Sahil Suneja scite author profile

Smartphones and tablets are easily lost or stolen. This makes them susceptible to an inexpensive class of memory attacks, such as cold-boot attacks, using a bus monitor to observe the memory bus, and DMA attacks. This paper describes Sentry, a system that allows applications and OS components to store their code and data on the System-on-Chip (SoC) rather than in DRAM. We use ARM-specific mechanisms originally designed for embedded systems, but still present in today's mobile devices, to protect applications and OS subsystems from memory attacks.

show abstract

Cryptomining Detection in Container Clouds Using System Calls and Explainable Machine Learning

Karn

Kudva

Huang

et al. 2021

IEEE Trans. Parallel Distrib. Syst.

View full text Add to dashboard Cite

Protecting Data on Smartphones and Tablets from Memory Attacks

Colp

Zhang

Gleeson

et al. 2015

View full text Add to dashboard Cite

Smartphones and tablets are easily lost or stolen. This makes them susceptible to an inexpensive class of memory attacks, such as coldboot attacks, using a bus monitor to observe the memory bus, and DMA attacks. This paper describes Sentry, a system that allows applications and OS components to store their code and data on the System-on-Chip (SoC) rather than in DRAM. We use ARMspecific mechanisms originally designed for embedded systems, but still present in today's mobile devices, to protect applications and OS subsystems from memory attacks.

show abstract

Usable declarative configuration specification and validation for applications, systems, and cloud

Baset¹,

Suneja²,

Bila³

et al. 2017

View full text Add to dashboard Cite

Non-intrusive, out-of-band and out-of-the-box systems monitoring in the cloud

Suneja

Isci

Bala

et al. 2014

SIGMETRICS Perform. Eval. Rev.

View full text Add to dashboard Cite

The dramatic proliferation of virtual machines (VMs) in datacenters and the highly-dynamic and transient nature of VM provisioning has revolutionized datacenter operations. However, the management of these environments is still carried out using re-purposed versions of traditional agents, originally developed for managing physical systems, or most recently via newer virtualization-aware alternatives that require guest cooperation and accessibility. We show that these existing approaches are a poor match for monitoring and managing (virtual) systems in the cloud due to their dependence on guest cooperation and operational health, and their growing lifecycle management overheads in the cloud. In this work, we first present Near Field Monitoring (NFM), our non-intrusive, out-of-band cloud monitoring and analytics approach that is designed based on cloud operation principles and to address the limitations of existing techniques. NFM decouples system execution from monitoring and analytics functions by pushing monitoring out of the targets systems' scope. By leveraging and extending VM introspection techniques, our framework provides simple, standard interfaces to monitor running systems in the cloud that require no guest cooperation or modification, and have minimal effect on guest execution. By decoupling monitoring and analytics from target system context, NFM provides ``always-on'' monitoring, even when the target system is unresponsive. NFM also works ``out-of-the-box'' for any cloud instance as it eliminates any need for installing and maintaining agents or hooks in the monitored systems. We describe the end-to-end implementation of our framework with two real-system prototypes based on two virtualization platforms. We discuss the new cloud analytics opportunities enabled by our decoupled execution, monitoring and analytics architecture. We present four applications that are built on top of our framework and show their use for across-time and across-system analytics.

show abstract

Protecting Data on Smartphones and Tablets from Memory Attacks

Colp

Zhang

Gleeson

et al. 2015

SIGARCH Comput. Archit. News

View full text Add to dashboard Cite

show abstract

12 3 4

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Sahil Suneja

Voyager: Complete Container State Migration

VELVET: a noVel Ensemble Learning approach to automatically locate VulnErable sTatements

Protecting Data on Smartphones and Tablets from Memory Attacks

Cryptomining Detection in Container Clouds Using System Calls and Explainable Machine Learning

Protecting Data on Smartphones and Tablets from Memory Attacks

Usable declarative configuration specification and validation for applications, systems, and cloud

Non-intrusive, out-of-band and out-of-the-box systems monitoring in the cloud

Protecting Data on Smartphones and Tablets from Memory Attacks

Contact Info

Product

Resources

About