Automatic Generation of Network Element Software (AGNES)

Rouff, Christopher; Williams, M. D.; Bennett, Daniel

Automatic Generation of Network Element Software (AGNES)

Active / Technical Report | Accession Number: AD1089404 |

Open PDF

Abstract:

The goal of the Automatic Generation of Network Element Software AGNES project was to automatically generate network element software that is free from known weaknesses, reducing the cyber-attack surface area of military networks. Using todays development technologies and processes, it is effectively impossible for humans to write software that accounts for the hundreds of known weaknesses that can lead to vulnerabilities. Additionally, the encouraged practice of code reuse serves to perpetuate and propagate weaknesses when vulnerability patches are applied to the original source code, they are unlikely to be propagated to reused code. AGNES generates weakness-free software by using a knowledge base of coding solutions for known weaknesses which will eliminate or drastically reduce known software vulnerabilities.

Author(s):

Rouff, Christopher ; Williams, M. D. ; Bennett, Daniel

Author Organization(s):

Johns Hopkins University LAurel United States

Descriptive Note:

Technical Report,01 Jan 2015,31 Mar 2019

Pagination:

0058

Security Markings

DOCUMENT & CONTEXTUAL SUMMARY

Distribution:

Approved For Public Release

Distribution Statement:

Approved For Public Release;

RECORD

Collection: TR

Identifying Numbers

Report Number(s):

AOS-19-0107

Project Number(s):

FGXA9

Subject Terms

Joint Capability Areas:

JCA_6.1.3_Switching and Routing; JCA_6_Net Centric; JCA_6.1.2_Wireless Transmission; JCA_6.1_Information Transport; JCA_5_Command and Control; JCA_5.3_Planning; JCA_7_Protection; JCA_7.2.1_Mitigate Lethal Effects; JCA_7.2_Mitigate; JCA_5.2_Understand; JCA_5.5.2_Task; JCA_5.5_Direct; JCA_5.2.3_Share Knowledge and Situational Awareness; JCA_6.4.1_Secure Information Exchange; JCA_5.4.3_Establish Rule Sets; JCA_5.4_Decide; JCA_6.4_Information Assurance; JCA_6.2.3_Core Enterprise Services; JCA_3.2_Engagement; JCA_3_Force Application; JCA_1.2_Force Preparation

Modernization Areas:

Fully Networked C3; Cyber

Communities of Interest:

Engineered Resilient Systems

Descriptor(s):

software engineering, cyberattacks, vulnerability, CODING, NETWORK PROTOCOLS, cryptography, authentication

Field(s)/Group(s):

Computer Programming and Software

Keyword(s):

AGNES(Automatic Generation of Network Element Software)

Report Date:

2019 Mar 01

Creation Date:

2020 Jan 16