Cyber Forensic Tool Kit for Machinery Control

Period of Performance: 06/23/2016 - 12/20/2016


Phase 1 STTR

Recipient Firm

TDI Technologies, Inc
1150 First Avenue Array
King of Prussia, PA 19406
Firm POC
Principal Investigator

Research Institution

Temple University
Dept. of Computer & Informatio 1805 N. Broad St
Philadelphia, PA 19122
Institution POC


The objective of STTR Topic N16A-T013, Cyber Forensic Tool Kit for Machinery Control, is to develop live digital forensics that, at run time, provide a cyber-protection strategy and aid in identification of malfunctions due to malicious and non-malicious events, while ensuring minimal impact on overall system performance. A proposal has been prepared by TDI Technologies, Inc., a small business based in King of Prussia, PA, which includes the following tasks: Phase I Base: Task 1 Define applicable policies for target SCADA system; Task 2 Obtain and analyze data samples for system and protocol operations; Task 3 Model system using graph-based FSMs and identify live forensic requirements; Task 4 Perform feasibility analysis for implementing live forensic requirements as LKMs; Task 5 Perform feasibility analysis for extending existing open-source forensic frameworks; Task 6 - Design and layout CyFT; Task 7 - Testing and validation for feasibility demonstration; Task 8 - Prepare a final report. Phase I Option: Task 9 - Define and develop security and cyberforensic ontologies; Task 10 - Define a comprehensive and portable framework for vulnerability assessment; Task 11 - Develop an open system architecture framework for CyFT; Task 12 Prepare a final report.