• About ISSO
• Research Areas
• Projects
• Finished Projects and Archive
• Opensource Projects

Technologies

In our third focus area, technologies, ISSO applies the breadth and depth of its expertise to research, design, develop, and implement technology to meet information assurance needs. We examine technology to counter threats two to five years in the future, but respond with results in under a year.

Our research strategy begins with a deep understanding of the threats, attacks, and vulnerabilities of host systems, and the networking systems they employ for interconnected communication.

We discover customer security needs, define, design, develop, and deploy secure systems. We conduct basic and applied research, develop concepts and produce prototypes for our customers to review and use. ISSO provides limited production of developed systems, but provides extensive laboratory support.

Our technologies focus on the strategic needs of our customers, such as protection of wired and wireless networks and operating systems, defending against malicious code, establishing and managing security policy, and providing high-speed assurance and forensics.

ISSO captures requirements, develops policy, and assesses threats to ensure system security. We design and specify architectures, demonstrate concepts, develop prototypes, and prepare computer models and simulations of secure systems. We select system components, develop software and hardware, and test designs. Our testing extends to system integration to ensure secure operation of system of systems.

ISSO develops prototype applications that provide highly accurate, highly automated approaches to computer and network security and response. We support our customers through installation and operation.

ISSO knows computer, communications, and transaction security. This knowledge includes protocols processing, reverse engineering, data networking, network management, wireless operations, and control and data storage devices. We also specialize in cryptography, end-to-end encryption, link protocols, and access control systems. ISSO understands “on-demand” hardware and software solutions, signal processing, fabrication of electronic systems, and foreign material exclusion of command and control systems.

In an industry that is receiving increasing numbers of attacks that are ever more sophisticated, blended, and capable of causing information loss or systems damage, we identify active and potential threats, and conduct research and development in automated approaches and solutions for intrusion prevention and remediation.

We are committed to the security and availability of networks, including the Internet. We work toward security advancements in domain name system (DNS), security for Simple Network Management Protocol Version 3, and security of active networks. ISSO examines host-based security and intrusion prevention from the operating system out. We identify and develop new techniques and architectures for coordinated intrusion prevention - including detection, correlation, alerting, response, isolation, recovery, and management - to protect both wired and wireless systems from network-based intrusions. ISSO analyzes and studies security issues in emerging wireless protocols, and proposes and develops solutions for the issues we uncover. We study and create easy-to-manage technologies and systematic processes for the generation and management of consistent security policies.

ISSO engages in research, design specification support, prototype development and hosting, acceptance testing support, and testing of systems that stop malicious code from damaging computers and networks, and maintain system availability while under attack. We also analyze malicious code, gather forensic information, and identify trends.

We create both high-performance assurance and high-speed forensic technologies and solutions for network security and availability, as well as network protection, forensic analysis, and situation assessment.

ISSO investigates hard, challenging problems, which have a long horizon and high risk, but also provide high potential value. Our research products include studies, research papers, solution architectures, and prototype code that is tested and supplied with test drivers and documentation for use by security system developers.