A Novel Algorithm for Detecting GSMem Attacks

被引：0

作者：

Zhu, Weijun ^{[1
]}

Nie, Kai ^{[1
]}

Ban, Shaohuan ^{[1
]}

Fan, Yongwen ^{[1
]}

Wang, Jianwei ^{[1
]}

机构：

[1] Zhengzhou Univ, Sch Informat Engn, Zhengzhou 450001, Henan, Peoples R China

来源：

PROCEEDINGS OF 2017 8TH IEEE INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING AND SERVICE SCIENCE (ICSESS 2017) | 2017年

基金：

中国博士后科学基金; 中国国家自然科学基金;

关键词：

air-gapped computer; GSMem; single instruction multiple data;

D O I：

暂无

中图分类号：

TP31 [计算机软件];

学科分类号：

081202 ; 0835 ;

摘要：

GSMem is a malware which is against air-gapped computers. Up to now, no method can detect it. To this end, this paper puts forward an algorithm for detecting GSMem. At first, the new algorithm detects whether or not there exists a thread in memory, which periodically calls the MOVNTDQ instruction. If such a thread occurs, a binary character string which is generated from the periodical call, will be matched with another binary character string which expresses some confidential information. And the new algorithm determines whether a GSMem attack occurs or not according to the result of the match. The simulation results show that the new algorithm can detect a GSMem in air-gapped networks in principle. The complexity analysis demonstrates that the new algorithm can complete its task within polynomial time.

引用

页码：855 / 858

页数：4

共 50 条

[41] SECO: SDN sEcure COntroller Algorithm for Detecting and Defending Denial of Service Attacks
Wang, Song
Chavez, Karina Gomez
Kandeepan, Sithamparanathan
2017 5TH INTERNATIONAL CONFERENCE ON INFORMATION AND COMMUNICATION TECHNOLOGY (ICOIC7), 2017,
[42] Detecting Network Attacks on Software Configured Networks Using the Isolating Forest Algorithm
Stepanov, M. D.
Pavlenko, E. Yu
Lavrova, D. S.
AUTOMATIC CONTROL AND COMPUTER SCIENCES, 2021, 55 (08) : 1039 - 1050
[43] A novel deep learning-based approach for detecting attacks in social IoT
Das, R. Mohan
Kumar, U. Arun
Gopinath, S.
Gomathy, V.
Natraj, N. A.
Anushkannan, N. K.
Balashanmugham, Adhavan
SOFT COMPUTING, 2023,
[44] A novel architecture for detecting and defending against flooding-based DDoS attacks
Shi, Y
Yang, XY
COMPUTATIONAL INTELLIGENCE AND SECURITY, PT 2, PROCEEDINGS, 2005, 3802 : 364 - 374
[45] A Profile-Based Novel Framework for Detecting EDoS Attacks in the Cloud Environment
J. Britto Dennis
M. Shanmuga Priya
Wireless Personal Communications, 2021, 117 : 3487 - 3503
[46] A Novel Ensemble of Hybrid Intrusion Detection System for Detecting Internet of Things Attacks
Khraisat, Ansam
Gondal, Iqbal
Vamplew, Peter
Kamruzzaman, Joarder
Alazab, Ammar
ELECTRONICS, 2019, 8 (11)
[47] SecureIoT: Novel Machine Learning Algorithms for Detecting and Preventing Attacks on IoT Devices
Vutukuru, Srikanth Reddy
Lade, Srinivasa Chakravarthi
JOURNAL OF ELECTRICAL SYSTEMS, 2023, 19 (04) : 315 - 335
[48] Toward detecting novel software attacks by using constructs from human cognition
Bryant, Adam
3RD INTERNATIONAL CONFERENCE ON INFORMATION WARFARE AND SECURITY, PROCEEDINGS, 2008, : 59 - 66
[49] Cross-Validation for Detecting Label Poisoning Attacks: A Study on Random Forest Algorithm
Yasarathna, Tharindu Lakshan
Munasinghe, Lankeshwara
Kalutarage, Harsha
Nhien-An Le-Khac
ICT SYSTEMS SECURITY AND PRIVACY PROTECTION, SEC 2024, 2024, 710 : 451 - 464
[50] Novel Spectrum Sensing Algorithm for Detecting OFDM Signals
Wang, Tingting
Li, Dongmei
Zhang, Shibing
PROCEEDINGS OF 2019 3RD INTERNATIONAL CONFERENCE ON RECENT ADVANCES IN SIGNAL PROCESSING, TELECOMMUNICATIONS & COMPUTING (SIGTELCOM 2019), 2019, : 114 - 119

← 1 2 3 4 5 →