A Novel Algorithm for Detecting GSMem Attacks

被引:0
|
作者
Zhu, Weijun [1 ]
Nie, Kai [1 ]
Ban, Shaohuan [1 ]
Fan, Yongwen [1 ]
Wang, Jianwei [1 ]
机构
[1] Zhengzhou Univ, Sch Informat Engn, Zhengzhou 450001, Henan, Peoples R China
来源
PROCEEDINGS OF 2017 8TH IEEE INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING AND SERVICE SCIENCE (ICSESS 2017) | 2017年
基金
中国博士后科学基金; 中国国家自然科学基金;
关键词
air-gapped computer; GSMem; single instruction multiple data;
D O I
暂无
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
GSMem is a malware which is against air-gapped computers. Up to now, no method can detect it. To this end, this paper puts forward an algorithm for detecting GSMem. At first, the new algorithm detects whether or not there exists a thread in memory, which periodically calls the MOVNTDQ instruction. If such a thread occurs, a binary character string which is generated from the periodical call, will be matched with another binary character string which expresses some confidential information. And the new algorithm determines whether a GSMem attack occurs or not according to the result of the match. The simulation results show that the new algorithm can detect a GSMem in air-gapped networks in principle. The complexity analysis demonstrates that the new algorithm can complete its task within polynomial time.
引用
下载
收藏
页码:855 / 858
页数:4
相关论文
共 50 条
  • [1] Viterbi Algorithm for Detecting DDoS Attacks
    Bongiovanni, Wilson
    Guelfi, Adilson E.
    Pontes, Elvis
    Silva, A. A. A.
    Zhou, Fen
    Kofuji, Sergio Takeo
    40TH ANNUAL IEEE CONFERENCE ON LOCAL COMPUTER NETWORKS (LCN 2015), 2015, : 209 - 212
  • [2] SecK2-A novel machine learning algorithm for detecting data poisoning attacks
    Alsuwat, Emad
    JOURNAL OF INTELLIGENT & FUZZY SYSTEMS, 2023, 45 (06) : 10619 - 10633
  • [3] Detecting novel network attacks with a data field
    Xie, Feng
    Bai, Shuo
    INTELLIGENCE AND SECURITY INFORMATICS, PROCEEDINGS, 2006, 3917 : 66 - 72
  • [4] Detecting and displaying novel computer attacks with macroscope
    Cunningham, RK
    Lippmann, RP
    Webster, SE
    IEEE TRANSACTIONS ON SYSTEMS MAN AND CYBERNETICS PART A-SYSTEMS AND HUMANS, 2001, 31 (04): : 275 - 281
  • [5] An Adaptive Algorithm for Detecting and Preventing Attacks in Telecommunication Networks
    Yevdokymenko, Maryna
    2016 THIRD INTERNATIONAL SCIENTIFIC-PRACTICAL CONFERENCE PROBLEMS OF INFOCOMMUNICATIONS SCIENCE AND TECHNOLOGY (PIC S&T), 2016, : 175 - 177
  • [6] An unsupervised algorithm for detecting shilling attacks on recommender systems
    Li C.
    Luo Z.-G.
    Shi J.-L.
    Zidonghua Xuebao/Acta Automatica Sinica, 2011, 37 (02): : 160 - 167
  • [7] Detecting DDoS Attacks using Decision Tree Algorithm
    Lakshminarasimman, S.
    Ruswin, S.
    Sundarakantham, K.
    2017 FOURTH INTERNATIONAL CONFERENCE ON SIGNAL PROCESSING, COMMUNICATION AND NETWORKING (ICSCN), 2017,
  • [8] A Novel Visualization Method for Detecting DDoS Network Attacks
    Zhang, Jiawan
    Yang, Guoqiang
    Lu, Liangfu
    Huang, MaoLin
    Che, Ming
    VISUAL INFORMATION COMMUNICATION, 2010, : 185 - +
  • [9] A novel approach to detecting DDoS attacks at an early stage
    Xiao, Bin
    Chen, Wei
    He, Yanxiang
    JOURNAL OF SUPERCOMPUTING, 2006, 36 (03): : 235 - 248
  • [10] A novel approach to detecting DDoS Attacks at an Early Stage
    Bin Xiao
    Wei Chen
    Yanxiang He
    The Journal of Supercomputing, 2006, 36 : 235 - 248
12345