Assessing Security of Encrypted Messaging Applications (ASEMA)
ID: HR0011SB20254-12Type: Phase II
Overview

Topic

Assessing Security of Encrypted Messaging Applications (ASEMA)

Agency

Agency: DODBranch: DARPA

Program

Type: SBIRPhase: Phase II

Topic Link

https://www.dodsbirsttr.mil/topics-app/

Additional Information

https://www.dodsbirsttr.mil/topics-app/
Timeline
    Description

    The Defense Advanced Research Projects Agency (DARPA) is seeking innovative solutions through its SBIR program to enhance the security of Secure Messaging Applications (SMAs) against Advanced Persistent Threat (APT) groups. The primary objective is to develop models, frameworks, and evaluation methods that address vulnerabilities in SMA software, which are often overlooked compared to their cryptographic protocols. As SMAs become increasingly integral to secure communications for billions of users worldwide, understanding and mitigating their security risks is critical. This Direct to Phase II (DP2) solicitation requires proposers to demonstrate feasibility through existing work and expertise in relevant fields, with proposals due by December 31, 2025. For more information, interested parties can visit the DARPA SBIR website at https://www.dodsbirsttr.mil/topics-app/.

    Files
    Title
    Posted
    1762382888981.pdf
    DARPA's Assessing Security of Encrypted Messaging Applications (ASEMA) initiative seeks to fortify secure messaging applications (SMAs) against advanced persistent threats. Despite strong cryptographic protocols, SMAs possess significant software vulnerabilities that attackers exploit. This Direct to Phase II (DP2) solicitation aims to develop novel approaches to model SMA attack surfaces, identify security boundaries, and create frameworks for evaluating protective measures. Proposals must demonstrate prior feasibility through technical reports, prototypes, and a strong understanding of computer science and vulnerability research. Phase II will focus on designing and developing prototype models and frameworks to defend SMAs, culminating in a demonstration of their efficacy. The program seeks actionable recommendations and tools to enhance SMA security for both developers and users, ultimately supporting national efforts in securing communications for military and commercial applications in Phase III.
    1762387305443.pdf
    The Defense Advanced Research Projects Agency (DARPA) is seeking novel approaches to defend Secure Messaging Applications (SMAs) from Advanced Persistent Threat (APT) groups. The HR0011SB20254-12 program,
    1762560123525.pdf
    DARPA's Assessing Security of Encrypted Messaging Applications (ASEMA) project seeks novel approaches to defend Secure Messaging Applications (SMAs) from Advanced Persistent Threat (APT) groups. The project addresses the vulnerability of SMAs, which, despite secure cryptographic protocols, have software flaws exploited by attackers. The objective is to model SMA security risks, recommend defensive measures, and develop frameworks to assess and ensure the efficacy of these protections. Key technical challenges include characterizing SMA attack surfaces, developing frameworks for security boundaries, and creating tools to evaluate security features. This is a Direct to Phase II (DP2) solicitation, requiring proposers to demonstrate feasibility through existing work, technical reports, and expertise in computer science and vulnerability research. Phase II focuses on designing and developing prototype models and evaluation methods, culminating in a demonstration of compelling use cases. Phase III aims for the transition and commercialization of the prototype into viable military and private sector products, funded by non-SBIR sources, to enhance communication security and privacy.
    1762646519792.pdf
    DARPA's Assessing Security of Encrypted Messaging Applications (ASEMA) project seeks novel methods to defend Secure Messaging Applications (SMAs) from Advanced Persistent Threat (APT) groups. The project addresses the vulnerability of SMAs, which, despite secure cryptographic protocols, have software flaws exploited by attackers. The objective is to model SMA security risks, recommend defensive measures, and develop frameworks to assess and ensure the efficacy of these protections. Key challenges include characterizing SMA attack surfaces, identifying security boundaries, and evaluating security features. This Direct to Phase II (DP2) solicitation requires proposers to demonstrate feasibility through existing work, technical reports, and prototypes. Phase II focuses on designing and developing prototype models and frameworks, culminating in a demonstration of improved SMA security against real-world attacks. Phase III emphasizes transitioning the developed vulnerability framework into commercial and military applications to secure communications and mitigate risks.
    1762819319082.pdf
    The Defense Advanced Research Projects Agency (DARPA) is seeking novel approaches to defend Secure Messaging Applications (SMAs) from Advanced Persistent Threat (APT) groups. The HR0011SB20254-12 solicitation,
    1762905705183.pdf
    DARPA's Assessing Security of Encrypted Messaging Applications (ASEMA) project seeks novel approaches to defend Secure Messaging Applications (SMAs) from Advanced Persistent Threat (APT) groups. The project addresses the vulnerability of SMAs, despite their cryptographic protocols, by focusing on the security risks of the applications' code, which presents a significant attack surface. The objective is to model SMA attack surfaces, identify security boundaries, and develop frameworks and tools to assess and ensure the efficacy of defensive measures. This Direct to Phase II (DP2) solicitation requires proposers to demonstrate feasibility through existing work, with Phase II focusing on designing and developing prototype models and evaluation methods. The ultimate goal is to provide actionable recommendations for SMA developers and enable informed risk analysis for users, supporting both commercial and military applications in Phase III.
