Cognitive and Scalable Technique for Securing IoT Networks Against Malware Epidemics

Dinakarrao, Sai Manoj Pudukotai; Guo, Xiaojie; Sayadi, Hossein; Nowzari, Cameron; Sasan, Avesta; Rafatirad, Setareh; Zhao, Liang; Homayoun, Houman

doi:10.1109/access.2020.3011919

Cited by 25 publications

(15 citation statements)

References 86 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Furthermore, a quarantine-oriented mitigation plan has been researched for time-varying graphs [25], whereby the layout of a graph is employed to represent the necessary measures to overcome a resource allocation dilemma [26]. Control theory and game theory are two main approaches to containing malware in networks [27]. Solutions based on control theory are often based on heuristics and simplifications, which can lead to sub-optimal results [28].…”

Section: Mitigation Strategiesmentioning

confidence: 99%

Dynamic Malware Mitigation Strategies for IoT Networks: A Mathematical Epidemiology Approach

Casado-Vara,

Severt,

Díaz-Longueira

et al. 2024

Mathematics

View full text Add to dashboard Cite

With the progress and evolution of the IoT, which has resulted in a rise in both the number of devices and their applications, there is a growing number of malware attacks with higher complexity. Countering the spread of malware in IoT networks is a vital aspect of cybersecurity, where mathematical modeling has proven to be a potent tool. In this study, we suggest an approach to enhance IoT security by installing security updates on IoT nodes. The proposed method employs a physically informed neural network to estimate parameters related to malware propagation. A numerical case study is conducted to evaluate the effectiveness of the mitigation strategy, and novel metrics are presented to test its efficacy. The findings suggest that the mitigation tactic involving the selection of nodes based on network characteristics is more effective than random node selection.

show abstract

Section: Mitigation Strategiesmentioning

confidence: 99%

Dynamic Malware Mitigation Strategies for IoT Networks: A Mathematical Epidemiology Approach

Casado-Vara,

Severt,

Díaz-Longueira

et al. 2024

Mathematics

View full text Add to dashboard Cite

show abstract

“…FDI attacks can affect the LMP by confusing the state estimation, which then unsympathetically involves the contingency analysis processes [45]. • Insertion of worms or malware can range from malicious software that operates in backgrounds to decelerate the smart grid computers' operations via employing Trojan software for stealing the certificates of practical security [46]. To detect cyber-attacks on the Internet-of-Things (IoT) applications, the sensors available in the system is utilized along with monitoring the physical system possible models.…”

Section: A Causes Of Cyber-attacksmentioning

confidence: 99%

CPS Attacks Mitigation Approaches on Power Electronic Systems With Security Challenges for Smart Grid Applications: A Review

et al. 2021

View full text Add to dashboard Cite

This paper presents an inclusive review of the cyber-physical (CP) attacks, vulnerabilities, mitigation approaches on the power electronics and the security challenges for the smart grid applications. With the rapid evolution of the physical systems in the power electronics applications for interfacing renewable energy sources that incorporate with cyber frameworks, the cyber threats have a critical impact on the smart grid performance. Due to the existence of electronic devices in the smart grid applications, which are interconnected through communication networks, these networks may be subjected to severe cyber-attacks by hackers. If this occurs, the digital controllers can be physically isolated from the control loop. Therefore, the cyber-physical systems (CPSs) in the power electronic systems employed in the smart grid need special treatment and security. In this paper, an overview of the power electronics systems security on the networked smart grid from the CP perception, as well as then emphases on prominent CP attack patterns with substantial influence on the power electronics components operation along with analogous defense solutions. Furthermore, appraisal of the CPS threats attacks mitigation approaches, and encounters along the smart grid applications are discussed. Finally, the paper concludes with upcoming trends and challenges in CP security in the smart grid applications.

show abstract

“…Attackers are increasingly motivated and enabled to compromise software and computing hardware infrastructure. The increasing complexity of modern computing systems in different application domains has resulted in the emergence of new security vulnerabilities [1][2][3][4]. Cyber attackers make use of these vulnerabilities to compromise systems using sophisticated malicious activities.…”

