As secure HTTPS becomes more pervasive, it is worth asking: why should you end-to-end encrypt data when HTTPS is pretty secure? The answer is that HTTPS is an important but small piece of the crypto puzzle. Organizations determining what additional security requirements are needed should start the process by answering a few key questions
We are excited to announce that Dr. John Launchbury is joining Galois as Chief Scientist. Dr. Launchbury was formerly the Director of the Information Innovation Office (I2O) at DARPA, where he led nation-scale investments in the future of cyber-security and artificial intelligence. Dr. Launchbury plans to pursue his vision of creating provably safe and secure […]
We’re excited to announce that Mike Dodds is joining Galois as a Principal Investigator. Dr. Dodds was previously a lecturer in the Department of Computer Science at the University of York and has focused on using formal techniques to verify software correctness. His specific research interests include automated reasoning, separation logic, and concurrent data-structure correctness. […]
Legacy systems in the government are hard to secure against cyberattack, and that goes double for the embedded, real-time systems at the heart of the many control systems in advanced weapons, power plants and mission-critical infrastructure. Galois, a Portland, Ore.,-based secure software developer, has linked up with the Office of Naval Research under a three-year, […]
[…] there are a variety of methods to filter and redirect traffic, especially for those systems housed in the cloud. However, for the biggest attacks, and for institutions that cannot create replicated versions of their systems in the cloud, techniques such as 3DCoP are key in mitigating DDoS risk. Specifically, we believe that it is […]
We’re excited to announce that Galois spin-off Tozny is releasing their latest product, InnoVault. InnoVault enables developers to protect sensitive user data they collect simply by adding a few lines of code. It provides simple scripts for fronted code, easy SDKs on the backend, and an API with secure cloud storage behind it. Tozny spun off from Galois […]
Project award by Office of Naval Research (ONR) will focus on protecting real-time and embedded military software systems by making them resilient to attack Galois today announced that it has been awarded a $2.7 million contract by the Office of Naval Research (ONR) to leverage software brittleness for cyber defense. Modern military systems involve a […]
What is the single best thing that military and civilian government agencies can do in their search for an all-in-one cybersecurity solution? Simple: Give up hope. As counterintuitive as that may sound, there is no magic bullet that will solve all our cybersecurity challenges. A sufficiently-motivated and capable adversary will get around our defenses, given […]
FHE allows for conducting more complex functions than Somewhat Homomorphic Encryption. “There’s more and more data available,” Archer says. “And people are recognizing, maybe not for the first time, that it’s important to keep that data private, yet it would be great if we could get utility out of it.” A researcher studying the opioid […]
The High Confidence Software and Systems (HCSS) conference brings together researchers and organizations on the cutting-edge of safety-, security- and mission-critical applications and is now in its second decade. The main themes of HCSS 2017 are Privacy, Assurance for AI, Industrialization of Formal Methods, and Technology and Model Cross-over. If you are attending, Galois and […]
We take pride in personally connecting with all interested partners, collaborators and potential clients. Please email us with a brief description of how you would like to be connected with Galois and we will do our best to respond within one business day.