    1762992130180.pdf
    DARPA's Assessing Security of Encrypted Messaging Applications (ASEMA) project seeks novel approaches to defend Secure Messaging Applications (SMAs) from Advanced Persistent Threat (APT) groups. The project addresses the critical vulnerability of SMAs, which, despite secure cryptographic protocols, possess significant software-level attack surfaces. The objective is to model SMA security risks, identify attack surfaces, and recommend defensive measures to protect these platforms. This Direct to Phase II (DP2) solicitation requires proposers to demonstrate prior feasibility in characterizing SMA attack surfaces, developing security frameworks, and evaluating security features. Phase II focuses on designing prototype models and evaluation methods, culminating in a demonstration of compelling use cases. Phase III aims for the commercialization and transition of these prototypes into viable products for both military and private sector markets, ultimately enhancing communication security and privacy.
    1763078525610.pdf
    DARPA's Assessing Security of Encrypted Messaging Applications (ASEMA) initiative seeks novel approaches to defend Secure Messaging Applications (SMAs) from Advanced Persistent Threat (APT) groups. The project addresses the vulnerability of SMAs, despite their cryptographic protocols, by focusing on the security risks within the application code itself—an enormous and remotely reachable attack surface. The objective is to develop models, frameworks, and evaluation methods to identify and mitigate security weaknesses in SMAs, ultimately providing actionable recommendations for developers and users. This Direct to Phase II (DP2) solicitation requires proposers to demonstrate feasibility through existing work, showcasing expertise in computer science, vulnerability research, and software engineering. Phase II will involve designing and developing prototype models and frameworks, culminating in a demonstration of their effectiveness against real-world SMA attacks.
    1763164918041.pdf
    DARPA's Assessing Security of Encrypted Messaging Applications (ASEMA) initiative seeks novel approaches to defend Secure Messaging Applications (SMAs) from Advanced Persistent Threat (APT) groups. The project addresses the vulnerability of SMAs, despite their cryptographic protocols, by focusing on the security risks within the application code itself. The objective is to model SMA attack surfaces, identify security boundaries, and develop frameworks and tools to assess and ensure the efficacy of defensive measures. This Direct to Phase II (DP2) solicitation requires proposers to demonstrate prior feasibility work in computer science, vulnerability research, and software engineering. Phase II will involve designing prototype models and frameworks, culminating in a demonstration of improved SMA security against real-world attacks. Phase III emphasizes the transition and commercialization of these tools for both military and private sector use, ultimately enhancing communication security and privacy.
    1763337712759.pdf
    DARPA's Assessing Security of Encrypted Messaging Applications (ASEMA) project seeks novel methods to defend Secure Messaging Applications (SMAs) from Advanced Persistent Threat (APT) groups. The project addresses the vulnerability of SMAs, which, despite secure cryptographic protocols, have software flaws exploited by attackers. The objective is to model SMA security risks, recommend defensive measures, and develop frameworks to assess their efficacy. This Direct to Phase II (DP2) solicitation requires proposers to demonstrate feasibility through existing work, proving scientific and technical merit for both Department of Defense (DoD) and civilian use. Phase II focuses on designing and developing prototype models and evaluation methods to defend SMAs, culminating in a demonstration of compelling use cases. Phase III emphasizes transitioning and commercializing these solutions, securing external funding to develop the prototype into a viable product for military and private sector markets, ultimately enhancing communication security and privacy.
    1763510524582.pdf
    The xTechOverwatch Open Topic seeks innovative autonomous unmanned systems (UAVs, UGVs, and sensor networks) capable of dynamic overwatch, terrain adaptation, and collaborative autonomy. This initiative, part of the xTechOverwatch Prize Competition, aims to identify small businesses with expertise in areas like AI-driven robotics, sensor fusion, and secure communications. Selected participants will develop modular solutions for integration into comprehensive autonomous systems, potentially collaborating with Army research laboratories. The objective is to enhance situational awareness and mission effectiveness through advanced AI, robotics, secure networking, and real-time data processing, with prototypes to be tested with a designated Army formation.
    1763769708840.pdf
    The DARPA HR0011SB20254-12 initiative,
    1764968594282.pdf
