Building an Internet Cleanroom from Virtual Machines

Period of Performance: 09/10/2007 - 11/20/2009

$750K

Phase 2 STTR

Recipient Firm

Secure Command, LLC
3975 University Drive, Suite 460
Fairfax, VA 22030
Principal Investigator

Research Institution

George Mason University
4400 University Drive MS 4C6
Fairfax, VA 22030
Institution POC

Abstract

The vision for the Internet Cleanroom is to make the operating system a single-use machine. Machines are created on demand when needed for an application, and then disposed of after use. Each machine created is pristine (original build with vendor patches) so the application runs in an unpolluted environment. Machines that are infected or compromised during use are disposed of and therefore foreign threats eliminated. The key technology enabler used in this project is machine virtualization. The mechanics of the virtualization are transparent to user. User experience should be similar to current desktop computing experience. Phase I demonstrated the feasibility of this approach. Phase II will develop a robust prototype for use in pilot evaluations in DoD facilities.