The Defense Advanced Research Projects Agency

The Defense Advanced Research Projects Agency (DARPA) is the principal agency within the Department of Defense (DoD) for high-risk, high-payoff research, development, and demonstration of new technologies and systems that serve the warfighter and the defense of the United States. DARPA's research and development (R&D) efforts in cybersecurity strongly support the Moving Target Defense and Tailored Trustworthy Spaces themes. This chapter covers the unclassified cybersecurity research of DARPA. The Automated Program Analysis for Cybersecurity (APAC) program aims to address the challenge of timely and robust security validation of mobile apps by first defining security the properties to be measured against and then developing automated tools to perform the measuring. The Integrated Cyber Analysis System (ICAS) program aims to make system information readily useful for attack forensics and tactical cyber defense. DARPA created the Vetting Commodity information technologies Software and Firmware (VET) program to address the threat of hidden malicious functionality in COTS IT devices.