Hardware-Assisted Intrusion Detection by Preserving Reference Information Integrity
| Autor: | Lee, J., Nicopoulos, Chrysostomos A., Oh, G. H., Lee, S. -W, Kim, J. |
|---|---|
| Přispěvatelé: | Nicopoulos, Chrysostomos A. [0000-0001-6389-6068] |
| Rok vydání: | 2013 |
| Předmět: | |
| Zdroj: | Algorithms and Architectures for Parallel Processing ISBN: 9783319038582 ICA3PP (1) Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) |
| Popis: | Malware detectors and integrity checkers detect malicious activities by comparing against reference data. To ensure their trustworthy operation, it is crucial to protect the reference data from unauthorized modification. This paper proposes the Soteria Security Card (SSC), an append-only storage. To the best of our knowledge, this work is the first to introduce the concept of an append-only storage and its application to information security. The SSC framework allows only read and append operations, and forbids over-write and erase operations. By exploiting this trait, we can protect the reference data that must be updated constantly. It is demonstrated how SSC facilitates log protection and file integrity checking. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|