"Developing a Better Way to Address Vulnerabilities at the Source-Code Level"

A team of researchers from the University of California, Santa Barbara (UCSB), Purdue University, and the Swiss Federal Institute of Technology Lausanne (EPFL) received a four-year, $3.9 million grant from the Defense Advanced Research Project Agency (DARPA) in support of a project called "Assured Micropatching." The DARPA project aims to improve the patching process for code in vulnerable embedded systems such as those in medical devices, trucks, and airplanes. These embedded systems are often found to be running on software for which the source code and the original compilation toolchain are unavailable. Many of the old software components running in these systems contain vulnerabilities that could be used as an entry point for cyberattacks. However, patching them may be difficult or impossible. This article continues to discuss the DARPA project focused on developing an effective way to fix vulnerabilities at the source-code level. 

UCSB reports "Developing a Better Way to Address Vulnerabilities at the Source-Code Level"