Sponsored Research

Our expertise in software analysis and binary transformation comes from decades of experience of high-tech research with the U.S. government and other organizations. Over the past two decades, we have partnered with several groups to help solve some of the most complex software challenges that impact devices' resiliency, safety, and security. Our work has been focused in three areas:

  • Software Assurance: new techniques and technologies for analyzing and correcting software to ensure runtime integrity and prevent unplanned system breaches and failures.
  • Software Hardening: technologies solely focused on system resiliency.
  • Autonomic Computing: providing software systems with the ability to ‘self-protect’

This graph shows how our research has evolved over time and continues in all three areas, ramping up hardening and autonomic computing research considerably now in support of new IoT-based challenges that are impacting today's devices.

Current and Completed Research Projects

Below is a listing of current and completed projects with our government sponsors, which highlights the areas in which we have a particular focus.

Air Force Research Laboratory (Rome)

Air Force Research Laboratory – Rome

AFRL-Rome

Completed Projects:

Automatic Artificial Diversity for Virtual Machines

Deep Static Analysis – Software Binaries

Cognitive Techniques for Analysis of Complex Software Systems

Source Code Vulnerability Detection

Detecting Malicious Code in Firmware

Anti-Tamper/Software Protection Initiative

AFRL-SPI

Completed Projects:

  • Covert Loading and Execution of Software Protections to Reduce Adversarial Detection
  • Run-Time Process Monitoring
  • Software Protection to Fight through an Attack
  • Deobfuscating Tools for the Validation & Verification of Tamper-Proofed Software
  • Software Protection to Deter Malicious Forensic Data Collection & Exploitation
  • Sanitizing Software of Malicious & Unauthorized Code
  • Light-Weight Virtualization as a Defense against Reverse Engineering
  • Software Protection through Specialized Commodity Processors
  • Hardware-Assisted Software Anti-Tamper
  • Reverse Engineering Kernel Mode Rootkits
  • Defenses Against Reverse Engineering
  • Trace-Based Disassembly

Air Force Research Laboratory – Wright-Patterson

AFRL-WP

Completed Projects:

  • Preventing Exploits Against Software of Uncertain Provenance (PEASOUP)
  • Prioritization of Weapon System Software Assurance Assessment

Defense Advanced Research Projects Agency

Defense Advanced Research Projects Agency

DARPA

Current Projects:

  • Inbound, Controlled, Air-Releasable Unrecoverable Systems (ICARUS)
  • Critical Vulnerability Discovery Using Big Code
  • Bug Injector: Injecting Vulnerabilities for Configurable Cyber Defense
  • Regenerative, INtent-Guided Systems (RINGS)
  • Vetting Commodity IT Software and Firmware (VET)
  • Automatic Detection and Patching of Vulnerabilities in Embedded Systems
  • Cyber Grand Challenge
  • Mining and Understanding Software Enclaves (MUSE)
  • Space/Time Analysis for Cybersecurity (STAC)
  • Automatic Software Diversity for Execution-Time Protection (CFAR)

Completed Projects:

  • Static Analysis Tools for SWRL
  • Verification of Hierarchical Graph Structures
  • Multi-Lingual Dependence-Graph Components for Software and Hardware Analysis and Specialization
  • Dependence Graphs for Information Assurance of Systems
  • A Framework for Aspect-Oriented Programming of Embedded Systems
  • Static Analysis of Multi-Core Applications
  • Static Analysis of AI Systems
  • Future Directions in Cyber Security RFI

Department of Homeland Security Advanced Research Projects Agency

Department of Homeland Security (DHS)

Homeland Security Advanced Research Projects Agency (HSARPA)

Current Projects:

  • Anticipating Malware Evolution

Completed Projects:

  • GenPatcher: Automatically Evolving Invulnerable Systems
  • Multi-Platform Program Analysis
  • Concolic Testing with Metronome
  • CodeSonar with Metronome
  • Model Checking Software Binaries

Missile Defense Agency

Missile Defense Agency

MDA

Completed Projects:

  • Information Assurance
  • Anti-tamper Technology for Missile Defense
  • A Refactoring Environment for Ada
  • Ballistic Missile Defense Innovative Anti-Tamper Techniques
  • Advanced Static Analysis for Software Assurance
  • A New Technique for Efficient Compression of Information

National Aeronautics and Space Administration

National Aeronautics and Space Administration

NASA

Current Projects:

  • Specification Editing and Discovery Assistant for C/C++ Software Development (SPEEDY)

Completed Projects:

  • Continuous Integrated Invariant Inference (Ciii)
  • Static Detection of Bugs in Embedded Software using Lightweight Verification
  • Static Analysis for Automatic Differentiation
  • A Refactoring Environment for Incremental Migration of Legacy Code

National Institute of Standards and Technology (NIST)

National Institute of Standards and Technology

NIST

Completed Projects:

  • Inline Reference Monitors for Java Bytecode

National Science Foundation

National Science Foundation

NSF

Current Projects:

  • Crowdsourcing Annotations

Completed Projects:

  • Defenses Against Malicious Code
  • An Aspect Oriented Solution for Unit Test Generation
  • Dependence Graphs for Internet Technologies

United States Air Force

United States Air Force

Current Projects:

  • WARP: Weaving Application-specific Runtime Policies in Embedded System Binaries
  • Embedded Computing Cyber Testing and Assessment Methods
  • ANTSS: Analysis Tools for System Surety

Completed Projects:

  • Virtual Trusted Platform Module (vTPM)
  • Fault Isolation in Hypervisors with Live Migration

United States Army

United States Army

Current Projects:

  • Automated Exploitability Reasoning

Completed Projects:

  • Field Programmable Gate Array (FPGA) Physical Unclonable Functions
  • Software System Reliability Analysis
  • Immersive Environments for Visualizing Software Tradeoffs
  • Software Anti-Tamper for Real-Time Systems
  • Semantics-Aware Malware Detection
  • Information Retrieval Techniques for Software Design Visualization

United States Navy

United States Navy

Current Projects:

  • Scalpel: Inserting Code into Firmware Images
  • Inserting Code into Firmware Images
  • Progressive Model Generation for Adaptive Resilient System Software

Completed Projects:

  • Cyber Resiliency for Critical Cyber Physical Systems
  • Graphical Trace Object (GTO) Tool
  • Mathematically Rigorous Analysis of Software Binaries
  • Deep Understanding of Complex High-Assurance Hypervisor Source Code
  • Tools for Software Architecture Visualization
  • Model Checking UML Designs

United States Navy Office of Naval Research

United States Navy – Office of Naval Research

ONR

Current Projects:

  • Lean and Efficient Software: Whole-Program Optimization of Executables
  • Multi-Abstractions System Reasoning Infrastructure toward Achieving Adaptive Computing Systems

Completed Projects:

  • Enhancing Code Awareness in Software Development Environment
  • Stealth and Real-Time Program Execution Monitoring
  • Deterministic Detection for Hijacked Program Execution
  • Safety in Numbers
  • Modernization of Legacy Software: Re-engineering Low-Level Code
  • Programmable Interfaces for Advanced Static Analysis
  • Model Checking of Software Designs
  • User Interface for Rule-Based Formal Methods Systems
  • Language-Based Software Environments
  • A Prototype Formal Methods Environment
  • Error-Handling Paths & Policies Analysis

Contact us for more information about our research.

Contact GrammaTech