The growth of the internet-of-things (IoT) and network-connected composed systems (e.g., aircraft, critical-infrastructure, etc.) has led to unprecedented technical diversity in deployed systems. From consumer IoT devices developed with minimal built-in security, which are often co-opted by malware to launch large distributed denial of service (DDoS) attacks on internet infrastructure, to remote attacks on Industrial Control System (ICS) devices, these newly connected, composed systems provide a vast attack surface. While the diversity of functionality and the scope of what can now be connected, monitored, and controlled over the Internet has increased dramatically, economies of scale have decreased platform diversity. Inexpensive commodity off-the-shelf (COTS) devices have largely replaced single-purpose, custom devices.
The ConSec program seeks to develop a system to automatically generate, deploy, and enforce configurations of components and subsystems for use in military platforms. These configurations should address system vulnerabilities and minimize attack surfaces while maintaining expected functionality and performance. By viewing each individual component’s configuration as elements of the composed system’s behavior and security, more secure configurations can be developed and deployed to enhance security without requiring new software development or large hardware changes. To achieve these goals, ConSec will support research in the following areas:
ConSec: CUI guide
ConSec Proposers Day: Slides
ConSec Proposers Day: Overview of Program by Mr. Jacob Torrey (Video)
ConSec Proposers Day: Q&A on Broad Agency Announcement (Video)
You are now leaving the DARPA.mil website that is under the control and
management of DARPA. The appearance of hyperlinks does not constitute
endorsement by DARPA of non-U.S. Government sites or the information,
products, or services contained therein. Although DARPA may or may not
use these sites as additional distribution channels for Department of
Defense information, it does not exercise editorial control over all of
the information that you may find at these locations. Such links are
provided consistent with the stated purpose of this website.
After reading this message, click to continue