies in a manner that can be machine-verified for assurance. The project develops theory and tools for formal policy language design and validation, static and dynamic code analyses, interactive tools for developers to explore the design space of security, functionality and performance tradeoffs, and methods to formally verify the correctness of program transformations to introduce defenses such as authorization, attacker containment, and auditing mechanisms.The broader impact stems from the improved security of systems and the reduced cost of achieving better security, also education activities in the form of summer schools for graduate, undergraduate and high-school students. The tools developed will be released to the public domain, benefiting software developers in the field.

计算机安全社区长期以来一直提倡构建多层防御来保护系统的概念。 不幸的是，在软件开发实践中很难实现这一愿景，并且软件通常没有足够的防御措施，通常是以临时方式开发的。开发人员在使用多层防御保护软件系统时面临着许多挑战。他们缺乏表达不同软件层的策略和机制的整体框架，缺乏添加这些防御的自动化工具，以及证明通过防御增强的软件具有宣传的保证水平的工具。该项目开发了新技术来改造软件以实现深度防御。它对问题进行了全面的审视，重点是自动化、交互式工具，开发人员可以使用这些工具来识别站点级安全目标，探索添加安全机制的设计空间，并改造遗留代码以通过机器验证的方式强制执行安全策略以确保安全。该项目开发用于正式策略语言设计和验证、静态和动态代码分析的理论和工具，供开发人员探索安全、功能和性能权衡设计空间的交互式工具，以及形式验证程序转换正确性的方法，以引入授权、攻击者遏制和审计机制等防御措施。更广泛的影响源于系统安全性的提高和实现更好安全性的成本的降低，以及夏季形式的教育活动 研究生、本科生和高中生的学校。开发的工具将发布到公共领域，使该领域的软件开发人员受益。