SVM-based Instruction Set Identification for Grid Device Firmware

被引：0

作者：

Ma, Yuan ^{[1
,2
]}

Han, Lifang ^{[3
]}

Ying, Huan ^{[3
]}

Yang, Shouguo ^{[1
,2
]}

Zhao, Weiwei ^{[4
]}

Shi, Zhiqiang ^{[1
,2
]}

机构：

[1] Chinese Acad Sci, Inst Informat Engn, Beijing, Peoples R China

[2] Univ Chinese Acad Sci, Sch Cyber Secur, Beijing, Peoples R China

[3] China Elect Power Res Inst, Beijing, Peoples R China

[4] Huawei Technol Co Ltd, Beijing, Peoples R China

来源：

PROCEEDINGS OF 2019 IEEE 8TH JOINT INTERNATIONAL INFORMATION TECHNOLOGY AND ARTIFICIAL INTELLIGENCE CONFERENCE (ITAIC 2019) | 2019年

基金：

中国国家自然科学基金;

关键词：

support vector machines; information gain; instruction set; reverse engineering; firmware;

D O I：

10.1109/itaic.2019.8785564

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

Identifying the binary program instruction set is an important prerequisite for reverse analysis of firmware, but grid device firmware usually lacks a program description header, which poses a serious challenge to instruction set identification. This paper proposes an SVM-based instruction set recognition method(SVM-IBPS). First, the optimal feature list is obtained by the instruction set feature selection method of information gain, and then the SVM-IBPS model is trained by Support Vector Machine and tested in the dataset of 111,918 executable files, which is decompressed and extracted from the embedded device firmware. Finally, a comparative experiment was conducted with Binwalk and SVM-IBPS. The experimental results show that the accuracy of SVM-IBPS on the test dataset is 98.97%, which is 20.7% higher than that of Binwalk, and the time cost is only about one-ninth of it.

引用

页码：214 / 218

页数：5

共 50 条

[1] SVM-based identification of pathological voices
Chen, Wenxi
Peng, Ce
Zhu, Xin
Wan, Baikun
Wei, Daming
[J]. 2007 ANNUAL INTERNATIONAL CONFERENCE OF THE IEEE ENGINEERING IN MEDICINE AND BIOLOGY SOCIETY, VOLS 1-16, 2007, : 3786 - 3789
[2] SVM-Based Spectral Matching for Metabolite Identification
Zhou, Bin
Cheema, Amrita K.
Ressom, Habtom W.
[J]. 2010 ANNUAL INTERNATIONAL CONFERENCE OF THE IEEE ENGINEERING IN MEDICINE AND BIOLOGY SOCIETY (EMBC), 2010, : 756 - 759
[3] SVM-based face verification with feature set of small size
Lee, K
Chung, Y
Byun, H
[J]. ELECTRONICS LETTERS, 2002, 38 (15) : 787 - 789
[4] SVM-Based Parameter Identification for Static Load Modeling
Wang, Chong
Wang, Zhaoyu
Ma, Shanshan
[J]. 2018 IEEE/PES TRANSMISSION AND DISTRIBUTION CONFERENCE AND EXPOSITION (T&D), 2018,
[5] An Improved SVM-Based Cognitive Diagnosis Algorithm for Operation States of Distribution Grid
Yang, Jun
Gong, Lingyun
Tang, Yufei
Yan, Jun
He, Haibo
Zhang, Leiqi
Li, Gang
[J]. COGNITIVE COMPUTATION, 2015, 7 (05) : 582 - 593
[6] An Improved SVM-Based Cognitive Diagnosis Algorithm for Operation States of Distribution Grid
Jun Yang
Lingyun Gong
Yufei Tang
Jun Yan
Haibo He
Leiqi Zhang
Gang Li
[J]. Cognitive Computation, 2015, 7 : 582 - 593
[7] A SVM-based Parser for Chinese
Chan, Zhimin
Feng, Cheng
[J]. ITESS: 2008 PROCEEDINGS OF INFORMATION TECHNOLOGY AND ENVIRONMENTAL SYSTEM SCIENCES, PT 1, 2008, : 1150 - 1156
[8] Decision Tree and SVM-Based Data Analytics for Theft Detection in Smart Grid
Jindal, Anish
Dua, Amit
Kaur, Kuljeet
Singh, Mukesh
Kumar, Neeraj
Mishra, S.
[J]. IEEE TRANSACTIONS ON INDUSTRIAL INFORMATICS, 2016, 12 (03) : 1005 - 1016
[9] Effective feature set construction for SVM-based hot method prediction and optimisation
Johnson, Sandra
Shanmugam, Valli
[J]. INTERNATIONAL JOURNAL OF COMPUTATIONAL SCIENCE AND ENGINEERING, 2011, 6 (03) : 192 - 205
[10] SVM-based Land/Sea Clutter Identification with Multi-Features
Jin Zhenlu
Pan Quan
Liang Yan
Cheng Yongmei
Zhou Wentian
[J]. PROCEEDINGS OF THE 31ST CHINESE CONTROL CONFERENCE, 2012, : 3903 - 3908

← 1 2 3 4 5 →