Technical Areas

Vulnerability Discovery

Developing advanced techniques to precisely and accurately discover vulnerabilities at scale

PIs: Michael Gordon, Jeff Perkins, Ricardo Baratto

Projects: DroidSafe, AMdP, Dark Corners, ClearScope, Arya (TA2), Aria

Solutions: CodeHawk, DIODE

Software Correctness

Provably guarantee that your systems do precisely what they should, and nothing more.

PIs: Michael Gordon, Jeff Perkins

Projects: Dark Corners, Arya (TA3), MRAM

Solutions: CodeHawk

Vulnerability Remediation

High-assurance and scalable solutions for automatically fixing vulnerabilities, with a focus on legacy software

PIs: Michael Gordon, Ricardo Baratto

Projects: AMdP, DRIFT, Arya (TA3), MRAM, Aria

Solutions: CodeHawk

AI / ML

Complementing emerging machine intelligence with formal methods for trustworthy security solutions

PIs: Michael Gordon

Projects: Arya (TA3)

Runtime Protection

Continuously monitor, detect, and block malicious activities in real-time with low overhead and full compatibility

PIs: Michael Gordon, Jeff Perkins, Ricardo Baratto

Projects: ClearScope, Saran, Arya (TA3), Aria

Solutions: Lucien

Vulnerability Reachability

Is your program exploitable via a known vulnerability? If so, what is the complexity, and if not, what are the mitigating factors?

PIs: Michael Gordon, Ricardo Baratto

Projects: DroidSafe, DRIFT, Aria

Solutions: CodeHawk, DIODE

Supply Chain Security

Understand and mitigate risk in 3rd-party libraries and software

PIs: Michael Gordon, Jeff Perkins, Ricardo Baratto

Projects: DRIFT, ClearScope, Arya (TA2), Aria

Binary Patching

Dramatically lowering the costs and increasing assurance for patching production binaries and firmware

PIs: Michael Gordon, Ricardo Baratto

Projects: AMdP, MRAM, DRIFT

Solutions: CodeHawk

Static Analysis

Scalable and precise source code analysis to discover facts about a program.

PIs: Michael Gordon, Jeff Perkins, Ricardo Baratto

Projects: DroidSafe, AMdP, Dark Corners, Saran, Aikido, MRAM, DRIFT

Solutions: CodeHawk

Dynamic Analysis

Extract facts about a possibly augmented running program to improve security, understanding and testing

PIs: Michael Gordon, Jeff Perkins, Ricardo Baratto

Projects: DRIFT, ClearScope, Saran, Aikido, Arya (TA2)

Solutions: DIODE, Lucien