Architectural Frameworks for Composable Survivability and Security
DARPA CHATS Web site for Contract No. N66001-01-C-8040
CHATS = Composable High-Assurance Trustworthy Systems
ARPA Order M132
SRI Project 11459, 29 June 2001 to 28 December 2004
Project URL:
http://www.csl.sri.com/neumann/chats.html
Peter Neumann, Principal Investigator
Principal Scientist, Computer Science Laboratory
SRI International EL-243, 333 Ravenswood Ave
Menlo Park California 94025-3493, USA
- E-mail: Neumann@csl.sri.com
- Web page: http://www.csl.sri.com/neumann
- Tel: 650/859-2375
-
- Fax: 650/859-2844
-
This Web site (http://www.csl.sri.com/neumann/chats.html) can also be reached
from the top-level CSL Web site (http://www.csl.sri.com) by clicking on "CSL
Staff" and then "Neumann", then "our CHATS project".
The project consists of three tasks:
The URL for the DARPA Quad Chart is
http://www.csl.sri.com/neumann/chatsq.html
The advisory board consists of the following members, who participate
informally as a review panel -- primarily via e-mail discussions.
- Fernando Corbato' (Corby), MIT (emeritus), Corbato@lcs.mit.edu
- Drew Dean, SRI Computer Science Lab (formerly at Xerox PARC),
DDean@CSL.sri.com
- George Dinolt, Naval Postgraduate School, dinolt@nps.edu
- Virgil D. Gligor, University of Maryland, Gligor@eng.umd.edu
- Jim Horning, NAI Labs, Santa Clara, California, Jim_Horning@NAI.com
- Cliff Jones, University of Newcastle-upon-Tyne, Cliff.Jones@ncl.ac.uk
- Brian Randell, University of Newcastle-upon-Tyne, Brian.Randell@ncl.ac.uk
- John Rushby, SRI Computer Science Lab, Formal Methods Prog.Dir., Rushby@CSL.sri.com
- Jerry Saltzer, MIT Laboratory for Computer Science, Saltzer@mit.edu
- Sami Saydjari, Cyber Defense Agency, ssaydjari@CyberDefenseAgency.com
- Olin Sibert, Oxford Systems, Inc., osibert@siliconkeep.com
- David Wagner, University of California at Berkeley, daw@cs.berkeley.edu
A summary of the project as of early 2003 appeared in the DISCEX03
proceedings, Achieving Principled Assuredly Trustworthy Composable Systems
and Networks
in pdf form.
The final report is now on-line, dated 28 December 2004:
Principled Assuredly Trustworthy Composable Architectures
html,
pdf, and
ps.
The report was originally due on 28 June 2003, but was delayed
because of several hitches in the incremental funding.
-
DARPA program Web site:
http://www.darpa.mil
(The CHATS program is concluded.)
-
Peter Neumann's Web site: http://www.csl.sri.com/neumann
and
project site: http://www.csl.sri.com/neumann/chats.html
-
Drew Dean's Web site: http://www.csl.sri.com/people/ddean/
-
David Wagner's main Web site: http://www.cs.berkeley/~daw/
and
project site: http://www.cs.berkeley/~daw/research/ss/.
The recent work of Hao Chen and David Wagner, including David's doctoral thesis
and a (somewhat misleadingly named) joint paper with Drew Dean (``Intrusion
Detection via Static Analysis'', available on David's Web site) in the
Proceedings of the 2001 IEEE Symposium on Security and Privacy,
was one of the starting points for the Task 3 approach. See our
final report for more recent details.
Peter Neumann's final report for the Army Research Lab,
Practical Architectures for Survivable Systems and Networks,
30 June 2000, is available on his Web site, for browsing
in html,
and for printing
in PostScript,
and
in pdf.
From the abstract:
This report summarizes the analysis of information system
survivability. It considers how survivability relates to other requirements
such as security, reliability, and performance. It considers a hierarchical
layering of requirements, as well as interdependencies among those
requirements. It identifies inadequacies in existing commercial systems and
the absence of components that hinder the attainment of survivability. It
recommends specific architectural structures and other approaches that can
help overcome those inadequacies, including research and development
directions for the future. It also stresses the importance of system
operations, education, and awareness as part of a balanced approach toward
attaining survivability.
.
.
.
.
.