Feeds

Drone security project to go open source

DARPA project to stop droneware being hacked will see some software freed

Seven Steps to Software Security

Australia’s high end tech research engine NICTA will take a pivotal role in an US$18 million US Defence project which will develop software to protect the systems in drones from cyber attack.

The US Defense Advanced Research Projects Agency (DARPA) awarded the 4.5 year contract to a global consortium, which includes Australia's NICTA, the Boeing Company, Galois, the University of Minnesota and led by Rockwell Collins. A team of six to eight dedicated NICTA researchers will be placed on the project with more staff added at peak times in the project.

The project is part of DARPA’s High-Assurance Cyber Military Systems (HACMS) program, hatched earlier this year to produce ultra secure systems that are resilient to emerging cyber threats.

The HACMS program will focus on cyber-physical systems in the vehicle space, but it is anticipated that the tools and techniques developed in the program will be relevant to other kinds of systems as well.

The HACMS project will produce a set of open source tools integrated into a software workbench, which will be widely distributed for use in both the commercial and defense software sectors, according to DARPA.

A NICTA spokesperson said that the project will be using open source as much as possible but the specific elements are still being worked out.

The work will be undertaken by the same group of NICTA scientists that developed the internationally recognised, game changing , seL4 operating system. In 2009, NICTA researchers grabbed the global spotlight when they proved the correctness of 7,500 lines of C code in the seL4 operating system microkernel.

“NICTA’s selection for this project reflects our status as world leaders in the verification of operating systems. Now we will have the opportunity to greatly extend the scale, aiming to ensure the safety of a complete, real-world system, something considered impossible only a few years ago,” said Leader of NICTA’s Software Systems Research Group , Scientia Professor Gernot Heiser.

Key HACMS technologies include semi-automated software synthesis systems, verification tools such as theorem provers and model checkers, and specification languages.

HACMS aims to produce a set of publicly available tools integrated into a high-assurance software workbench, widely distributed to both defense and commercial sectors.

In the defense sector, HACMS plans to enable high-assurance military systems ranging from unmanned ground, air and underwater vehicles, to weapons systems, satellites, and command and control devices. ®

Mobile application security vulnerability report

More from The Register

next story
Yorkshire cops fail to grasp principle behind BT Fon Wi-Fi network
'Prevent people that are passing by to hook up to your network', pleads plod
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
Mozilla fixes CRITICAL security holes in Firefox, urges v31 upgrade
Misc memory hazards 'could be exploited' - and guess what, one's a Javascript vuln
BMW's ConnectedDrive falls over, bosses blame upgrade snafu
Traffic flows up 20% as motorway middle lanes miraculously unclog
LibreSSL RNG bug fix: What's all the forking fuss about, ask devs
Blow to bit-spitter 'tis but a flesh wound, claim team
Attackers raid SWISS BANKS with DNS and malware bombs
'Retefe' trojan uses clever spin on old attacks to grant total control of bank accounts
Manic malware Mayhem spreads through Linux, FreeBSD web servers
And how Google could cripple infection rate in a second
Don't look, Snowden: Security biz chases Tails with zero-day flaws alert
Exodus vows not to sell secrets of whistleblower's favorite OS
prev story

Whitepapers

Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Reducing security risks from open source software
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.