Section: Introductionmentioning

confidence: 99%

“…The emergence of new malware threats requires patching or updating the software-based malware detection solutions (such as off-the-shelf anti-virus) that needs a vast amount of memory and hardware resources, which is not feasible for emerging computing systems especially in embedded mobile and IoT devices [3,14,15]. In addition, most of these advanced analysis techniques are architecture-dependent i.e., dependent on the underlying hardware, which makes the existing traditional malware detection techniques hard to import onto emerging embedded computing devices [4,14].…”

Section: Introductionmentioning

confidence: 99%

“…HMD methods reduce the latency of the detection process by order of magnitude with a small hardware overhead. In particular, recent studies have shown that malware can be differentiated from normal programs by classifying anomalies using Machine Learning (ML) techniques in low-level microarchitectural feature spaces captured by Hardware Performance Counters (HPCs) [4,[14][15][16][17][18][19][20][21][22] to appropriately represent the application behavior. The HPCs are special-purpose registers implemented into modern microprocessors to capture the trace of hardware-related events such as executed instructions, suffered cache-misses, or mispredicted branches for a running program [16,18,23].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Towards Accurate Run-Time Hardware-Assisted Stealthy Malware Detection: A Lightweight, yet Effective Time Series CNN-Based Approach

et al. 2021

Self Cite

View full text Add to dashboard Cite

According to recent security analysis reports, malicious software (a.k.a. malware) is rising at an alarming rate in numbers, complexity, and harmful purposes to compromise the security of modern computer systems. Recently, malware detection based on low-level hardware features (e.g., Hardware Performance Counters (HPCs) information) has emerged as an effective alternative solution to address the complexity and performance overheads of traditional software-based detection methods. Hardware-assisted Malware Detection (HMD) techniques depend on standard Machine Learning (ML) classifiers to detect signatures of malicious applications by monitoring built-in HPC registers during execution at run-time. Prior HMD methods though effective have limited their study on detecting malicious applications that are spawned as a separate thread during application execution, hence detecting stealthy malware patterns at run-time remains a critical challenge. Stealthy malware refers to harmful cyber attacks in which malicious code is hidden within benign applications and remains undetected by traditional malware detection approaches. In this paper, we first present a comprehensive review of recent advances in hardware-assisted malware detection studies that have used standard ML techniques to detect the malware signatures. Next, to address the challenge of stealthy malware detection at the processor’s hardware level, we propose StealthMiner, a novel specialized time series machine learning-based approach to accurately detect stealthy malware trace at run-time using branch instructions, the most prominent HPC feature. StealthMiner is based on a lightweight time series Fully Convolutional Neural Network (FCN) model that automatically identifies potentially contaminated samples in HPC-based time series data and utilizes them to accurately recognize the trace of stealthy malware. Our analysis demonstrates that using state-of-the-art ML-based malware detection methods is not effective in detecting stealthy malware samples since the captured HPC data not only represents malware but also carries benign applications’ microarchitectural data. The experimental results demonstrate that with the aid of our novel intelligent approach, stealthy malware can be detected at run-time with 94% detection performance on average with only one HPC feature, outperforming the detection performance of state-of-the-art HMD and general time series classification methods by up to 42% and 36%, respectively.

show abstract

Cognitive and Scalable Technique for Securing IoT Networks Against Malware Epidemics

Cited by 25 publications

References 86 publications

Dynamic Malware Mitigation Strategies for IoT Networks: A Mathematical Epidemiology Approach

Dynamic Malware Mitigation Strategies for IoT Networks: A Mathematical Epidemiology Approach

CPS Attacks Mitigation Approaches on Power Electronic Systems With Security Challenges for Smart Grid Applications: A Review

Towards Accurate Run-Time Hardware-Assisted Stealthy Malware Detection: A Lightweight, yet Effective Time Series CNN-Based Approach

Contact Info

Product

Resources

About