Towards Malware Detection via CPU Power Consumption: Data Collection Design and Analytics

Bridges, Robert A.; Jiménez, Jarilyn Hernández; Nichols, Jeffrey A.; Goševa-Popstojanova, Katerina; Prowell, Stacy

doi:10.1109/trustcom/bigdatase.2018.00250

Cited by 20 publications

(15 citation statements)

References 20 publications

(44 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A typical example of the use of energy-based mechanisms is [113], which experimentally confirms that many rootkits change the CPU power profile. This trait can be used to detect the attack via specific time series-based algorithms.…”

Section: Energy-based Methodsmentioning

confidence: 68%

Tight Arms Race: Overview of Current Malware Threats and Trends in Their Detection

Caviglione

Choraś

Corona³

et al. 2021

IEEE Access

View full text Add to dashboard Cite

Section: Energy-based Methodsmentioning

confidence: 68%

Tight Arms Race: Overview of Current Malware Threats and Trends in Their Detection

Caviglione

Choraś

Corona³

et al. 2021

IEEE Access

View full text Add to dashboard Cite

“…[37] described a network time analysis approach for monitoring performance changes caused by hardware virtualization, with the goal of detecting the hardware virtualization rootkit. [11,39] identify rootkits by using power-based malware detection on general-purpose computers and [19,39,61] use machine learning (ML) and deep learning (DL) to perform a behavioral detection method based on CPU power consumption. Gibraltar [6] and Copilot [49] leverage direct memory access (DMA) via physical PCI to separately detect rootkit in kernel memory from another machine.…”

Section: Related Workmentioning

confidence: 99%

ULTRA: Ultimate Rootkit Detection over the Air

Pham

Marion

Heuser

2022

Proceedings of the 25th International Symposium on Research in Attacks, Intrusions and Defenses

View full text Add to dashboard Cite

HAL is a multi-disciplinary open access archive for the deposit and dissemination of scientific research documents, whether they are published or not. The documents may come from teaching and research institutions in France or abroad, or from public or private research centers. L'archive ouverte pluridisciplinaire HAL, est destinée au dépôt et à la diffusion de documents scientifiques de niveau recherche, publiés ou non, émanant des établissements d'enseignement et de recherche français ou étrangers, des laboratoires publics ou privés.

show abstract

“…Bridges et al [43] have shown that profiling of device power is a viable approach. They found that by directly monitoring the power usage of a CPU that an accurate power profile could be constructed.…”

Section: Device Profilingmentioning

confidence: 99%

A Cyber-Physical System to Detect IoT Security Threats of a Smart Home Heterogeneous Wireless Sensor Node

2020

View full text Add to dashboard Cite

Towards Malware Detection via CPU Power Consumption: Data Collection Design and Analytics

Cited by 20 publications

References 20 publications

Tight Arms Race: Overview of Current Malware Threats and Trends in Their Detection

Tight Arms Race: Overview of Current Malware Threats and Trends in Their Detection

ULTRA: Ultimate Rootkit Detection over the Air

A Cyber-Physical System to Detect IoT Security Threats of a Smart Home Heterogeneous Wireless Sensor Node

Contact Info

Product

Resources

About