WEB SENSING LLC SBIR Phase II Award, September 2022

We propose to develop and demonstrate, on fieldable platforms such as the NAI 68ARM2 and 67G6 OpenVPX cards, a portfolio of FPGA capabilities for providing aircraft with resilience and security. These capabilities can be selectively combined by transition partners to meet cyber-defense requirements associated with DoD acquisition programs. Alternatively, the capabilities can be integrated into next generation systems, such as NAVAIR’s Cyber Resilient Operating System (CROS).  To further this effort, we are actively supporting the porting of two formally verified hypervisors – BHV and seL4 – in collaboration with BedRock and DornerWorks respectively. Here we propose to adapt, enhance, and raise the Technology Readiness Level (TRL) our precision monitoring technology, developed under the DARPA AMP program, and our hidden-hardware approach to resilience and secure communication, developed under the DARPA SBIR and Air Force ICCyRIS programs. The objective of Year 1 is to integrate Encryption/Encapsulation, and Integrity Monitoring blocks into the FPGA portfolio. These tasks will involve adapting and enhancing existing FPGA blocks to operate on the 68ARM2 3U VPX architecture in the presence of either the Bedrock (BHV) or seL4 hypervisors.   The objective of Year 2 is to develop MIL-STD-1553 Side-channel and Ethernet Backchannel capabilities, and integrate Refresh, Gold-standard Store, and Authentication blocks into the FPGA portfolio. The integration tasks will involve adapting and enhancing existing FPGA blocks to operate on the 68ARM2 architecture, in the presence of either the BHV or seL4 hypervisors. The objective of the Option year effort is to complete and support a technical handoff of designated elements of the FPGA portfolio, by raising their Transition Readiness Level to TRL 6 – demonstrating their utility in a representative context.  This effort may involve IV&V and/or the support for certification or accreditation through one of the standard paths: Federal Information Processing Standards (FIPS 140), Common Criteria (CC), Department of Defense in Information Network Approved Products List (DoDINAPL), Commercial Solutions for Classified (CSfC), or designated Authorization to Operate (ATO).