A team comprised of Galois and Guardtime Federal has received a $1.8 million contract from the Defense Advanced Research Projects Agency to verify the effectiveness of a blockchain technology-based integrity monitoring system against sophisticated security threats.
DARPA asked the companies to jointly test if Guardtime Federal’s Keyless Signature Infrastructure can detect advanced persistent threats hidden within computer networks, Galois said Friday.
The goal of the formal verification effort is to establish mathematical grounds that the KSI system will function in the event of network intrusion to trace the intruder’s track and avoid being compromised.
“This collaborative effort seeks to advance our understanding of the role that integrity analysis plays in system security and lead to improvements in formal verification tools and methods that will be applicable to other existing systems,” said Stephen Magill, research lead for software analysis at Galois.
“Formal verification has evolved considerably over the past several years, but has only recently matured enough to tackle production-level software,” Magill added.