DARPA is seeking research proposals for the development of novel approaches, driven by program analysis and AI, to measure vulnerabilities within modern, complex platforms.
The INGOTS program aims to measure chainable vulnerabilities within widely used secure computing platforms, at speed and at scale, prior to attacker exploitation. INGOTS seeks to create an automated process to rapidly triage vulnerabilities by assessing exploitability within context.
INGOTS will run for 36 months, split into two phases: a 20-month Phase 1 and a 16-month Phase 2. In addition, there will be an additional 12-month Transition Phase. Phase 1 will focus on exploration, design, development, and demonstration of tools and techniques. Phase 2 will
focus on maturing and refining these tools and techniques, as well as expanding their coverage across vulnerability and exploitation classes.
- TA1: Vulnerability Triage
- TA2: Severity Analysis
- TA3: Data Modeling
- TA4: Integration
Multiple awards are expected for TA1 and TA2. A single award is expected for TA3 and TA4 respectively. Each proposal may address any combination of TAs. Proposals addressing multiple TAs should be clearly separable to enable partial awards.
Proposal abstracts due 14 July 2023 (optional).
Full proposals due 22 August 2023.
INGOTS Broad Agency Announcement: HR001123S0039