Raytheon joins 'STONESOUP' team to improve software security
Raytheon Company has been selected as a subcontractor on a program to foil attacks against software of uncertain origin.
Engineers from Raytheon Integrated Defense Systems (IDS) have joined a team led by GrammaTech, Inc., to develop a technology that prevents the exploitation of vulnerabilities in software whose pedigree, or provenance in cyberparlance, is uncertain. The contract is part of STONESOUP - Securely Taking On New Executable Software Of Uncertain Provenance - a program of the Intelligence Advanced Research Projects Activity.
The multiyear contract administered by the Air Force Research Laboratory is for $12.9 million. GrammaTech, a manufacturer of software-analysis tools, is located in Ithaca, N.Y. Other team members include the University of Virginia and the Georgia Institute of Technology. Raytheon's piece of the contract is estimated at $2.5 million.
"Software developers often bundle software components from various sources, not knowing the vulnerabilities that these components bring with them," said Tom Bracewell, Raytheon's principal investigator. "An attacker may know how to exploit these vulnerabilities. Our goal is to eliminate the supply chain risk by removing these vulnerabilities or rendering them harmless."
The team's approach is to remove or mask vulnerabilities through automated analysis, repair, diversification, and visualization of executable code.
Raytheon will perform its role of technology integration, test, evaluation, and transition at IDS' Customer Integration Center in Arlington, Va.
Source: Raytheon
More from Digital Battlespace
-
![Wave Relay devices cleared for security use on commercial systems in industry trend]()
Wave Relay devices cleared for security use on commercial systems in industry trend
Persistent Systems has been cleared by National Security Agency (NSA) to transmit sensitive data on commercial networks. The devices are added to the NSA’s Commercial Solutions for Classified (CSfC) component list which also includes other companies’ products providing the same security.
-
![UK teases cyber spending boost in Strategic Defence Review ahead of “imminent” release]()
UK teases cyber spending boost in Strategic Defence Review ahead of “imminent” release
The release of the UK’s Strategic Defence Review (SDR) has been long promised as mid-year. It is possible it could be as early as 2 June although the UK Ministry of Defence (MoD) continues to play its cards close to its chest.
-
![Intelsat emphasises SATCOM resilience for SOF in contested domains (video)]()
Intelsat emphasises SATCOM resilience for SOF in contested domains (video)
Intelsat outlines how its multi-orbit SATCOM architecture is enhancing connectivity and resilience for special operations forces operating in degraded and contested environments.
-
![US Space Force’s next-generation missile warning system moves forward with $500 million in new contracts]()
US Space Force’s next-generation missile warning system moves forward with $500 million in new contracts
Next-Generation Overhead Persistent Infrared (Next-Gen OPIR) satellites are intended to provide early warning of missile launches from any location worldwide and new ground stations will result in expanded coverage of critical missile warning.
-
![Airbus launches final CSO observation satellite for French Armed Forces]()
Airbus launches final CSO observation satellite for French Armed Forces
Airbus was awarded the Composante Spatiale Optique (CSO) contract at the end of 2010. This included an option for a third satellite, which was activated after Germany joined the programme in 2015.
-
![Intelligence advantage: How real-time GEOINT is reshaping military decision-making (Studio)]()
Intelligence advantage: How real-time GEOINT is reshaping military decision-making (Studio)
In today’s contested operational environment, adaptability is key. The new Geospatial-Intelligence as a Service (GEO IaaS) solution from Fujitsu and MAIAR empowers militaries by enabling intelligence advantage, combining advanced technology with human expertise to deliver actionable insights.
