Technologies
Host Intrusion Protection
Host devices span servers, desktops, laptops, notebooks, and portable devices that provide server- or user-based access to computing and networking services. SPARTA ISSO focuses on host intrusion protection that spans management systems from large deployed configurations of hosts in large corporations, to configuration management and policy systems that span large and medium-sized firms.
SPARTA ISSO examines host-based security and intrusion prevention from the operating system out.
We research and develop prototype operating systems services and applications focused on automatic and highly accurate systems for intrusion identification, detection, impact, response, forensics, recovery and remediation, and incident management.
Our Community-Based Open Source Security (CBOSS) effort is working to significantly improve the security of critical open source systems through a combination of security knowledge transfer within the open source community, porting of advanced security technology to mainstream systems, and development of new kernel and user-space security technology, including laptops and palmtops.
SPARTA ISSO also assists in the development of a flexible architecture and configurable security policy for Security Enhanced Linux, FreeBSD, and Darwin. Our research of system health monitoring explores behavior-based approaches to accurately detect new host-based attacks with low false alarm rates.
We perform generic software wrapper research to conceptually surround standard software components and significantly increase the security and reliability of large software systems.