DARPA Taps GrammaTech for Artifi-cial Intel Exploration (AIE) Program

'ASTORS' Award Winning GrammaTech is developing the ReMath Program, focuses on Automating the Analysis of Mathematical Models in Cyber Physical System Binaries for maintenance and modernization.
'ASTORS' Award Winning GrammaTech is developing the ReMath Program, which focuses on Automating the Analysis of Mathematical Models in Cyber Physical System Binaries for maintenance and modernization.

For more than five decades, the Defense Advanced Research Projects Agency (DARPA), has been a leader in generating groundbreaking research and development (R&D) that facilitated the advancement and application of rule-based and statistical-learning based AI technologies.

Today, DARPA continues to lead innovation in AI research as it funds a broad portfolio of R&D programs, ranging from basic research to advanced technology development.

DARPA believes this future, where systems are capable of acquiring new knowledge through generative contextual and explanatory models, will be realized upon the development and application of “Third Wave” AI technologies.

(DARPA has funded developments in the second wave of AI – machine learning – which has significantly impacted defense and commercial capabilities in areas such as speech understanding, self-driving cars, and image recognition. Courtsy of DARPA TV and YouTube.)

GrammaTech, a leading provider of software application security testing research and products, and the 2020 Platinum ‘ASTORS’ Award Winner for Best Application Security Testing, has been awarded a contract under the DARPA AIE program to research the use of AI to infer mathematical algorithms baked into binary applications of cyber physical systems.

DARPA AIE sponsors research to prototype the development of new, game-changing AI technologies for U.S. National Security.

“This is the latest in a series of DARPA contracts awarded to GrammaTech based on our expertise in artificial intelligence and machine learning for software development and security,” explains Mike Dager, CEO of GrammaTech.

Mike Dager, Chief Executive Officer of GrammaTech
Mike Dager, Chief Executive Officer of GrammaTech

“These research projects are all designed to address the challenges of developing or maintaining critical infrastructure software when resources and expertise are scarce, and standards are rapidly evolving.”

GrammaTech is developing ReMath, an AI tool that can automatically infer high-level mathematical representations from existing binaries in cyber-physical systems and embedded software.

Currently, subject matter experts (SMEs) must manually analyze binaries through a time-consuming and expensive process, using low-level tools such as disassemblers, debuggers, and decompilers to recover the higher-level constructs encoded in software.

This requires extensive reverse engineering to be able to understand and modify systems. ReMath aims to address this gap and dramatically improve productivity by recovering and converting machine language into representations that SMEs find natural to work with.

Alexey Loginov, Vice President of Research at GrammaTech
Alexey Loginov, Vice President of Research at GrammaTech

“ReMath will enable subject matter experts to rapidly understand and model hardware-interfacing computations embedded in cyber-physical system binaries,” said Alexey Loginov, Vice President of Research at GrammaTech.

“This research will greatly lower the cost of analyzing, maintaining, and modernizing cyber-physical devices.”

Sample applications for this research include industrial control systems used in power and chemical processing plants where domain experts without reverse-engineering or coding experience could maintain and make changes to existing software.

This material is based upon work supported by the Defense Advanced Research Projects Agency (DARPA) under Agreement No. HR00112190018.

Key areas of DARPA’s “AI Next” campaign includes automating critical DoD business processes, such as security clearance vetting or accrediting software systems for operational deployment; improving the robustness and reliability of AI systems; enhancing the security and resiliency of machine learning and AI technologies; reducing power, data, and performance inefficiencies; and pioneering the next generation of AI algorithms and applications, such as “explainability” and common sense reasoning. (Courtesy of DARPA)
Key areas of DARPA’s “AI Next” campaign includes automating critical DoD business processes, such as security clearance vetting or accrediting software systems for operational deployment; improving the robustness and reliability of AI systems; enhancing the security and resiliency of machine learning and AI technologies; reducing power, data, and performance inefficiencies; and pioneering the next generation of AI algorithms and applications, such as “explainability” and common sense reasoning. (Courtesy of DARPA)

GrammaTech Takes Platinum in the 2020 ‘ASTORS’ Awards Program

American Security Today’s ‘ASTORS’ Homeland Security Awards program is in its Fifth Year and continues to recognize the Outstanding Innovations of top firms and agencies in the Homeland Security and Public Safety fields.

