The goal of CHILI (the Cornell, Harvard, and Illinois Initiative) is to enable the execution of code of unknown origin -- sometimes known as "Software of Unknown Provenance" (SOUP) -- while having guarantees that the aforementioned code is not vulnerable to various classes of security attacks. We aim to provide automated techniques that ensure that software is not vulnerable to attack.
We are currently investigating techniques for handling:
- Memory safety errors (buffer overflows, dangling pointers, and their ilk)
- Numerical errors (e.g., integer overflow)
- Input validation and command injection errors (e.g., SQL injection)
The CHILI research is funded by AFRL Contract FA8650-10-C-7022.