The Department of Homeland Security‘s Science and Technology Directorate has awardedÂ Small Business Innovation Research contracts to four companies for the exploration of automated vulnerability analysis in theÂ firmwareÂ of Internet-of-Things and mobile devices.
The companies will perform initial research through six months under the first phase of theÂ Automated & Scalable Analysis of Mobile & IoT Device Firmware contracts, the DHS said Wednesday.
S&T solicited proposals for technologies that analyze firmware binary code to detect and remediate software and common vulnerabilities, exposures, new zero-day threats and unwanted functions, as well as secure federal and private mobile technology from cyber threats introduced through the global supply chain.
The SBIR contract recipients and proposals are:
- Kryptowire‘sÂ Scalable Analysis of Firmware for Android and iOS – $149,993
- RAM Laboratories‘ FirmalyticsÂ – $150,000
- Red Balloon Security‘s Firmware Automated Analysis at Scale with Testing – $149,869
- Sekurity‘sÂ Principled Security Analysis of the Firmware Binaries via Guaranteed Formal Verification and Scalable Dynamic Monitoring – $149,999