Information Assurance

We analyze the state of software security and work to prevent and address vulnerabilities. Our experts develop tools that help software developers identify and prevent vulnerabilities before software is shipped. We identify roots causes of vulnerabilities and develop secure coding practices. We also work with technology producers to address vulnerabilities in already-deployed software. Moreover, we work on developing secure and reliable software for industrial control system to enhance the availability of the applications even under malicious attacks.

Network and Computer Security

We help business leaders build security into corporate culture. Our work in governance, insider threat, and risk management provides general principles, specific starting points, and fully optimized methodologies to launch an enterprise-wide security effort or ensure existing security program is as good as it can be. We develop tools to collect, analyze, compose, integrate, and visualize security metrics for analyzing enterprise-wide network security. We also use security situational awareness to quantitatively characterize threats and targeted intruder activity.

Our experts develop secure and reliable wireless communication system for Wi-Fi and Zigbee networks. We use frequency hopping and Time Division Multiple Access (TDMA) techniques to mitigate the active Denial of Services (DoS) attacks, and use public key cryptography to implement practical key management in wireless networks.