CodeSurgeon: Sound Full-Stack AI-driven Software Debloating
Award last edited on: 4/27/2024

Sponsored Program
Awarding Agency
DOD : Navy
Total Award Amount
Award Phase
Solicitation Topic Code
Principal Investigator
Michael Brown

Company Information

Trail of Bits Inc

228 Park Avenue South #80688
New York, NY 10003
   (917) 817-0359

Research Institution

Ohio State University

Phase I

Contract Number: N68335-23-C-0637
Start Date: 7/26/2023    Completed: 2/1/2024
Phase I year
Phase I Amount
We propose to develop and transition CodeSurgeon: an adaptable, AI-guided, full-stack debloating system. CodeSurgeon is innovative and unique in the field because it produces high-quality debloated programs with improved security posture that are safe, reliable, and sound. Following the lessons learned from a broad comparative evaluation of debloating tools conducted by the PI , CodeSurgeon will integrate best-in-class technologies to create a general-purpose, high-assurance system for soundly and effectively debloating high-complexity NCS software that can be operated with minimal technical expertise. To demonstrate CodeSurgeon’s feasibility on NCS software, we will show through analysis and modeling in Phase I that our manually integrated prototype tool can safely and effectively debloat the nginx web server and the PX4 open-source drone autopilot software and libraries.

Phase II

Contract Number: ----------
Start Date: 00/00/00    Completed: 00/00/00
Phase II year
Phase II Amount