(July 17, 2019) -- UTSA has launched Galahad, an open source revolutionary user computer environment (UCE) for the Amazon Cloud. The technology, which is named after the Arthurian knight that ultimately secured the Holy Grail, will fight to protect people using desktop applications running on digital platforms such as Amazon Web Services (AWS). Galahad will leverage nested virtualization, layered sensing and logging to mitigate cloud threats. These layers will allow individual users to host their applications seamlessly and securely within the cloud avoiding both known and unknown threats.
Galahad takes a holistic approach to creating a secure, interactive UCE. The software leverages role-based isolation, attack surface minimization practices, operating system (OS) and application hardening techniques, real-time sensing, and maneuver / deception approaches to reduce the risk associated with cloud deployments. Galahad makes no attempt to establish trust, nor does it require specialized, more costly services provided by AWS, e.g., dedicated servers. Instead, the software impedes the ability of adversaries to operate within the AWS by making it more difficult to co-locate (either through the use of insiders, compromised hypervisors, witting or unwitting peers, or remote access) with targets, while also requiring adversaries consume more resources. Such an increase in complexity and cost means Galahad also increases the accuracy, rate, and speed with which threats are detected.
With the use of role-based isolation and real-time sensors, Galahad will integrate machine learning to develop unique user profiles that will immediately help spot malicious activity or other anomalies like malware in a typical workload. This determination will be based on log events and user actions at the application, virtual machine and hypervisor level.
“Galahad can develop a profile of how each application is used so if an instance of Microsoft Word or Outlook uses an unusually high amount of network bandwidth, we can determine if something has been infected,” said James Benson, a technology research analyst at the UTSA Institute for Cyber Security (ICS).
The Galahad software will be deployed to AWS and provides a nested hypervisor on AWS instances. There, it will monitor role-based virtual machines virtually across all levels of the application stack including the docker container: the basic unit of software that packages an application to run quickly between computing environments.
Galahad’s strengths include the use of migration, where cloud applications are dynamically moved to different hosts.
“It’s almost like frequency band hopping,” said Benson. “If your host is compromised in the AWS environment but you keep on moving, the malicious actor will only get snippets of you at most.”
Farhan Patwa, ICS assistant director and chief architect, added, “With Galahad, you’re now a moving target.” Patwa will oversee the deployment of Galahad at UTSA.
Galahad is one of four solutions built by industry through the sponsorship of the Intelligence Advanced Research Projects Activity (IARPA), a division of the Office of National Intelligence. UTSA, which is home to the nation’s top cybersecurity program, was selected to host Galahad to increase its adoption by the wider cyber defense research community.
In 2017 IARPA tapped industry leaders such as Star Lab Corp. to develop Virtuous User Environments (VirtUEs), a dynamic cloud-based environment that reduces threats while serving as a secure place to migrate government user applications. Star Lab developed Galahad and transitioned it to UTSA on at the end of May of this year for further development and research.
Now, researchers at UTSA are seeking other academic partners to make the system an advanced research platform. The UTSA researchers want to innovate additional protection capabilities in field areas such as user access control, privilege chains, decision engines, and blockchain or “smart contracts” that run distributed across different virtual machines. It’s believed that Galahad can also be leveraged toward better integration of IoT systems, and securing Linux operating systems and hypervisors, which make virtual machine computing environments a possibility.
“Galahad is here to be a research ecosystem,” said Patwa.
Like Arthur’s round table, Galahad will be a platform that seeks collaboration with those that are motivated by the single goal to run applications securely in the cloud.
Learn more about Galahad.
Learn more about the UTSA Institute for Cyber Security.
Celebrate UTSA’s 50th Anniversary and share social media posts about the 50th using the hashtag #UTSA50.
Connect with UTSA online at Facebook, Twitter, YouTube, Instagram and LinkedIn.
UTSA Today is produced by University Communications and Marketing, the official news source of The University of Texas at San Antonio. Send your feedback to news@utsa.edu. Keep up-to-date on UTSA news by visiting UTSA Today. Connect with UTSA online at Facebook, Twitter, Youtube and Instagram.
Join UTSA Libraries and Museums to learn more about the publishing discounts available for UTSA researchers. Current agreements include Elsevier, Cambridge University Press, Wiley, and more. Bring your questions and feedback for the library as we continue to pursue partnerships with publishers to reduce costs for our researchers.
Virtual Event (Zoom)Have questions about making your OER accessible on UTSA Pressbooks? The OER Team and the Digital Accessibility are ready to answer them! Bring your questions about OER and accessibility and receive guidance from our two teams.
Virtual (Zoom)Perfect for faculty and grad students who are ready to take their research to the next level, this workshop will guide you through the basics of the I-Corps program. Learn how I-Corps can teach you entrepreneurial skills to translate your research to commercialization, how you can get funding to discover customers for your technology, and how I-Corps can help you find the value proposition that will get your technology to sell. Lunch is included.
TBDLearn how to maximize the benefits of ORCID, how it can help you save time, and how to set up automatic updates to keep your ORCID record current.
Virtual Event (Zoom)In this hands-on workshop, participants will learn to setup an EndNote library, save references and PDFs, and automatically create and edit a bibliography. Attendees are encouraged, but not required, to have EndNote already installed on a personal computer.
Virtual Event (Zoom)Pressbooks Basic workshop attendees will be able to: create a new book, clone an existing book, remix chapters from a variety of different Creative Commons licensed books, add media and other content to a book, export a book in a wide range of formats.
Virtual (Zoom)This workshop will guide you how to leverage Overleaf program to effectively manage citations in your research papers.
Virtual Event (Zoom)The University of Texas at San Antonio is dedicated to the advancement of knowledge through research and discovery, teaching and learning, community engagement and public service. As an institution of access and excellence, UTSA embraces multicultural traditions and serves as a center for intellectual and creative resources as well as a catalyst for socioeconomic development and the commercialization of intellectual property - for Texas, the nation and the world.
To be a premier public research university, providing access to educational excellence and preparing citizen leaders for the global environment.
We encourage an environment of dialogue and discovery, where integrity, excellence, inclusiveness, respect, collaboration and innovation are fostered.
UTSA is a proud Hispanic Serving Institution (HSI) as designated by the U.S. Department of Education .
The University of Texas at San Antonio, a Hispanic Serving Institution situated in a global city that has been a crossroads of peoples and cultures for centuries, values diversity and inclusion in all aspects of university life. As an institution expressly founded to advance the education of Mexican Americans and other underserved communities, our university is committed to promoting access for all. UTSA, a premier public research university, fosters academic excellence through a community of dialogue, discovery and innovation that embraces the uniqueness of each voice.
