Modern deployed systems incorporate many general-purpose commercial off-the-shelf (COTS) and open-source software (OSS) components. Each of these components must be configured appropriately, in order for the larger system to meet its operational requirements, while simultaneously minimizing safety and security risks. Today, configuration of such systems is often suboptimal, with many critical parameters left in their factory settings, exposing unnecessary attack surfaces and weakening the security of the system.
ConfINE (Configuration Identification, Normalization and Enforcement) is an end-to-end toolchain for configuring and securing complex, network-composed systems built from commercial off-the-shelf (COTS) and open-source components. It provides the following capabilities:
To accomplish its goals, ConfINE uses Natural Language Processing (to ingest and process system documentation), program analysis (to build models of software components), and mission distribution (to interface with the target system to access, deploy, and monitor its configuration).
The video below is a presentation of ConfINE, originally given at the HCSS 2022 conference.
This material is based upon work supported by the Air Force and DARPA under Contract(s) No. FA8750-18-C-0141. Any opinions, findings and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of the Air Force or DARPA.