2020 has been a very challenging year for everyone due to the COVID-19 pandemic and the much heralded AST ‘ASTORS’ Awards Winners Presentations and exclusive Luncheon at the Jacob Javits Center in NYC has been canceled and rescheduled for 2021 due to the virus.

Mike Madsen, Publisher, American Security Today
Mike Madsen, Publisher, American Security Today

However, the 2020 ‘ASTORS’  Homeland Security Awards Program was again a huge success and many new categories were added including a section for COVID-19 Detection and Innovation.

GrammaTech

Best Application Security Testing

  • CodeSonar® Static Application Security Testing

  • Today, development teams are under constant pressure to meet aggressive deadlines for delivering new software, with rolling releases and agile development practices pushing new features and code quickly into production.

  • This has led to a sea change in software development where security is being baked-in earlier to release cycles, and to help organizations navigate this new “shift left” culture  GrammaTech developed the CodeSonar® Static Application Security Testing (SAST) platform to organically support each stage of the software development cycle and integrates with tool chains, methodologies and processes.

(CodeSentry is a Binary Software Composition Analysis (SCA) tool derived from GrammaTech’s ground-breaking binary code analysis research. This technology achieves deep scalable analysis without the need for source code and is suitable for enterprise wide adoption. Courtesy of GrammaTech and YouTube.)

  • Using CodeSonar, organizations can develop and release high quality and secure software that is free from harmful defects and exploitable weaknesses that can cause system failures, enable data breaches, and increase liability.

CodeSonar employs a unified dataflow and symbolic execution analysis that examines the computation of the complete application. By not relying on pattern matching or similar approximations, CodeSonar's static analysis engine is extraordinarily deep, finding 3-5 times more defects on average than other static analysis tools.
CodeSonar employs a unified dataflow and symbolic execution analysis that examines the computation of the complete application. By not relying on pattern matching or similar approximations, CodeSonar’s static analysis engine is extraordinarily deep, finding 3-5 times more defects on average than other static analysis tools.
  • Unlike alternatives including testing tools, compilers, configuration management, etc., the CodeSonar SAST platform can be integrated into the application development process at any stage with ease, so organizations can simply attach CodeSonar to their existing build environments.

  • CodeSonar provides validation of coding standards and best practices including MISRA, JPL, CERT-C and static verification using formal method concepts to find defects including runtime errors, buffer overruns, API misuse, misuse of socket API, suspicious behavior, dead code unused variables.

  • GrammaTech CodeSonar is being used by some of the world’s most security conscious organizations, including application developers in the defense (DOD, DARPA, Army, Navy), automotive, aerospace, industrial and medical device sectors to test embedded software for security and safety vulnerabilities, and helps federal defense, intelligence and federal civil agencies tackle their most complex cybersecurity challenges.

GrammaTech is a leading global provider of software analysis and testing solutions used by the world’s most security conscious organizations to detect, measure, analyze and resolve security and safety vulnerabilities.

The company is also a trusted cybersecurity research partner for the nation’s civil, defense, and intelligence communities with corporate headquarters in Bethesda MD with a Research and Development Center in Ithaca NY.

To Learn More, please visit grammatech.com/.

The 2020 ‘ASTORS’ Awards Program is sponsored by ATI SystemsAttivo NetworksAutomatic SystemsDesktop Alert, X.Labs and Reed Expositionsevery one a returning Sponsor from 2019.

Why American Security Today?

The traditional security marketplace has long been covered by a host of publications putting forward the old school basics to what is Today – a fast changing security landscape.

