Roland Nagy scite author profile

Roland Nagy

5Publications

2Citation Statements Received

43Citation Statements Given

How they've been cited

How they cite others

Affiliations

Budapest University of Technology and Economics

Publications

Order By: Most citations

Rootkit Detection on Embedded IoT Devices

et al. 2021

View full text Add to dashboard Cite

IoT systems are subject to cyber attacks, including infecting embedded IoT devices with rootkits. Rootkits are malicious software that typically run with elevated privileges, which makes their detection challenging. In this paper, we address this challenge: we propose a rootkit detection approach for embedded IoT devices that takes advantage of a trusted execution environment (TEE), which is often supported on popular IoT platforms, such as ARM based embedded boards. The TEE provides an isolated environment for our rootkit detection algorithms, and prevents the rootkit from interfering with their execution even if the rootkit has root privileges on the untrusted part of the IoT device. Our rootkit detection algorithms identify modifications made by the rootkit to the code of the operating system kernel, to system programs, and to data influencing the control flow (e.g., hooking system calls), as well as inconsistencies created by the rootkit in certain kernel data structures (e.g., those responsible to handle process related information). We also propose algorithms to detect rootkit components in the persistent storage of the device. Besides describing our approach and algorithms in details, we also report on a prototype implementation and on the evaluation of our design and implementation, which is based on testing our prototype with rootkits that we developed for this purpose.

show abstract

T-RAID: TEE-based Remote Attestation for IoT Devices

Nagy

Bak

Papp

et al. 2022

View full text Add to dashboard Cite

The Internet of Things (IoT) consists of network-connected embedded devices that enable a multitude of new applications, but also create new risks. In particular, embedded IoT devices can be infected by malware. Operators of IoT systems not only need malware detection tools, but also scalable methods to reliably and remotely verify malware freedom of their IoT devices. In this paper, we address this problem by proposing T-RAID, a remote attestation scheme for IoT devices that takes advantage of the security guarantees provided by a Trusted Execution Environment running on each device.

show abstract

Increasing the Robustness of a Machine Learning-based IoT Malware Detection Method with Adversarial Training

Sándor

Nagy

Buttyán

2023

View full text Add to dashboard Cite

SIMBIoTA-ML: Light-weight, Machine Learning-based Malware Detection for Embedded IoT Devices

Papp

Ács

Nagy

et al. 2022

View full text Add to dashboard Cite

SIMBIoTA++: Improved Similarity-based IoT Malware Detection

Buttyán

Nagy

Papp

2022

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Roland Nagy

Rootkit Detection on Embedded IoT Devices

T-RAID: TEE-based Remote Attestation for IoT Devices

Increasing the Robustness of a Machine Learning-based IoT Malware Detection Method with Adversarial Training

SIMBIoTA-ML: Light-weight, Machine Learning-based Malware Detection for Embedded IoT Devices

SIMBIoTA++: Improved Similarity-based IoT Malware Detection

Contact Info

Product

Resources

About