    The DARPA HR0011SB20254-12 program, "Assessing Security of Encrypted Messaging Applications (ASEMA)," seeks innovative solutions to enhance the security of Secure Messaging Applications (SMAs) against Advanced Persistent Threat (APT) groups. The program aims to address the vulnerabilities in SMA software, which are often overlooked compared to their cryptographic protocols. It focuses on characterizing and modeling SMA attack surfaces, developing frameworks for identifying security boundaries and mitigations, and creating tools to evaluate SMA security features. This is a Direct to Phase II (DP2) solicitation, requiring proposers to demonstrate feasibility through existing work and expertise in computer science, vulnerability research, and software engineering. Phase II involves designing and developing prototype models and frameworks to defend SMAs, culminating in a demonstration of their efficacy. Phase III focuses on commercialization and transition, securing non-SBIR funding to develop these prototypes into viable products for both military and private sector markets, ultimately enhancing secure communications.
    PDF.html
    Similar Opportunities
    Novel Technologies for CWMD and Related Threats - Open Topic -
    DOD
    The Defense Threat Reduction Agency (DTRA) is seeking innovative solutions through its Small Business Innovation Research (SBIR) program to develop novel technologies for detecting radiological and nuclear threats without the use of specialized sensors. The objective is to utilize signals from existing general-purpose military hardware, commercially available devices, and public data sources to enhance the detection capabilities for weapons of mass destruction (WMD). This initiative is crucial for overcoming the challenges associated with the high costs and lengthy timelines of developing new military hardware for WMD detection. The project is structured in three phases: Phase I focuses on identifying feasible use cases and developing a course of action; Phase II involves building and testing a model or prototype; and Phase III aims to refine the technology for broader dual-use applications in defense, government, and commercial sectors. The solicitation is currently in pre-release status, with an open date set for December 10, 2025, and a close date of December 31, 2025. Interested parties can find more information and submit proposals through the DOD SBIR website.
    Secure Multi-Source Data Fusion Environment for pLEO Constellations -
    DOD
    The United States Space Force (USSF), through the Space Development Agency (SDA), is seeking innovative solutions for a Secure Multi-Source Data Fusion Environment tailored for proliferated Low Earth Orbit (pLEO) constellations. The objective is to develop an adaptable software platform capable of ingesting, integrating, and analyzing high-volume, low-latency data from diverse space-based sources, enhancing real-time situational awareness and mission adaptability for the Department of Defense’s Proliferated Warfighter Space Architecture (PWSA). This initiative is critical for enabling automated decision-making and timely execution of operations, supporting the USSF's goal of improving data-to-decision agility and operational responsiveness. Interested parties must prepare Direct-to-Phase II proposals, demonstrating a completed feasibility study and a clear integration plan with Department of Air Force operations, with the application deadline set for December 31, 2025.
    Silencing with Acoustic Rainbow Emitters (SWARE) -
    DOD
    The Department of Defense, specifically the Special Operations Command (SOCOM), is seeking innovative research and development proposals for a low-cost Acoustic Rainbow Emitter (ARE) aimed at significantly reducing the acoustic signature of Unmanned Aerial Systems (UAS). The primary objective is to create an ARE that can redirect and alter the frequencies of a UAS's acoustic emissions, achieving at least a 50% reduction in audibility, while ensuring the system is adaptable to various UAS platforms and maintains a low visual signature. This technology is crucial for enhancing the stealth capabilities of Special Operations Forces during tactical operations. Interested parties should note that the solicitation number is SOCOM254-008, with a release date of September 3, 2025, and applications due by December 31, 2025. For further details, please visit the official solicitation link at https://www.dodsbirsttr.mil/topics-app/.
    Unbiased Behavioral Discovery Platforms -
    DOD
    The Department of Defense (DoD), through the Defense Advanced Research Projects Agency (DARPA), is seeking innovative solutions for the development of unbiased behavioral discovery platforms aimed at enhancing the detection and development of medical countermeasures against chemical and biological threats. The primary objective is to create automated systems capable of quantifying novel animal behaviors in preclinical models with greater sensitivity and specificity than current methodologies, while minimizing variability and ethical concerns associated with traditional animal testing. This initiative is critical for accelerating the identification of effective medical countermeasures and improving defense health capabilities. Interested parties should note that the opportunity is part of the Small Business Innovation Research (SBIR) program, with a release date of September 3, 2025, and applications due by December 31, 2025. For more information, visit the official solicitation page at https://www.dodsbirsttr.mil/topics-app/.
    Acoustic-based UAS Rainbow Oscillation Refraction Architecture (AURORA) -
    DOD