The traditional security marketplace has long been covered by a host of publications putting forward the old school basics to what is Today – a fast changing security landscape.

American Security Today is uniquely focused on the broader Homeland Security & Public Safety marketplace with over 75,000 readers at the Federal, State and local levels of government as well as firms allied to government.

American Security Today brings forward a fresh compelling look and read with our customized digital publications that hold readers eyes throughout the story with cutting edge editorial that provides solutions to their challenges.

Harness the Power of the Web – with our 100% Mobile Friendly Publications

AST puts forward the Largest and Most Qualified Circulation in Government with Over 75,000 readers on the Federal, State and Local levels.
AST puts forward the Largest and Most Qualified Circulation in Government with Over 75,000 readers on the Federal, State and Local levels.

The AST Digital Publications is distributed to over 75,000 qualified government and homeland security professionals in federal, state and local levels.

‘PROTECTING OUR NATION, ONE CITY AT A TIME’

AST Reaches both Private & Public Experts, essential to meeting these new challenges.

Today’s new generation of public safety and security experts need real-time knowledge to deal with domestic and international terrorism, lone wolf attacks, unprecedented urban violence, shifts in society, culture and media bias – making it increasingly difficult for Homeland Security, Law Enforcement, First Responders, Military and Private Security Professionals to implement coordinated security measures to ensure national security and improve public safety.

American Security Today

These experts are from Government at the federal, state and local level as well as from private firms allied to government.

AST provides a full plate of topics in our AST Monthly Magazine Editions, AST Website and AST Daily News Alerts, covering 23 Vital Sectors such as Access Control, Perimeter Protection, Video Surveillance/Analytics, Airport Security, Border Security, CBRNE Detection, Border Security, Ports, Cybersecurity, Networking Security, Encryption, Law Enforcement, First Responders, Campus Security, Security Services, Corporate Facilities, and Emergency Response among others.

AST has Expanded readership into integral Critical Infrastructure audiences such as Protection of Nuclear Facilities, Water Plants & Dams, Bridges & Tunnels, and other potential targets of terrorism.

Other areas of concern include Transportation Hubs, Public Assemblies, Government Facilities, Sporting & Concert Stadiums, our Nation’s Schools & Universities, and Commercial Business Destinations – all enticing targets due to the large number of persons and resources clustered together.

To learn more about the 2020 ‘ASTORS’ Homeland Security Award Winners solutions, please be on the lookout for the 2020 ‘ASTORS’ CHAMPIONS Edition Fully Interactive Magazine – the Best Products of 2020 ‘A Year in Review’.

The Annual CHAMPIONS edition includes a review of the ‘ASTORS’ Award Winning products and programs, highlighting key details on many of the winning firms products and services, includes video interviews and more.

It will be your Go-To source throughout the year for ‘The Best of 2020 Products and Services‘ endorsed by American Security Today, and can satisfy your agency’s and organization’s most pressing Homeland Security and Public Safety needs.

From Physical Security (Access Control, Critical Infrastructure, Perimeter Protection and Video Surveillance Cameras and Video Management Systems), to IT Security (Cybersecurity, Encryption, Data Storage, Anti-Malware and Networking Security – Just to name a few), the 2020 ‘ASTORS’ CHAMPIONS EDITION will have what you need to Detect, Delay, Respond to, and Mitgate today’s real-time threats in our constantly evolving security landscape.

It also includes featured guest editorial pieces from some of the security industry’s most respected leaders, and recognized firms in the 2020 ‘ASTORS’ Awards Program.

  • For a complete list of 2020 ‘ASTORS’ Award Winners, click here.

For more information about the Annual ‘ASTORS’ Awards or All Things American Security Today, please contact Michael Madsen, AST Publisher at mmadsen@americansecuritytoday.com.

AST strives to meet a 3 STAR trustworthiness rating, based on the following criteria:

  • Provides named sources
  • Reported by more than one notable outlet
  • Includes supporting video, direct statements, or photos

Subscribe to the AST Daily News Alert Here.