ORNL licenses malware detection technology

ORNL licenses malware detection technology

Oak Ridge National Lab recently announced that malware forensics detection and software assurance technology it had developed was licensed to the private sector.

The lab’s Hyperion tool, which can recognize malicious software even if a specific program has not been previously identified as a threat, was licensed to R&K Cyber Solutions LLC of Manassas, Va., Oak Ridge said.

By computing and analyzing behaviors associated with harmful intent, ORNL’s Hyperion can look inside an executable program to determine the software’s behavior without using its source code or running the program, according to one of its inventors, Stacy Prowell of ORNL’s Cyber Warfare Research team.

“These behaviors can be automatically checked for known malicious operations as well as domain-specific problems,” Prowell said. “This technology helps detect vulnerabilities and can uncover malicious content before it has a chance to execute.”

Hyperion, which has been under development for a decade, offers more comprehensive scanning capabilities than existing cyber security methods.

Its malware analysis features can be applied to multiple cybersecurity problems, including software assurance in the absence of source code, hardware and software data exploitation and forensics, supply chain security, anti-tamper analysis and potential first intrusion detection based on behavior semantics, said R&K Cyber Solutions CEO Joseph Carter.

“Software behavior computation is an emerging science and technology that will have a profound effect on malware analysis and software assurance,” Carter said.  “Computed behavior based on deep functional semantics is a much-needed cybersecurity approach that has not been previously available.”

R&K Cyber Solutions specializes in information assurance services and certified security processes for federal government and selected commercial customers.  The company expects to make the technology available in January.

About the Author

Connect with the GCN staff on Twitter @GCNtech.


  • business meeting (Monkey Business Images/Shutterstock.com)

    Civic tech volunteers help states with legacy systems

    As COVID-19 exposed vulnerabilities in state and local government IT systems, the newly formed U.S. Digital Response stepped in to help. Its successes offer insight into existing barriers and the future of the civic tech movement.

  • data analytics (Shutterstock.com)

    More visible data helps drive DOD decision-making

    CDOs in the Defense Department are opening up their data to take advantage of artificial intelligence and machine learning tools that help surface insights and improve decision-making.

Stay Connected