    The Department of Defense, specifically the Special Operations Command (SOCOM), is seeking innovative research and development proposals for the Acoustic-based UAS Rainbow Oscillation Refraction Architecture (AURORA) under the SBIR program. The objective is to create an acoustic-based communication system that enables small uncrewed aerial systems (sUAS) within a swarm to communicate and determine their relative positions using sound generated by their propellers as a carrier wave. This technology is crucial for military applications where multiple drones operate in close proximity without relying on GPS or radio frequencies, enhancing their operational effectiveness and safety. Interested parties should prepare to submit their proposals by December 31, 2025, with the feasibility study phase (Phase I) focusing on system design options and achievable data rates, followed by prototype development in Phase II. For more details, visit the solicitation agency's website at https://www.dodsbirsttr.mil/topics-app/.
    Integrated Deployable Microsensors for Chemical Detection -
    DOD
    The Department of Defense (DoD) is seeking proposals for the development of Integrated Deployable Microsensors for Chemical Detection, aimed at providing early warning of chemical threats. The objective is to create a low size, weight, power, and cost (SWaP-C) microsensor capable of detecting chemical weapons agents and pharmaceutical-based agents in vapor and aerosol forms within a critical timeframe of 10 minutes. This technology is crucial for enhancing rapid response and decision-making in both military and civilian contexts, particularly for first responders in environmental detection and health monitoring. Proposals are due by December 31, 2025, with the opportunity opening on December 10, 2025, and further details can be found at the DoD SBIR website.
    OPEN TOPIC - Tactical CB Visualization -
    DOD
    The Department of Defense (DOD) is seeking innovative solutions through the Small Business Innovation Research (SBIR) program to enhance situational awareness and decision support for Warfighters operating in Chemical and Biological (CB) contested environments. The objective is to develop tactical visualization tools that efficiently integrate, visualize, and communicate tactical data, with a focus on Human-Machine Interface concepts and significant advantages in size, weight, and power (SWAP) demands. Proposed technologies may include augmented reality, sensor visualization, or unique end-user devices, and must comply with Integrated Sensor Architecture (ISA) standards and the Tactical Assault Kit (TAK) Software Development Kit (SDK). The opportunity is currently in the pre-release phase, with an open date of December 10, 2025, and a close date of December 31, 2025, for applications. Interested parties can find more information and submit proposals through the DOD SBIR website.
    Knowledge-Guided Test and Evaluation Frameworks for proliferated Low Earth Orbit Constellations -
    DOD
    The United States Space Force, through the Space Development Agency (SDA), is seeking innovative solutions for a knowledge-guided test and evaluation framework tailored for the Proliferated Warfighter Space Architecture (PWSA), a rapidly evolving constellation of satellites in Low Earth Orbit (LEO). The objective is to develop an adaptive test-planning capability that continuously updates system performance, quantifies knowledge gain against resource costs, and dynamically re-plans test sequences to prioritize high-utility activities, utilizing probabilistic reasoning and integrating both synthetic and live test data. This initiative is critical for enhancing the efficiency and effectiveness of test campaigns in support of SDA's agile acquisition model, with Phase I being a direct-to-Phase II proposal process requiring a feasibility study. The opportunity is set to open for applications on December 10, 2025, with a closing date of December 31, 2025, and interested parties can find more information at the provided source link.
    xTechPacific Open Topic -
    DOD
    The U.S. Army, through the xTechPacific Open Topic initiative, is seeking innovative technological solutions to enhance military capabilities in the Indo-Pacific region, focusing on three key areas: detection of buried explosives and unexploded ordnance (UXO) in complex, iron-rich soils, advanced defensive capabilities for Army and commercial watercraft, and Electronic Warfare (EW) domain awareness. Proposals should demonstrate effectiveness in challenging environments, with a particular emphasis on cost-effective, adaptable solutions that can operate under extreme conditions. This opportunity is a Direct to Phase II (DP2) submission, offering funding of up to $2,000,000 over an 18-month period, with proposals due by December 17, 2025. Interested parties can find more information and submit proposals through the official solicitation link at https://www.dodsbirsttr.mil/topics-app/.
    Microphysiological systems to Assess Pretreatment Immunogenicity and Efficacy (MAGPIE) -
    DOD
    The Defense Threat Reduction Agency (DTRA) is seeking proposals for the development of Microphysiological systems to Assess Pretreatment Immunogenicity and Efficacy (MAGPIE), specifically immune microphysiological systems (iMPS) aimed at evaluating vaccines against high-consequence pathogens. The primary objective is to create iMPS that can replicate known vaccine responses, differentiate vaccine efficacy, and predict the immunogenicity of novel vaccine constructs, thereby addressing the limitations of traditional vaccine development models. This initiative is crucial for enhancing warfighter readiness by facilitating accelerated vaccine development and reducing reliance on traditional animal models. Interested parties should note that the solicitation is set to open on December 10, 2025, with applications due by December 31, 2025, and further details can be found at the DOD SBIR/STTR website.