WattsUpDoc: power side channels to nonintrusively discover untargeted malware on embedded medical devices
作者: Jacob Sorber , Benjamin Ransford , Kevin Fu , Amir Rahmati , Shane S. Clark
DOI:
关键词:
摘要: Medical devices based on embedded systems are ubiquitous in clinical settings. Increasingly, they connect to networks and run off-the-shelf operating vulnerable malware. But strict validation requirements make it prohibitively difficult or costly use anti-virus software automated system updates these systems. Our add-on monitoring system, WattsUpDoc, uses a traditionally undesirable side channel of power consumption enable run-time malware detection. In our experiments, WattsUpDoc detected previously known with at least 94% accuracy unknown 85% several devices--detection rates similar those conventional malware-detection PCs. detects without requiring hardware modifications network communication.
rahmati.com
acm.org 参考文章(19)
Shane S. Clark, Hossen Mustafa, Benjamin Ransford, Jacob Sorber, Kevin Fu, Wenyuan Xu, Current events: Identifying webpages by tapping the electrical outlet european symposium on research in computer security. pp. 700- 717 ,(2013) , 10.1007/978-3-642-40203-6_39
Benjamin Ransford, Kevin Fu, Shane S. Clark, Potentia est scientia: security and privacy implications of energy-proportional computing usenix conference on hot topics in security. pp. 3- 3 ,(2012)
Shankar Sastry, Saurabh Amin, Alvaro A. Cárdenas, Research challenges for the security of control systems usenix security symposium. pp. 6- ,(2008)
Hahnsang Kim, Joshua Smith, Kang G. Shin, Detecting energy-greedy anomalies and mobile malware variants Proceeding of the 6th international conference on Mobile systems, applications, and services - MobiSys '08. pp. 239- 252 ,(2008) , 10.1145/1378600.1378627
Miro Enev, Sidhant Gupta, Tadayoshi Kohno, Shwetak N. Patel, Televisions, video privacy, and powerline electromagnetic interference Proceedings of the 18th ACM conference on Computer and communications security - CCS '11. pp. 537- 550 ,(2011) , 10.1145/2046707.2046770
Alvaro A. Cárdenas, Saurabh Amin, Zong-Syun Lin, Yu-Lun Huang, Chi-Yen Huang, Shankar Sastry, Attacks against process control systems Proceedings of the 6th ACM Symposium on Information, Computer and Communications Security - ASIACCS '11. pp. 355- 366 ,(2011) , 10.1145/1966913.1966959
Mohammad Maifi Hasan Khan, Jiawei Han, Xin Jin, Hieu K. Le, Michael LeMay, Parya Moinzadeh, Lili Wang, Yong Yang, Dong K. Noh, Tarek Abdelzaher, Carl A. Gunter, Diagnostic powertracing for sensor node failure analysis information processing in sensor networks. pp. 117- 128 ,(2010) , 10.1145/1791212.1791227
Lei Liu, Guanhua Yan, Xinwen Zhang, Songqing Chen, VirusMeter: Preventing Your Cellphone from Spies recent advances in intrusion detection. pp. 244- 264 ,(2009) , 10.1007/978-3-642-04342-0_13
G.W. Hart, Nonintrusive appliance load monitoring Proceedings of the IEEE. ,vol. 80, pp. 1870- 1891 ,(1992) , 10.1109/5.192069
Mark Hall, Eibe Frank, Geoffrey Holmes, Bernhard Pfahringer, Peter Reutemann, Ian H. Witten, The WEKA data mining software ACM SIGKDD Explorations Newsletter. ,vol. 11, pp. 10- 18 ,(2009) , 10.1145/1656274.1656278