|
Principal Investigator: Mateti, P., Pothamsetty, V. Project Description: Exploit-robust implementation of standardized protocols through formal methods-driven unambiguous and attack-intelligent specifications. Project Impact: This creates a method for resolving perhaps the most common reason for coding errors: ambiguous or misinterpreted standard specifications. It creates a mechanism to potentially automate embedded of attack information in the code, thereby creating attack-resistant software. Project Details: Poor coding practices remain one of the most important causes for vulnerabilities in various types of equipment used by the telecommunications and IT sector. These poor practices range from poorly defined design objectives to issues arising from a lack of understanding of how to use of various parameters while writing code. The approach is to collaborate with academic institutes to clearly define how RFCs written today create conditions favorable for poorly written code. The approach also defines ways for rewriting RFCs, so the ambiguities inherent in the current way of writing RFCs is removed. Intelligence to avoid security threats is embedded within the rewritten RFCs through a system of checks. Project Deliverables: eRFC-proposal paper Status: Completed |
Guest
(