Detecting Peripheral-based Attacks on the Host Memory

This work addresses stealthy peripheral-based attacks on host computers and presents a new approach to detecting them. Peripherals can be regarded as separate systems that have a dedicated processor and dedicated runtime memory to handle their tasks. The book addresses the problem that peripherals g...

Full description

Main Author: Stewin, Patrick. (Author, http://id.loc.gov/vocabulary/relators/aut)
Corporate Author: SpringerLink (Online service)
Language:English
Published: Cham : Springer International Publishing : Imprint: Springer, 2015.
Edition:1st ed. 2015.
Series:T-Labs Series in Telecommunication Services,
Subjects:
Online Access:https://doi.org/10.1007/978-3-319-13515-1
LEADER 03591nam a22005175i 4500
001 978-3-319-13515-1
003 DE-He213
005 20210617054826.0
007 cr nn 008mamaa
008 141227s2015 gw | s |||| 0|eng d
020 |a 9783319135151  |9 978-3-319-13515-1 
024 7 |a 10.1007/978-3-319-13515-1  |2 doi 
050 4 |a TK1-9971 
072 7 |a TJK  |2 bicssc 
072 7 |a TEC041000  |2 bisacsh 
072 7 |a TJK  |2 thema 
082 0 4 |a 621.382  |2 23 
100 1 |a Stewin, Patrick.  |e author.  |4 aut  |4 http://id.loc.gov/vocabulary/relators/aut 
245 1 0 |a Detecting Peripheral-based Attacks on the Host Memory  |h [electronic resource] /  |c by Patrick Stewin. 
250 |a 1st ed. 2015. 
264 1 |a Cham :  |b Springer International Publishing :  |b Imprint: Springer,  |c 2015. 
300 |a XV, 108 p. 35 illus., 34 illus. in color.  |b online resource. 
336 |a text  |b txt  |2 rdacontent 
337 |a computer  |b c  |2 rdamedia 
338 |a online resource  |b cr  |2 rdacarrier 
347 |a text file  |b PDF  |2 rda 
490 1 |a T-Labs Series in Telecommunication Services,  |x 2192-2810 
505 0 |a Introduction -- Technical Background, Preliminaries and Assumptions -- Related Work -- Study of a Stealthy, Direct Memory Access based Malicious Software -- A Primitive for Detecting DMA Malware -- Authentic Reporting to External Platforms -- Conclusions and Future Work. 
520 |a This work addresses stealthy peripheral-based attacks on host computers and presents a new approach to detecting them. Peripherals can be regarded as separate systems that have a dedicated processor and dedicated runtime memory to handle their tasks. The book addresses the problem that peripherals generally communicate with the host via the host’s main memory, storing cryptographic keys, passwords, opened files and other sensitive data in the process – an aspect attackers are quick to exploit.  Here, stealthy malicious software based on isolated micro-controllers is implemented to conduct an attack analysis, the results of which provide the basis for developing a novel runtime detector. The detector reveals stealthy peripheral-based attacks on the host’s main memory by exploiting certain hardware properties, while a permanent and resource-efficient measurement strategy ensures that the detector is also capable of detecting transient attacks, which can otherwise succeed when the applied strategy only measures intermittently. Attackers exploit this strategy by attacking the system in between two measurements and erasing all traces of the attack before the system is measured again.  . 
650 0 |a Electrical engineering. 
650 0 |a Input-output equipment (Computers). 
650 0 |a Computer security. 
650 1 4 |a Communications Engineering, Networks.  |0 https://scigraph.springernature.com/ontologies/product-market-codes/T24035 
650 2 4 |a Input/Output and Data Communications.  |0 https://scigraph.springernature.com/ontologies/product-market-codes/I12042 
650 2 4 |a Systems and Data Security.  |0 https://scigraph.springernature.com/ontologies/product-market-codes/I28060 
710 2 |a SpringerLink (Online service) 
773 0 |t Springer Nature eBook 
776 0 8 |i Printed edition:  |z 9783319135168 
776 0 8 |i Printed edition:  |z 9783319135144 
776 0 8 |i Printed edition:  |z 9783319386188 
830 0 |a T-Labs Series in Telecommunication Services,  |x 2192-2810 
856 4 0 |u https://doi.org/10.1007/978-3-319-13515-1 
912 |a ZDB-2-ENG 
912 |a ZDB-2-SXE 
950 |a Engineering (SpringerNature-11647) 
950 |a Engineering (R0) (SpringerNature-43712)